2 /************************************************************************
3 * MXChange v0.2.1 Start: 08/26/2003 *
4 * =============== Last change: 11/29/2004 *
6 * -------------------------------------------------------------------- *
7 * File : mysql-manager.php *
8 * -------------------------------------------------------------------- *
9 * Short description : All MySQL-related functions *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Alle MySQL-Relevanten Funktionen *
12 * -------------------------------------------------------------------- *
14 * -------------------------------------------------------------------- *
15 * Copyright (c) 2003 - 2008 by Roland Haeder *
16 * For more information visit: http://www.mxchange.org *
18 * This program is free software; you can redistribute it and/or modify *
19 * it under the terms of the GNU General Public License as published by *
20 * the Free Software Foundation; either version 2 of the License, or *
21 * (at your option) any later version. *
23 * This program is distributed in the hope that it will be useful, *
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
26 * GNU General Public License for more details. *
28 * You should have received a copy of the GNU General Public License *
29 * along with this program; if not, write to the Free Software *
30 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
32 ************************************************************************/
34 // Some security stuff...
35 if (!defined('__SECURITY')) {
36 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
41 function ADD_MODULE_TITLE($mod) {
42 global $cacheArray, $_CONFIG;
43 $name = ""; $result = false;
45 // Is the script installed?
46 if (isBooleanConstantAndTrue('mxchange_installed')) {
47 // Check if cache is valid
48 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
50 $name = $cacheArray['modules']['title'][$mod];
53 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
56 $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__);
57 list($name) = SQL_FETCHROW($result);
58 SQL_FREERESULT($result);
65 // Still no luck or empty title?
68 $name = sprintf("%s (%s)", LANG_UNKNOWN_MODULE, $mod);
69 if (SQL_NUMROWS($result) == 0) {
70 // Add module to database
71 $dummy = CHECK_MODULE($mod);
79 // Check validity of a given module name (no file extension)
80 function CHECK_MODULE ($mod) {
81 // We need them now here...
82 global $cacheArray, $_CONFIG, $cacheInstance;
84 // Filter module name (names with low chars and underlines are fine!)
85 $mod = preg_replace("/[^a-z_]/", "", $mod);
87 // Check for prefix is a extension...
88 $modSplit = explode("_", $mod);
89 $extension = ""; $mod_chk = $mod;
90 //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
91 if (count($modSplit) == 2) {
92 // Okay, there is a seperator (_) in the name so is the first part a module?
93 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
94 if (EXT_IS_ACTIVE($modSplit[0])) {
95 // The prefix is an extension's name, so let's set it
96 $extension = $modSplit[0]; $mod = $modSplit[1];
100 // Major error in module registry is the default
103 // Check if script is installed if not return a "done" to prevent some errors
104 if ((!isBooleanConstantAndTrue('mxchange_installed')) || (isBooleanConstantAndTrue('mxchange_installing')) || (!isBooleanConstantAndTrue('admin_registered'))) return "done";
106 // Check if cache is latest version
107 $locked = "Y"; $hidden = "N"; $admin = "N"; $mem = "N"; $found = false;
108 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (is_array($cacheArray['modules']['module']))) {
109 // Is the module cached?
110 if (isset($cacheArray['modules']['locked'][$mod_chk])) {
112 $locked = $cacheArray['modules']['locked'][$mod_chk];
113 $hidden = $cacheArray['modules']['hidden'][$mod_chk];
114 $admin = $cacheArray['modules']['admin_only'][$mod_chk];
115 $mem = $cacheArray['modules']['mem_only'][$mod_chk];
118 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
121 // No, then we have to update it!
125 // Check for module in database
126 $result = SQL_QUERY_ESC("SELECT locked, hidden, admin_only, mem_only FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod_chk), __FILE__, __LINE__);
127 if (SQL_NUMROWS($result) == 1) {
129 list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
130 SQL_FREERESULT($result);
135 // Check returned values against current access permissions
137 // Admin access ----- Guest access ----- --- Guest or member? ---
138 if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_MEMBER())))) {
139 // If you are admin you are welcome for everything!
141 } elseif ($locked == "Y") {
144 } elseif (($mem == "Y") && (!IS_MEMBER())) {
145 // You have to login first!
147 } elseif (($admin == "Y") && (!IS_ADMIN())) {
148 // Only the Admin is allowed to enter this module!
152 // Still no luck or not found?
153 if (($ret == "major") || ($ret == "cache_miss") || (!$found)) {
154 // ----- Legacy module ----- ---- Module in base folder ---- --- Module with extension's name ---
155 if ((FILE_READABLE(sprintf("%sinc/modules/%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s/%s.php", PATH, $extension, $mod)))) {
156 // Data is missing so we add it
157 if (GET_EXT_VERSION("sql_patches") >= "0.3.6") {
158 // Since 0.3.6 we have a has_menu column, this took me a half hour
159 // to find a loop here... *sigh*
160 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
161 (module, locked, hidden, mem_only, admin_only, has_menu) VALUES
162 ('%s','Y','N','N','N','N')", array($mod_chk), __FILE__, __LINE__);
164 // Wrong/missing sql_patches!
165 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
166 (module, locked, hidden, mem_only, admin_only) VALUES
167 ('%s','Y','N','N','N')", array($mod_chk), __FILE__, __LINE__);
170 // Everthing is fine?
171 if (SQL_AFFECTEDROWS() < 1) {
172 // Something bad happend!
176 // Destroy cache here
177 REBUILD_CACHE("mod_reg", "modreg");
180 $ret = CHECK_MODULE($mod_chk);
182 // Module not found we don't add it to the database
191 // Add menu description pending on given file name (without path!)
192 function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
193 global $NAV_DEPTH, $_CONFIG;
194 // Use only filename of the file ;)
195 $file = basename($file);
198 $LINK_ADD = ""; $OUT = ""; $AND = "";
200 // First we have to do some analysis...
201 if (substr($file, 0, 7) == "action-") {
202 // This is an action file!
204 $search = substr($file, 7);
214 $modCheck = $GLOBALS['module'];
217 $AND = " AND (what='' OR what IS NULL)";
218 } elseif (substr($file, 0, 5) == "what-") {
219 // This is an admin what file!
221 $search = substr($file, 5);
231 $modCheck = $GLOBALS['module'];
233 $AND = " AND visible='Y' AND locked='N'";
237 $dummy = substr($search, 0, -4);
238 $AND .= " AND action='".GET_ACTION($ACC_LVL, $dummy)."'";
239 } elseif (($ACC_LVL == "sponsor") || ($ACC_LVL == "engine")) {
240 // Sponsor / engine menu
243 $modCheck = $GLOBALS['module'];
249 $modCheck = $GLOBALS['module'];
252 if ((!isset($NAV_DEPTH)) && (!$return)) {
254 $prefix = "<DIV class=\"you_are_here\">".YOU_ARE_HERE." <STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$GLOBALS['module'].$LINK_ADD."\">Home</A></STRONG>";
256 if (!$return) $NAV_DEPTH++;
260 $prefix .= " -> ";
262 // We need to remove .php and the end
263 if (substr($search, -4, 4) == ".php") {
265 $search = substr($search, 0, -4);
268 // Get the title from menu
269 $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1",
270 array($ACC_LVL, $type, $search), __FILE__, __LINE__);
273 if (SQL_NUMROWS($result) == 1) {
275 list($ret) = SQL_FETCHROW($result);
277 // Shall we return it?
281 } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && ($_CONFIG['youre_here'] == "Y")) || ((IS_ADMIN()) && ($modCheck == "admin"))) {
283 $OUT = $prefix."<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$modCheck."&".$type."=".$search.$LINK_ADD."\">".$ret."</A></STRONG>\n";
285 // Can we close the you-are-here navigation?
286 //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*<br />\n";
287 //* DEBUG: */ die("<pre>".print_r($_CONFIG, true)."</pre>");
288 if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
289 //* DEBUG: */ echo __LINE__."+".$type."+<br />\n";
292 // Extension removeip activated?
