Debug comments rewritten
[mailer.git] / inc / mysql-manager.php
1 <?php
2 /************************************************************************
3  * MXChange v0.2.1                                    Start: 08/26/2003 *
4  * ===============                              Last change: 11/29/2004 *
5  *                                                                      *
6  * -------------------------------------------------------------------- *
7  * File              : mysql-manager.php                                *
8  * -------------------------------------------------------------------- *
9  * Short description : All MySQL-related functions                      *
10  * -------------------------------------------------------------------- *
11  * Kurzbeschreibung  : Alle MySQL-Relevanten Funktionen                 *
12  * -------------------------------------------------------------------- *
13  *                                                                      *
14  * -------------------------------------------------------------------- *
15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
16  * For more information visit: http://www.mxchange.org                  *
17  *                                                                      *
18  * This program is free software; you can redistribute it and/or modify *
19  * it under the terms of the GNU General Public License as published by *
20  * the Free Software Foundation; either version 2 of the License, or    *
21  * (at your option) any later version.                                  *
22  *                                                                      *
23  * This program is distributed in the hope that it will be useful,      *
24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
26  * GNU General Public License for more details.                         *
27  *                                                                      *
28  * You should have received a copy of the GNU General Public License    *
29  * along with this program; if not, write to the Free Software          *
30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
31  * MA  02110-1301  USA                                                  *
32  ************************************************************************/
33
34 // Some security stuff...
35 if (!defined('__SECURITY')) {
36         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
37         require($INC);
38 }
39
40 //
41 function ADD_MODULE_TITLE($mod) {
42         global $cacheArray, $_CONFIG;
43         $name = ""; $result = false;
44
45         // Is the script installed?
46         if (isBooleanConstantAndTrue('mxchange_installed')) {
47                 // Check if cache is valid
48                 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
49                         // Load from cache
50                         $name = $cacheArray['modules']['title'][$mod];
51
52                         // Update cache hits
53                         if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
54                 } else {
55                         // Load from database
56                         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__);
57                         list($name) = SQL_FETCHROW($result);
58                         SQL_FREERESULT($result);
59                 }
60         } // END - if
61
62         // Trim name
63         $name = trim($name);
64
65         // Still no luck or empty title?
66         if (empty($name)) {
67                 // No name found
68                 $name = LANG_UNKNOWN_MODULE." (".$mod.")";
69                 if (SQL_NUMROWS($result) == 0) {
70                         // Add module to database
71                         