293 if ((EXT_IS_ACTIVE("removeip")) && (isset($_CONFIG['removeip_'.strtolower($ACC_LVL).'_show'])) && ($_CONFIG['removeip_'.strtolower($ACC_LVL).'_show'] == "Y")) {
294 // Add anoymity/privacy infos
295 $OUT .= REMOVEIP_ADD_INFOS();
298 // Add line-break tag
302 // Handle failed logins here if not in guest
303 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):type={$type},action={$GLOBALS['action']},what={$GLOBALS['what']},lvl={$ACC_LVL}<br />\n";
304 if ((($type == "what") || ($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview") || ($GLOBALS['what'] == $_CONFIG['index_home']))) && ($ACC_LVL != "guest") && ((GET_EXT_VERSION("sql_patches") >= "0.4.7") || (GET_EXT_VERSION("admins") >= "0.7.0"))) {
306 $OUT .= HANDLE_LOGIN_FAILTURES($ACC_LVL);
313 SQL_FREERESULT($result);
315 // Return or output HTML code?
317 // Output HTML code here
325 function ADD_MENU($MODE, $act, $wht) {
328 // Init some variables
334 if (!VALIDATE_MENU_ACTION($MODE, $act, $wht, true)) return CODE_MENU_NOT_VALID;
336 // Non-admin shall not see all menus
338 $AND = " AND visible='Y' AND locked='N'";
341 // Load SQL data and add the menu to the output stream...
342 $result_main = SQL_QUERY_ESC("SELECT title, action FROM "._MYSQL_PREFIX."_%s_menu WHERE (what='' OR what IS NULL)".$AND." ORDER BY sort",
343 array($MODE), __FILE__, __LINE__);
344 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
345 if (SQL_NUMROWS($result_main) > 0) {
346 OUTPUT_HTML("<TABLE border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$MODE."_menu\">");
347 // There are menus available, so we simply display them... :)
348 while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) {
349 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
351 $BLOCK_MODE = false; $act = $main_action;
355 'action' => $main_action,
356 'title' => $main_title
359 // Load menu header template
360 LOAD_TEMPLATE($MODE."_menu_title", false, $content);
362 $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort",
363 array($MODE, $main_action), __FILE__, __LINE__);
364 $ctl = SQL_NUMROWS($result_sub);
367 while (list($sub_title, $sub_what) = SQL_FETCHROW($result_sub)) {
371 // Full file name for checking menu
372 //* DEBUG: */ echo __LINE__.":!!!!".$sub_what."!!!<br />\n";
373 $test_inc = sprintf("%sinc/modules/%s/what-%s.php", PATH, $MODE, $sub_what);
374 $test = (FILE_READABLE($test_inc));
376 if ((!empty($wht)) && (($wht == $sub_what))) {
377 $content = "<STRONG>";
381 $content .= "<A name=\"menu\" class=\"menu_blur\" href=\"".URL."/modules.php?module=".$GLOBALS['module']."&what=".$sub_what.ADD_URL_DATA("")."\" target=\"_self\">";
387 $content .= $_CONFIG['menu_blur_spacer'].$sub_title;
395 if ((!empty($wht)) && (($wht == $sub_what))) {
396 $content .= "</STRONG>";
398 $wht = $sub_what; $cnt++;
405 // Add regular menu row or bottom row?
407 LOAD_TEMPLATE($MODE."_menu_row", false, $content);
409 LOAD_TEMPLATE($MODE."_menu_bottom", false, $content);
413 // This is a menu block... ;-)
415 $INC_BLOCK = sprintf("%sinc/modules/%s/action-%s.php", PATH, $MODE, $main_action);
416 if (FILE_READABLE($INC_BLOCK)) {
418 if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("<TR>
419 <TD class=\"".$MODE."_menu_whats\">");
420 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
421 include ($INC_BLOCK);
422 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
423 if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML(" </TD>
426 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
429 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
430 if (SQL_NUMROWS($result_main) > $main_cnt) OUTPUT_HTML("<TR><TD class=\"".$MODE."_menu_seperator\"></TD></TR>");
434 SQL_FREERESULT($result_main);
437 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
438 OUTPUT_HTML("</TABLE>");
441 // This patched function will reduce many SELECT queries for the specified or current admin login
442 function IS_ADMIN($admin="")
444 global $cacheArray, $_CONFIG;
445 $ret = false; $passCookie = ""; $valPass = "";
446 //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
448 // If admin login is not given take current from cookies...
449 if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
450 // Get admin login and password from session/cookies
451 $admin = get_session('admin_login');
452 $passCookie = get_session('admin_md5');
454 //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."<br />";
456 // Search in array for entry
457 if (isset($cacheArray['admin_hash'])) {
459 $valPass = $cacheArray['admin_hash'];
460 } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
462 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
464 // Login data is valid or not?
465 $valPass = generatePassString($cacheArray['admins']['password'][$admin]);
468 $cacheArray['admin_hash'] = $valPass;
469 } elseif (!empty($admin)) {
471 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
472 array($admin), __FILE__, __LINE__);
476 if (SQL_NUMROWS($result) == 1) {
477 // Admin login was found so let's load password from DB
478 list($passDB) = SQL_FETCHROW($result);
480 // Temporary cache it
481 $cacheArray['admins']['password'][$admin] = $passDB;
483 // Generate password hash
484 $valPass = generatePassString($passDB);
488 SQL_FREERESULT($result);
491 if (!empty($valPass)) {
492 // Check if password is valid
493 //* DEBUG: */ print __FUNCTION__."*".$valPass."/".$passCookie."*<br />\n";
494 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE("cache"))));
497 // Return result of comparision
498 //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
502 function ADD_MAX_RECEIVE_LIST($MODE, $default="", $return=false)
509 // Guests (in the registration form) are not allowed to select 0 mails per day.
510 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive WHERE value > 0 ORDER BY value", __FILE__, __LINE__);
511 if (SQL_NUMROWS($result) > 0)
514 while (list($value, $comment) = SQL_FETCHROW($result))
516 $OUT .= " <OPTION value=\"".$value."\"";
517 if ($_POST['max_mails'] == $value) $OUT .= " selected=\"selected\"";
518 $OUT .= ">".$value." ".PER_DAY;
519 if (!empty($comment)) $OUT .= " (".$comment.")";
520 $OUT .= "</OPTION>\n";
522 define('__MAX_RECEIVE_OPTIONS', $OUT);
525 SQL_FREERESULT($result);
526 $OUT = LOAD_TEMPLATE("guest_receive_table", true);
530 // Maybe the admin has to setup some maximum values?
535 // Members are allowed to set to zero mails per day (we will change this soon!)
536 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive ORDER BY value", __FILE__, __LINE__);
537 if (SQL_NUMROWS($result) > 0)
540 while (list($value, $comment) = SQL_FETCHROW($result))
542 $OUT .= " <OPTION value=\"".$value."\"";
543 if ($default == $value) $OUT .= " selected=\"selected\"";
544 $OUT .= ">".$value." ".PER_DAY;
545 if (!empty($comment)) $OUT .= " (".$comment.")";
546 $OUT .= "</OPTION>\n";
548 define('__MAX_RECEIVE_OPTIONS', $OUT);
549 SQL_FREERESULT($result);
550 $OUT = LOAD_TEMPLATE("member_receive_table", true);
554 // Maybe the admin has to setup some maximum values?
555 $OUT = LOAD_TEMPLATE("admin_settings_saved", true, NO_MAX_VALUES);
561 // Return generated HTML code
566 // Output directly (default)
571 function SEARCH_EMAIL_USERTAB($email)
574 $result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE email LIKE '{PER}%s{PER}' LIMIT 1", array($email), __FILE__, __LINE__);
575 if (SQL_NUMROWS($result) == 1) $ret = true;
576 SQL_FREERESULT($result);
580 function WHAT_IS_VALID($act, $wht, $type="guest")
584 // Everything is valid to the admin :-)
590 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what='%s' AND locked='N' LIMIT 1", array($type, $act, $wht), __FILE__, __LINE__);
592 if (SQL_NUMROWS($result) == 1) $ret = true;
593 SQL_FREERESULT($result);
600 global $status, $LAST, $cacheArray;
601 if (!is_array($LAST)) $LAST = array();
604 // is the cache entry there?
605 if (isset($cacheArray['is_member'])) {
607 return $cacheArray['is_member'];
610 // Fix "deleted" cookies first
611 FIX_DELETED_COOKIES(array('userid','u_hash','lifetime'));
614 if ((!empty($GLOBALS['userid'])) && (isSessionVariableSet('u_hash')) && (isSessionVariableSet('lifetime')) && (defined('COOKIE_PATH')))
616 // Cookies are set with values, but are they valid?
617 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
618 array($GLOBALS['userid']), __FILE__, __LINE__);
619 if (SQL_NUMROWS($result) == 1)
621 // Load data from cookies
622 list($password, $status, $mod, $onl) = SQL_FETCHROW($result);
624 // Validate password by created the difference of it and the secret key
625 $valPass = generatePassString($password);
627 // Transfer last module and online time
628 if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; }
630 // So did we now have valid data and an unlocked user?
631 //* DEBUG: */ echo $valPass."<br />".get_session('u_hash')."<br />";
632 if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
633 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
636 // Maybe got locked etc.
637 //* DEBUG: */ echo __LINE__."!!!<br />";
638 destroy_user_session();
641 $GLOBALS['userid'] = 0;
644 // Cookie data is invalid!
645 //* DEBUG: */ echo __LINE__."***<br />";
646 destroy_user_session();
649 $GLOBALS['userid'] = 0;
653 SQL_FREERESULT($result);
655 // Cookie data is invalid!
656 //* DEBUG: */ echo __LINE__."///<br />";
657 destroy_user_session();
660 $GLOBALS['userid'] = 0;
664 $cacheArray['is_member'] = $ret;
670 function UPDATE_LOGIN_DATA () {
671 global $LAST, $_CONFIG;
672 if (!is_array($LAST)) $LAST = array();
674 // Recheck if logged in
675 if (!IS_MEMBER()) return false;
678 $GLOBALS['userid'] = bigintval(get_session('userid'));
680 // Extract last online time (life) and how long is auto-login valid (time)
681 $newl = time() + bigintval(get_session('lifetime'));
683 // Load last module and last online time
684 $result = SQL_QUERY_ESC("SELECT last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__);
685 if (SQL_NUMROWS($result) == 1) {
686 // Load last module and online time
687 list($mod, $onl) = SQL_FETCHROW($result);
688 SQL_FREERESULT($result);
690 // Maybe first login time?
691 if (empty($mod)) $mod = "login";
693 if (set_session("userid", $GLOBALS['userid'], $newl, COOKIE_PATH) && set_session("u_hash", get_session('u_hash'), $newl, COOKIE_PATH) && set_session("lifetime", bigintval(get_session('lifetime')), $newl, COOKIE_PATH)) {
694 // This will be displayed on welcome page! :-)
695 if (empty($LAST['module'])) {
696 $LAST['module'] = $mod; $LAST['online'] = $onl;
700 if (empty($GLOBALS['what'])) {
702 $GLOBALS['what'] = "welcome";
703 if (!empty($_CONFIG['index_home'])) $GLOBALS['what'] = $_CONFIG['index_home'];
706 // Update last module / online time
707 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET last_module='%s', last_online=UNIX_TIMESTAMP(), REMOTE_ADDR='%s' WHERE userid=%s LIMIT 1",
708 array($GLOBALS['what'], GET_REMOTE_ADDR(), $GLOBALS['userid']), __FILE__, __LINE__);
711 // Destroy session, we cannot update!
712 destroy_user_session();
716 function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false)
720 if ((!IS_ADMIN()) && ($MODE != "admin")) $ADD = " AND locked='N'";
721 //* DEBUG: */ echo __LINE__.":".$MODE."/".$act."/".$wht."*<br />\n";
722 if (($MODE != "admin") && ($UPDATE))
724 // Update guest or member menu
725 $SQL = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_%s_menu SET counter=counter+1 WHERE action='%s' AND what='%s'".$ADD." LIMIT 1",
726 array($MODE, $act, $wht), __FILE__, __LINE__, false);
728 elseif ($wht != "overview")
731 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s'".$ADD." ORDER BY action DESC LIMIT 1",
732 array($MODE, $act), __FILE__, __LINE__, false);
736 // Admin login overview
737 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND (what='' OR what IS NULL)".$ADD." ORDER BY action DESC LIMIT 1",
738 array($MODE, $act), __FILE__, __LINE__, false);
742 $result = SQL_QUERY($SQL, __FILE__, __LINE__);
745 if (SQL_AFFECTEDROWS() == 1) $ret = true;
746 //* DEBUG: */ debug_print_backtrace();
750 if (SQL_NUMROWS($result) == 1) {
751 list($id, $wht2) = SQL_FETCHROW($result);
752 //* DEBUG: */ echo __LINE__."+".$SQL."+<br />\n";
753 //* DEBUG: */ echo __LINE__."*".$id."/".$wht."/".$wht2."*<br />\n";
759 SQL_FREERESULT($result);
765 function GET_MOD_DESCR($MODE, $wht, $column="what")
770 if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
773 // Default is not found
774 $ret = "??? (".$wht.")";
777 $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1",
778 array($MODE, $column, $wht), __FILE__, __LINE__);
780 // Is there an entry?
781 if (SQL_NUMROWS($result) == 1) {
783 list($ret) = SQL_FETCHROW($result);
787 SQL_FREERESULT($result);
791 function SEND_MODE_MAILS($mod, $modes)
793 global $_CONFIG, $DATA;
796 $result_main = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
797 array($GLOBALS['userid']), __FILE__, __LINE__);
798 if (SQL_NUMROWS($result_main) == 1) {
799 // Load hash from database
800 list($hashDB) = SQL_FETCHROW($result_main);
802 // Extract salt from cookie
803 $salt = substr(get_session('u_hash'), 0, -40);
805 // Now let's compare passwords
806 $hash = generatePassString($hashDB);
807 if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) {
809 $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND password='%s' LIMIT 1",
810 array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__);
811 if (SQL_NUMROWS($result) == 1) {
813 $DATA = SQL_FETCHROW($result);
816 SQL_FREERESULT($result);
819 $DATA[0] = TRANSLATE_GENDER($DATA[0]);
821 // Clear/init the content variable
828 foreach ($modes as $mode) {
831 case "normal": break; // Do not add any special lines
833 case "email": // Email was changed!
834 $content = MEMBER_CHANGED_EMAIL.": ".$_POST['old_addy']."\n";
837 case "pass": // Password was changed
838 $content = MEMBER_CHANGED_PASS."\n";
842 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
843 $content = MEMBER_UNKNOWN_MODE.": ".$mode."\n\n";
848 if (EXT_IS_ACTIVE("country")) {
849 // Replace code with description
850 $DATA[4] = COUNTRY_GENERATE_INFO($_POST['country_code']);
854 $msg = LOAD_EMAIL_TEMPLATE("member_mydata_notify", $content, $GLOBALS['userid']);
856 if ($_CONFIG['admin_notify'] == "Y") {
857 // The admin needs to be notified about a profile change
858 $msg_admin = "admin_mydata_notify";
859 $sub_adm = ADMIN_CHANGED_DATA;
867 $sub_mem = MEMBER_CHANGED_DATA;
869 // Output success message
870 $content = "<SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN>";
874 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
875 $content = "<SPAN class=\"member_failed\">".UNKNOWN_MODULE."</SPAN>";
879 // Could not load profile data
880 $content = "<SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN>";
883 // Passwords mismatch
884 $content = "<SPAN class=\"member_failed\">".MEMBER_PASSWORD_ERROR."</SPAN>";
887 // Could not load profile
888 $content = "<SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN>";
891 // Send email to user if required
892 if ((!empty($sub_mem)) && (!empty($msg))) {
894 SEND_EMAIL($DATA[7], $sub_mem, $msg);
897 // Send only if no other error has occured
898 if (empty($content)) {
899 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
901 SEND_ADMIN_NOTIFICATION($sub_adm, $msg_admin, $content, $GLOBALS['userid']);
902 } elseif ($_CONFIG['admin_notify'] == "Y") {
903 // Cannot send mails to admin!
904 $content = CANNOT_SEND_ADMIN_MAILS;
907 $content = "<SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN>";
912 LOAD_TEMPLATE("admin_settings_saved", false, $content);
914 // Update module counter
915 function COUNT_MODULE($mod) {
917 // Do count all other modules but not accesses on CSS file css.php!
918 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_mod_reg SET clicks=clicks+1 WHERE module='%s' LIMIT 1",
919 array($mod), __FILE__, __LINE__);
922 // Get action value from mode (admin/guest/member) and what-value
923 function GET_ACTION ($MODE, &$wht)
925 global $ret, $_CONFIG;
926 // @DEPRECATED Init status
929 //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=<br />";
930 if ((empty($wht)) && ($MODE != "admin")) {
932 if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
935 if ($MODE == "admin") {
936 // Action value for admin area
937 if (!empty($GLOBALS['action'])) {
938 // Get it directly from URL
939 return $GLOBALS['action'];
940 } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
941 // Default value for admin area
944 } elseif (!empty($GLOBALS['action'])) {
945 // Get it directly from URL
946 return $GLOBALS['action'];
948 //* DEBUG: */ echo __LINE__."*".$ret."*<br />\n";
950 if (MODULE_HAS_MENU($MODE)) {
951 // Rewriting modules to menu
953 case "index": $MODE = "guest"; break;
954 case "login": $MODE = "member"; break;
957 // Guest and member menu is "main" as the default
958 if (empty($ret)) $ret = "main";
960 // Load from database
961 $result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1",
962 array($MODE, $wht), __FILE__, __LINE__);
963 if (SQL_NUMROWS($result) == 1) {
964 // Load action value and pray that this one is the right you want... ;-)
965 list($ret) = SQL_FETCHROW($result);
969 SQL_FREERESULT($result);
972 // Return action value
976 // Get category name back
977 function GET_CATEGORY ($cid) {
978 // Default is not found
979 $ret = _CATEGORY_404;
981 // Is the category id set?
984 $ret = _CATEGORY_NONE;
985 } elseif ($cid > 0) {
986 // Lookup the category in database
987 $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
988 array(bigintval($cid)), __FILE__, __LINE__);
989 if (SQL_NUMROWS($result) == 1) {
990 // Category found... :-)
991 list($ret) = SQL_FETCHROW($result);
995 SQL_FREERESULT($result);
1002 // Get a string of "mail title" and price back
1003 function GET_PAYMENT ($pid, $full=false) {
1004 // Default is not found
1005 $ret = _PAYMENT_404;
1007 // Load payment data
1008 $result = SQL_QUERY_ESC("SELECT mail_title, price FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
1009 array(bigintval($pid)), __FILE__, __LINE__);
1010 if (SQL_NUMROWS($result) == 1) {
1011 // Payment type found... :-)
1013 // Return only title
1014 list($ret) = SQL_FETCHROW($result);
1016 // Return title and price
1017 list($t, $p) = SQL_FETCHROW($result);
1018 $ret = $t." / ".TRANSLATE_COMMA($p)." ".POINTS;
1023 SQL_FREERESULT($result);
1029 // Get (basicly) the price of given payment id
1030 function GET_PAY_POINTS($pid, $lookFor="price")
1033 $result = SQL_QUERY_ESC("SELECT %s FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
1034 array($lookFor, $pid), __FILE__, __LINE__);
1035 if (SQL_NUMROWS($result) == 1)
1037 // Payment type found... :-)
1038 list($ret) = SQL_FETCHROW($result);
1039 SQL_FREERESULT($result);
1044 // Remove a receiver's ID from $ARRAY and add a link for him to confirm
1045 function REMOVE_RECEIVER (&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=false)
1050 // Remove entry from array
1051 unset($ARRAY[$key]);
1053 // Is there already a line for this user available?
1056 // Only when we got a real stats ID continue searching for the entry
1057 $type = "NORMAL"; $rowName = "stats_id";
1058 if ($bonus) { $type = "BONUS"; $rowName = "bonus_id"; }
1059 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_links WHERE %s='%s' AND userid=%s AND link_type='%s' LIMIT 1",
1060 array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1061 if (SQL_NUMROWS($result) == 0)
1063 // No, so we add one!
1064 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_links (%s, userid, link_type) VALUES ('%s','%s','%s')",
1065 array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1075 SQL_FREERESULT($result);
1078 // Return status for sending routine
1082 // Calculate sum (default) or count records of given criteria
1083 function GET_TOTAL_DATA ($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false, $add="") {
1085 //* DEBUG: */ echo $search."/".$tableName."/".$lookFor."/".$whereStatement."/".$add."<br />\n";
1086 if (($onlyRows) || ($lookFor == "userid")) {
1088 //* DEBUG: */ echo "COUNT!<br />\n";
1089 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1090 array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1093 //* DEBUG: */ echo "SUM!<br />\n";
1094 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1095 array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1099 list($ret) = SQL_FETCHROW($result);
1102 SQL_FREERESULT($result);
1105 if ((empty($ret)) && ($lookFor != "counter") && ($lookFor != "id") && ($lookFor != "userid")) {
1108 } elseif ("".$ret."" == "") {
1116 // "Getter fro ref level percents
1117 function GET_REF_LEVEL_PERCENTS ($level) {
1118 global $cacheInstance, $_CONFIG, $cacheArray;
1123 // Do we have cache?
1124 if ((isset($cacheArray['ref_depths']['level'])) && (EXT_IS_ACTIVE("cache"))) {
1125 // First look for level
1126 $key = array_search($level, $cacheArray['ref_depths']['level']);
1127 if ($key !== false) {
1129 $per = $cacheArray['ref_depths']['percents'][$key];
1132 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1136 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM "._MYSQL_PREFIX."_refdepths WHERE level='%s' LIMIT 1",
1137 array(bigintval($level)), __FILE__, __LINE__);
1140 if (SQL_NUMROWS($result_lvl) == 1) {
1142 list($per) = SQL_FETCHROW($result_lvl);
1146 SQL_FREERESULT($result_lvl);
1154 * Dynamic referal system, can also send mails!
1156 * subject = Subject line, write in lower-case letters and underscore is allowed
1157 * uid = Referal ID wich should receive...
1158 * points = ... xxx points
1159 * send_notify = shall I send the referal an email or not?
1160 * rid = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1161 * locked = Shall I pay it to normal (false) or locked (true) points ammount?
1162 * add_mode = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
1163 * for default value will cause no referal will get points ever!!!)
1165 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") {
1166 //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
1167 global $DEPTH, $_CONFIG, $DATA, $cacheArray;
1169 // Convert mode to lower-case
1170 $add_mode = strtolower($add_mode);
1172 // When $uid = 0 add points to jackpot
1174 // Add points to jackpot
1175 ADD_JACKPOT($points);
1179 // Add booking record if extension is installed
1180 if (EXT_IS_ACTIVE("booking")) {
1182 ADD_BOOKING_RECORD($subject, $uid, $points, "add");
1185 // Count up referal depth
1186 if (!isset($DEPTH)) {
1187 // Initialialize referal system
1188 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />\n";
1191 // Increase referal level
1193 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$DEPTH}<br />\n";
1196 // Default is "normal" points
1199 // Which points, locked or normal?
1200 if ($locked) $data = "locked_points";
1202 // Check user account
1203 $result_user = SQL_QUERY_ESC("SELECT refid, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
1204 array(bigintval($uid)), __FILE__, __LINE__);
1206 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
1207 if (SQL_NUMROWS($result_user) == 1) {
1208 // This is the user and his ref
1209 list($ref, $email) = SQL_FETCHROW($result_user);
1210 $cacheArray['add_uid'][$ref] = $uid;
1213 $per = GET_REF_LEVEL_PERCENTS($DEPTH);
1214 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$DEPTH},per={$per},mode={$add_mode}<br />\n";
1216 // Some percents found?
1218 // Calculate new points
1219 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$DEPTH}<br />\n";
1220 $ref_points = $points * $per / 100;
1222 // Pay refback here if level > 0 and in ref-mode
1223 if ((EXT_IS_ACTIVE("refback")) && ($DEPTH > 0) && ($per < 100) && ($add_mode == "ref") && (isset($cacheArray['add_uid'][$uid]))) {
1224 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$DEPTH} - BEFORE!<br />\n";
1225 $ref_points = ADD_REFBACK_POINTS($cacheArray['add_uid'][$uid], $uid, $points, $ref_points);
1226 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$DEPTH} - AFTER!<br />\n";
1230 SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
1231 array($data, $data, $ref_points, bigintval($uid), bigintval($DEPTH)), __FILE__, __LINE__);
1232 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$DEPTH},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
1234 // No entry updated?
1235 if (SQL_AFFECTEDROWS() < 1) {
1236 // First ref in this level! :-)
1237 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_points (userid,ref_depth,%s) VALUES (%s,%s,%s)",
1238 array($data, bigintval($uid), bigintval($DEPTH), $ref_points), __FILE__, __LINE__);
1241 // Update mediadata as well
1242 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1244 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $ref_points);
1247 // Points updated, maybe I shall send him an email?
1248 if (($send_notify) && ($ref > 0) && (!$locked)) {
1252 'level' => bigintval($DEPTH),
1253 'points' => $ref_points,
1254 'refid' => bigintval($ref)
1257 // Load email template
1258 $msg = LOAD_EMAIL_TEMPLATE("confirm-referal", $content, bigintval($uid));
1260 SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg);
1261 } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) {
1262 // Direct payment shall be notified about
1263 define('__POINTS_VALUE', $ref_points);
1267 'text' => REASON_DIRECT_PAYMENT,
1268 'points' => TRANSLATE_COMMA($ref_points)
1272 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, $uid);
1275 SEND_EMAIL($email, SUBJECT_DIRECT_PAYMENT, $msg);
1276 if (!isset($_GET['mid'])) LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
1279 // Maybe there's another ref?
1280 if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == "ref")) {
1281 // Then let's credit him here...
1282 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />\n";
1283 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $DEPTH), $ref, $points, $send_notify, $ref, $locked);
1289 SQL_FREERESULT($result_user);
1290 //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
1293 function UPDATE_REF_COUNTER ($uid) {
1294 global $cacheArray, $cacheInstance;
1296 // Make it sure referal level zero (member him-/herself) is at least selected
1297 if (empty($cacheArray['ref_level'][$uid])) $cacheArray['ref_level'][$uid] = 1;
1298 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$cacheArray['ref_level'][$uid]}<br />\n";
1301 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refsystem SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1302 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1304 // When no entry was updated then we have to create it here
1305 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />\n";
1306 if (SQL_AFFECTEDROWS() < 1) {
1308 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES (%s,%s,1)",
1309 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1310 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />\n";
1313 // Check for his referal
1314 $result = SQL_QUERY_ESC("SELECT refid FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
1315 array(bigintval($uid)), __FILE__, __LINE__);
1318 list($ref) = SQL_FETCHROW($result);
1321 SQL_FREERESULT($result);
1322 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />\n";
1324 // When he has a referal...
1325 if (($ref > 0) && ($ref != $uid)) {
1326 // Move to next referal level and count his counter one up!
1327 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />\n";
1328 $cacheArray['ref_level'][$uid]++; UPDATE_REF_COUNTER($ref);
1329 } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION("cache") >= "0.1.2")) {
1330 // Remove cache here
1331 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />\n";
1332 REBUILD_CACHE("refsystem", "refsystem");
1336 $cacheArray['ref_level'][$uid]--;
1338 // Handle refback here if extension is installed
1339 if (EXT_IS_ACTIVE("refback")) {
1340 UPDATE_REFBACK_TABLE($uid);
1343 // Updates/extends the online list
1344 function UPDATE_ONLINE_LIST($SID, $mod, $act, $wht) {
1347 // Do not update online list when extension is deactivated
1348 if (!EXT_IS_ACTIVE("online", true)) return;
1352 // This is invalid here!
1353 print "Invalid session. Backtrace:<pre>";
1354 debug_print_backtrace();
1358 // Initialize variables
1359 $uid = 0; $rid = 0; $MEM = "N"; $ADMIN = "N";
1362 if ((!empty($GLOBALS['userid'])) && ($GLOBALS['userid'] > 0) && (IS_MEMBER())) {
1364 $uid = bigintval($GLOBALS['userid']);
1373 if (isSessionVariableSet('refid')) {
1375 if (get_session('refid') > 0) $rid = bigintval($GLOBALS['refid']);
1378 // Now search for the user
1379 $result = SQL_QUERY_ESC("SELECT timestamp FROM "._MYSQL_PREFIX."_online
1380 WHERE sid='%s' LIMIT 1",
1381 array($SID), __FILE__, __LINE__);
1384 if (SQL_NUMROWS($result) == 1) {
1386 SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_online SET
1394 timestamp=UNIX_TIMESTAMP()
1395 WHERE sid='%s' LIMIT 1",
1396 array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID), __FILE__, __LINE__
1399 // No entry does exists so we simply add it!
1400 SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_online (module, action, what, userid, refid, is_member, is_admin, timestamp, sid, ip) VALUES ('%s','%s','%s', %s, %s, '%s','%s', UNIX_TIMESTAMP(), '%s','%s')",
1401 array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID, GET_REMOTE_ADDR()), __FILE__, __LINE__
1406 SQL_FREERESULT($result);
1408 // Purge old entries
1409 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_online WHERE timestamp <= (UNIX_TIMESTAMP() - %s)",
1410 array($_CONFIG['online_timeout']), __FILE__, __LINE__);
1412 // OBSOLETE: Sends out mail to all administrators
1413 function SEND_ADMIN_EMAILS ($subj, $msg) {
1414 // Load all admin email addresses
1415 $result = SQL_QUERY("SELECT email FROM "._MYSQL_PREFIX."_admins ORDER BY id ASC", __FILE__, __LINE__);
1416 while (list($email) = SQL_FETCHROW($result)) {
1417 // Send the email out
1418 SEND_EMAIL($email, $subj, $msg);
1422 SQL_FREERESULT($result);
1424 // Really simple... ;-)
1426 // Get ID number from administrator's login name
1427 function GET_ADMIN_ID ($login) {
1428 global $cacheArray, $_CONFIG;
1430 if (!empty($cacheArray['admins']['aid'][$login])) {
1432 $ret = $cacheArray['admins']['aid'][$login];
1434 // Update cache hits
1435 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1436 } elseif (!EXT_IS_ACTIVE("cache")) {
1437 // Load from database
1438 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
1439 array($login), __FILE__, __LINE__);
1440 if (SQL_NUMROWS($result) == 1) {
1441 list($ret) = SQL_FETCHROW($result);
1445 SQL_FREERESULT($result);
1450 // Get password hash from administrator's login name
1451 function GET_ADMIN_HASH ($aid)
1453 global $cacheArray, $_CONFIG;
1455 if (!empty($cacheArray['admins']['password'][$aid])) {
1457 $ret = $cacheArray['admins']['password'][$aid];
1459 // Update cache hits
1460 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1461 } elseif (!EXT_IS_ACTIVE("cache")) {
1462 // Load from database
1463 $result = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1464 array($aid), __FILE__, __LINE__);
1465 if (SQL_NUMROWS($result) == 1) {
1467 list($ret) = SQL_FETCHROW($result);
1470 $cacheArray['admins']['password'][$aid] = $ret;
1474 SQL_FREERESULT($result);
1479 function GET_ADMIN_LOGIN ($aid) {
1480 global $cacheArray, $_CONFIG;
1482 if (!empty($cacheArray['admins']['login'][$aid])) {
1484 $ret = $cacheArray['admins']['login'][$aid];
1486 // Update cache hits
1487 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1488 } elseif (!EXT_IS_ACTIVE("cache")) {
1489 // Load from database
1490 $result = SQL_QUERY_ESC("SELECT login FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1491 array(bigintval($aid)), __FILE__, __LINE__);
1492 if (SQL_NUMROWS($result) == 1) {
1494 list($ret) = SQL_FETCHROW($result);
1497 $cacheArray['admins']['login'][$aid] = $ret;
1501 SQL_FREERESULT($result);
1505 // Get email address of admin id
1506 function GET_ADMIN_EMAIL ($aid) {
1507 global $cacheArray, $_CONFIG;
1510 if (!empty($cacheArray['admins']['email'][$aid])) {
1512 $ret = $cacheArray['admins']['email'][$aid];
1514 // Update cache hits
1515 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1516 } elseif (!EXT_IS_ACTIVE("cache")) {
1517 // Load from database
1518 $result_aid = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1519 array(bigintval($ret)), __FILE__, __LINE__);
1520 if (SQL_NUMROWS($result) == 1) {
1522 list($ret) = SQL_FETCHROW($result_aid);
1525 $cacheArray['admins']['email'][$aid] = $ret;
1529 SQL_FREERESULT($result_aid);
1535 // Get default ACL of admin id
1536 function GET_ADMIN_DEFAULT_ACL ($aid) {
1537 global $cacheArray, $_CONFIG;
1540 if (!empty($cacheArray['admins']['def_acl'][$aid])) {
1542 $ret = $cacheArray['admins']['def_acl'][$aid];
1544 // Update cache hits
1545 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1546 } elseif (!EXT_IS_ACTIVE("cache")) {
1547 // Load from database
1548 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1549 array(bigintval($aid)), __FILE__, __LINE__);
1550 if (SQL_NUMROWS($result_aid) == 1) {
1552 list($ret) = SQL_FETCHROW($result_aid);
1555 $cacheArray['admins']['def_acl'][$aid] = $ret;
1559 SQL_FREERESULT($result_aid);
1566 function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="") {
1568 if ($table == "/ARRAY/") {
1569 // Selection from array
1570 if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) {
1572 foreach ($id as $idx => $value) {
1573 $ret .= "<OPTION value=\"".$value."\"";
1574 if ($default == $value) $ret .= " selected checked";
1575 $ret .= ">".$name[$idx]."</OPTION>\n";
1579 // Data from database
1581 if (!empty($special)) $SPEC = ", ".$special;
1582 $ORDER = $name.$SPEC;
1583 if ($table == "country") $ORDER = $special;
1584 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM "._MYSQL_PREFIX."_%s ".$where." ORDER BY %s",
1585 array($id, $ORDER, $table, $name), __FILE__, __LINE__);
1586 if (SQL_NUMROWS($result) > 0) {
1587 // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1588 while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1589 if (empty($special)) $add = "";
1590 $ret .= "<OPTION value=\"".$value."\"";
1591 if ($default == $value) $ret .= " selected checked";
1592 if (!empty($add)) $add = " (".$add.")";
1593 $ret .= ">".$title.$add."</OPTION>\n";
1597 SQL_FREERESULT($result);
1600 $ret = "<OPTION value=\"x\">".SELECT_NONE."</OPTION>\n";
1604 // Return - hopefully - the requested data
1607 // Activate exchange (DEPERECATED???)
1608 function activateExchange() {
1610 $result = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND max_mails > 0", __FILE__, __LINE__);
1611 if (SQL_NUMROWS($result) >= $_CONFIG['activate_xchange'])
1614 SQL_FREERESULT($result);
1618 "UPDATE "._MYSQL_PREFIX."_mod_reg SET locked='N', hidden='N', mem_only='Y' WHERE module='order' LIMIT 1",
1619 "UPDATE "._MYSQL_PREFIX."_member_menu SET visible='Y', locked='N' WHERE what='order' OR what='unconfirmed' LIMIT 2",
1620 "UPDATE "._MYSQL_PREFIX."_config SET activate_xchange='0' WHERE config=0 LIMIT 1"
1624 foreach ($SQLs as $sql) {
1625 $result = SQL_QUERY($sql, __FILE__, __LINE__);
1628 // @TODO Destroy cache
1632 function DELETE_USER_ACCOUNT($uid, $reason)
1635 $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1636 FROM "._MYSQL_PREFIX."_user_points AS p
1637 LEFT JOIN "._MYSQL_PREFIX."_user_data AS d
1638 ON p.userid=d.userid
1639 WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1640 if (SQL_NUMROWS($result) == 1) {
1641 // Save his points to add them to the jackpot
1642 list($points) = SQL_FETCHROW($result);
1643 SQL_FREERESULT($result);
1645 // Delete points entries as well
1646 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1648 // Update mediadata as well
1649 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1651 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1654 // Now, when we have all his points adds them do the jackpot!
1655 ADD_JACKPOT($points);
1658 // Delete category selections as well...
1659 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s",
1660 array(bigintval($uid)), __FILE__, __LINE__);
1662 // Remove from rallye if found
1663 if (EXT_IS_ACTIVE("rallye")) {
1664 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_rallye_users WHERE userid=%s",
1665 array(bigintval($uid)), __FILE__, __LINE__);
1668 // Now a mail to the user and that's all...
1669 $msg = LOAD_EMAIL_TEMPLATE("del-user", array('text' => $reason), $uid);
1670 SEND_EMAIL($uid, ADMIN_DEL_ACCOUNT, $msg);
1672 // Ok, delete the account!
1673 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__);
1676 function META_DESCRIPTION ($mod, $wht) {
1677 global $_CONFIG, $DEPTH;
1679 // Exclude admin and member's area
1680 if (($mod != "admin") && ($mod != "login")) {
1681 // Construct dynamic description
1682 $DESCR = MAIN_TITLE." ".trim($_CONFIG['title_middle'])." ".ADD_DESCR("guest", "what-".$wht, true);
1684 // Output it directly
1685 OUTPUT_HTML("<meta name=\"description\" content=\"".$DESCR."\" />");
1692 function ADD_JACKPOT($points) {
1693 $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1694 if (SQL_NUMROWS($result) == 0) {
1696 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok','%s')", array($points), __FILE__, __LINE__);
1699 SQL_FREERESULT($result);
1702 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points+%s WHERE ok='ok' LIMIT 1",
1703 array($points), __FILE__, __LINE__);
1707 function SUB_JACKPOT($points) {
1711 // Get current points
1712 $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1713 if (SQL_NUMROWS($result) == 0) {
1715 SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', 0.00000)", __FILE__, __LINE__);
1718 list($jackpot) = SQL_FETCHROW($result);
1719 if ($jackpot >= $points) {
1720 // Update points when there are enougth points in jackpot
1721 SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points-%s WHERE ok='ok' LIMIT 1",
1722 array($points), __FILE__, __LINE__);
1723 $ret = $jackpot - $points;
1728 SQL_FREERESULT($result);
1731 function IS_DEMO() {
1732 return ((EXT_IS_ACTIVE("demo")) && (get_session('admin_login') == "demo"));
1735 function LOAD_CONFIG ($no="0") {
1737 $CFG_DUMMY = array();
1739 // Check for cache extension, cache-array and if the requested configuration is in cache
1740 if ((is_array($cacheArray)) && (isset($cacheArray['config'][$no])) && (is_array($cacheArray['config'][$no]))) {
1741 // Load config from cache
1742 //* DEBUG: */ echo gettype($cacheArray['config'][$no])."<br />\n";
1743 foreach ($cacheArray['config'][$no] as $key => $value) {
1744 $CFG_DUMMY[$key] = $value;
1747 // Count cache hits if exists
1748 if ((isset($CFG_DUMMY['cache_hits'])) && (EXT_IS_ACTIVE("cache"))) {
1749 $CFG_DUMMY['cache_hits']++;
1752 // Load config from DB
1753 $result_config = SQL_QUERY_ESC("SELECT * FROM "._MYSQL_PREFIX."_config WHERE config=%d LIMIT 1",
1754 array(bigintval($no)), __FILE__, __LINE__);
1756 // Get config from database
1757 $CFG_DUMMY = SQL_FETCHARRAY($result_config);
1760 SQL_FREERESULT($result_config);
1762 // Remember this config in the array
1763 $cacheArray['config'][$no] = $CFG_DUMMY;
1766 // Return config array
1769 // Gets the matching what name from module
1770 function GET_WHAT($modCheck) {
1774 //* DEBUG: */ echo __LINE__."!".$modCheck."!<br />\n";
1784 if (($modCheck == "index") && (!empty($_CONFIG['index_home']))) $wht = $_CONFIG['index_home'];
1792 // Return what value
1796 function MODULE_HAS_MENU($mod, $forceDb = false) {
1797 global $cacheArray, $_CONFIG;
1799 // All is false by default
1801 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):mod={$mod},cache=".GET_EXT_VERSION("cache")."<br />\n";
1802 if (GET_EXT_VERSION("cache") >= "0.1.2") {
1803 // Cache version is okay, so let's check the cache!
1804 if (isset($cacheArray['modules']['has_menu'][$mod])) {
1805 // Check module cache and count hit
1806 $ret = ($cacheArray['modules']['has_menu'][$mod] == "Y");
1807 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1808 } elseif (isset($cacheArray['extensions']['ext_menu'][$mod])) {
1809 // Check cache and count hit
1810 $ret = ($cacheArray['extensions']['ext_menu'][$mod] == "Y");
1811 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1813 } elseif ((GET_EXT_VERSION("sql_patches") >= "0.3.6") && ((!EXT_IS_ACTIVE("cache")) || ($forceDb === true))) {
1814 // Check database for entry
1815 $result = SQL_QUERY_ESC("SELECT has_menu FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1",
1816 array($mod), __FILE__, __LINE__);
1817 if (SQL_NUMROWS($result) == 1) {
1818 list($has_menu) = SQL_FETCHROW($result);
1820 // Fake cache... ;-)
1821 $cacheArray['extensions']['ext_menu'][$mod] = $has_menu;
1823 // Does it have a menu?
1824 $ret = ($has_menu == "Y");
1828 SQL_FREERESULT($result);
1829 } elseif (GET_EXT_VERSION("sql_patches") == "") {
1830 // No sql_patches installed, so maybe in admin area?
1831 $ret = ((IS_ADMIN()) && ($mod == "admin")); // Then there is a menu!
1838 // Subtract points from database and mediadata cache
1839 function SUB_POINTS ($subject, $uid, $points) {
1840 // Add points to used points
1841 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
1842 array($points, bigintval($uid)), __FILE__, __LINE__);
1844 // Insert booking record
1845 if (EXT_IS_ACTIVE("booking")) {
1847 ADD_BOOKING_RECORD($subject, $uid, $points, "sub");
1850 // Update mediadata as well
1851 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1853 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1857 // Update config entries
1858 function UPDATE_CONFIG ($entries, $values, $updateMode="") {
1861 // Do not update config in CSS mode
1862 if (($CSS == "1") || ($CSS == -1)) {
1866 // Do we have multiple entries?
1867 if (is_array($entries)) {
1870 foreach ($entries as $idx => $entry) {
1872 if (!empty($updateMode)) {
1874 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1876 // Check if string or number
1877 if (($values[$idx] + 0) === $values[$idx]) {
1879 $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
1880 } elseif ($values[$idx] == "UNIX_TIMESTAMP()") {
1881 // Function UNIX_TIMESTAMP() detected
1882 $all .= sprintf("%s=%s,", $entry, $values[$idx]);
1885 $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
1890 // Remove last comma
1891 $entries = substr($all, 0, -1);
1892 } elseif (!empty($updateMode)) {
1894 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1896 // Regular entry to update
1897 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1900 // Run database update
1901 //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1902 SQL_QUERY("UPDATE "._MYSQL_PREFIX."_config SET ".$entries." WHERE config=0 LIMIT 1", __FILE__, __LINE__);
1904 // Get affected rows
1905 $affectedRows = SQL_AFFECTEDROWS();
1906 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />\n";
1909 REBUILD_CACHE("config", "config");
1912 // Creates a new task for updated extension
1913 function CREATE_EXTENSION_UPDATE_TASK ($admin_id, $subject, $notes) {
1914 // Check if task is not there
1915 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_task_system WHERE subject='%s' LIMIT 1",
1916 array($subject), __FILE__, __LINE__);
1917 if (SQL_NUMROWS($result) == 0) {
1918 // Task not created so it's a brand-new extension which we need to register and create a task for!
1919 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created) VALUES ('%s','0','NEW','EXTENSION_UPDATE','%s','%s', UNIX_TIMESTAMP())",
1920 array($admin_id, $subject, $notes), __FILE__, __LINE__);
1924 SQL_FREERESULT($result);
1927 // Creates a new task for newly installed extension
1928 function CREATE_NEW_EXTENSION_TASK ($admin_id, $subject, $ext) {
1929 // Not installed and do we have created a task for the admin?
1930 $result = SQL_QUERY_ESC("SELECT `id` FROM `"._MYSQL_PREFIX."_task_system` WHERE `subject` LIKE '%s%%' LIMIT 1",
1931 array($subject), __FILE__, __LINE__);
1932 if ((SQL_NUMROWS($result) == 0) && (GET_EXT_VERSION($ext) == "")) {
1934 $tpl = sprintf("%stemplates/%s/html/ext/ext_%s.tpl",
1940 // Load text for task
1941 if (FILE_READABLE($tpl)) {
1942 // Load extension's own text template (HTML!)
1943 $msg = LOAD_TEMPLATE("ext_".$ext, true);
1945 // Load default message
1946 $msg = LOAD_TEMPLATE("admin_new_ext", "", 0);
1949 // Task not created so it's a brand-new extension which we need to register and create a task for!
1950 $result_insert = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created)
1951 VALUES (%s,0,'NEW','EXTENSION','%s','%s',UNIX_TIMESTAMP())",
1956 ), __FILE__, __LINE__, true, false
1961 SQL_FREERESULT($result);
1964 // Prepares an SQL statement part for HTML mail and/or holiday depency
1965 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1966 // Exclude no users by default
1970 if ($mode == "html") $MORE = " AND html='Y'";
1971 if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1972 // Add something for the holiday extension
1973 $MORE .= " AND holiday_active='N'";
1980 // "Getter" for total available receivers
1981 function GET_TOTAL_RECEIVERS ($mode="normal") {
1983 $result_all = SQL_QUERY("SELECT userid
1984 FROM "._MYSQL_PREFIX."_user_data
1985 WHERE status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode),
1986 __FILE__, __LINE__);
1989 $numRows = SQL_NUMROWS($result_all);
1992 SQL_FREERESULT($result_all);
1998 // Returns HTML code with an "<option> list" of all categories
1999 function ADD_CATEGORY_OPTIONS ($mode) {
2000 // Prepare WHERE statement
2001 $whereStatement = " WHERE visible='Y'";
2002 if (IS_ADMIN()) $whereStatement = "";
2004 // Initialize array...
2012 $result = SQL_QUERY("SELECT id, cat FROM "._MYSQL_PREFIX."_cats".$whereStatement." ORDER BY sort", __FILE__, __LINE__);
2013 if (SQL_NUMROWS($result) > 0) {
2014 // ... and begin loading stuff
2015 while (list($id, $cat) = SQL_FETCHROW($result)) {
2016 // Transfer some data
2017 $CATS['id'][] = $id;
2018 $CATS['name'][] = $cat;
2020 // Check which users are in this category
2021 $result_uids = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_cats WHERE cat_id=%s",
2022 array(bigintval($id)), __FILE__, __LINE__);
2026 while (list($ucat) = SQL_FETCHROW($result_uids)) {
2027 $result_ver = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data
2028 WHERE userid=%s AND status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
2029 array(bigintval($ucat)), __FILE__, __LINE__);
2030 $uid_cnt += SQL_NUMROWS($result_ver);
2033 SQL_FREERESULT($result_ver);
2037 SQL_FREERESULT($result_uids);
2040 $CATS['uids'][] = $uid_cnt;
2044 SQL_FREERESULT($result);
2048 foreach ($CATS['id'] as $key => $value) {
2049 if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
2050 $OUT .= " <OPTION value=\"".$value."\">".$CATS['name'][$key]." (".$CATS['uids'][$key]." ".USER_IN_CAT.")</OPTION>\n";
2053 // No cateogries are defined yet
2054 $OUT = "<option class=\"member_failed\">".MEMBER_NO_CATS."</option>\n";
2061 // Add bonus mail to queue
2062 function ADD_BONUS_MAIL_TO_QUEUE ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode="normal", $receiver=0) {
2063 // Is admin or bonus extension there?
2067 } elseif (!EXT_IS_ACTIVE("bonus")) {
2072 // Calculcate target sent
2073 $target = SELECTION_COUNT(explode(";", $receiverList));
2075 // Receiver is zero?
2076 if ($receiver == 0) {
2078 $receiver = $target;
2081 // HTML extension active?
2082 if (EXT_IS_ACTIVE("html")) {
2083 // No HTML by default
2087 if ($mode == "html") $HTML = "Y";
2090 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
2091 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
2092 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
2102 bigintval($receiver),
2104 ), __FILE__, __LINE__);
2107 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
2108 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
2109 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
2119 bigintval($receiver),
2120 ), __FILE__, __LINE__);
2124 // Generate a receiver list for given category and maximum receivers
2125 function GENERATE_RECEIVER_LIST ($cat, $receiver, $mode="") {
2134 $cat = bigintval($cat);
2135 $receiver = bigintval($receiver);
2137 // Is the receiver zero and mode set?
2138 if (($receiver == 0) && (!empty($mode))) {
2139 // Auto-fix receiver maximum
2140 $receiver = GET_TOTAL_RECEIVERS($mode);
2146 $CAT_TABS = "LEFT JOIN "._MYSQL_PREFIX."_user_cats AS c ON d.userid=c.userid";
2147 $CAT_WHERE = " AND c.cat_id=%s";
2150 // Exclude users in holiday?
2151 if (GET_EXT_VERSION("holiday") >= "0.1.3") {
2152 // Add something for the holiday extension
2153 $CAT_WHERE .= " AND d.holiday_active='N'";
2156 if ((EXT_IS_ACTIVE("html_mail")) && ($mode == "html")) {
2157 // Only include HTML receivers
2158 $result = SQL_QUERY_ESC("SELECT d.userid FROM "._MYSQL_PREFIX."_user_data AS d ".$CAT_TABS." WHERE d.status='CONFIRMED' AND d.html='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2159 array($cat, $_CONFIG['order_select'], $_CONFIG['order_mode'], $receiver), __FILE__, __LINE__);
2162 $result = SQL_QUERY_ESC("SELECT d.userid FROM "._MYSQL_PREFIX."_user_data AS d ".$CAT_TABS." WHERE d.status='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2163 array($cat, $_CONFIG['order_select'], $_CONFIG['order_mode'], $receiver), __FILE__, __LINE__);
2167 if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
2169 while (list($REC) = SQL_FETCHROW($result)) {
2170 // Add receiver when not empty
2171 if (!empty($REC)) $receiverList .= $REC.";";
2175 SQL_FREERESULT($result);
2177 // Remove trailing semicolon
2178 $receiverList = substr($receiverList, 0, -1);
2182 return $receiverList;
2185 // Get timestamp for given stats type and data
2186 function USER_STATS_GET_TIMESTAMP ($type, $data, $uid = 0) {
2187 // Default timestamp is zero
2191 if ((isset($GLOBALS['userid'])) && ($uid == 0)) {
2192 $uid = $GLOBALS['userid'];
2195 // Is the extension installed and updated?
2196 if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2201 // Try to find the entry
2202 $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
2203 FROM "._MYSQL_PREFIX."_user_stats_data
2204 WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
2206 array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2208 // Is the entry there?
2209 if (SQL_NUMROWS($result) == 1) {
2211 list($stamp) = SQL_FETCHROW($result);
2215 SQL_FREERESULT($result);
2221 // Inserts user stats
2222 function USER_STATS_INSERT_RECORD ($uid, $type, $data) {
2223 // Is the extension installed and updated?
2224 if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2230 if ((!USER_STATS_GET_TIMESTAMP($type, $data, $uid)) && (!is_array($data))) {
2232 SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_stats_data (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2233 array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2234 } elseif (is_array($data)) {
2236 DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2240 // "Getter" for array for user refs and points in given level
2241 function GET_USER_REF_POINTS ($uid, $level) {
2244 //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
2245 // Default is no refs and no nickname
2249 // Do we have nickname extension installed?
2250 if (EXT_IS_ACTIVE("nickname")) {
2251 $ADD = ", ud.nickname";
2254 // Get refs from database
2255 $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$ADD."
2256 FROM "._MYSQL_PREFIX."_user_refs AS ur
2257 LEFT JOIN "._MYSQL_PREFIX."_user_points AS up
2258 ON ur.refid=up.userid AND ur.level=0
2259 LEFT JOIN "._MYSQL_PREFIX."_user_data AS ud
2260 ON ur.refid=ud.userid
2261 WHERE ur.userid=%s AND ur.level=%s
2262 ORDER BY ur.refid ASC",
2263 array(bigintval($uid), bigintval($level)), __FILE__, __LINE__);
2265 // Are there some entries?
2266 if (SQL_NUMROWS($result) > 0) {
2267 // Fetch all entries
2268 while ($row = SQL_FETCHARRAY($result)) {
2269 // Get total points of this user
2270 $row['points'] = GET_TOTAL_DATA($row['refid'], "user_points", "points") - GET_TOTAL_DATA($row['refid'], "user_data", "used_points");
2272 // Get unconfirmed mails
2273 $row['unconfirmed'] = GET_TOTAL_DATA($row['refid'], "user_links", "id", "userid", true);
2275 // Init clickrate with zero
2276 $row['clickrate'] = 0;
2278 // Is at least one mail received?
2279 if ($row['emails_received'] > 0) {
2280 // Calculate clickrate
2281 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2284 // Activity is "active" by default because if autopurge is not installed
2285 $row['activity'] = MEMBER_ACTIVITY_ACTIVE;
2287 // Is autopurge installed and the user inactive?
2288 if ((EXT_IS_ACTIVE("autopurge")) && ((time() - $_CONFIG['ap_inactive_since']) >= $row['last_online'])) {
2290 $row['activity'] = MEMBER_ACTIVITY_INACTIVE;
2293 // Remove some entries
2294 unset($row['mails_confirmed']);
2295 unset($row['emails_received']);
2296 unset($row['last_online']);
2299 $refs[$row['id']] = $row;
2304 SQL_FREERESULT($result);
2307 //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
2311 // Recuced the amount of received emails for the receipients for given email
2312 function REDUCT_RECIPIENT_RECEIVED_MAILS ($column, $id, $count) {
2313 // Search for mail in database
2314 $result = SQL_QUERY_ESC("SELECT `userid` FROM `"._MYSQL_PREFIX."_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2315 array($column, bigintval($id), $count), __FILE__, __LINE__);
2317 // Are there entries?
2318 if (SQL_NUMROWS($result) > 0) {
2319 // Now load all userids for one big query!
2321 while (list($uid) = SQL_FETCHROW($result)) {
2325 // Now update all user accounts
2326 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2327 array(implode(",", $UIDs), count($UIDs)), __FILE__, __LINE__);
2331 SQL_FREERESULT($result);
projects / mailer.git / blob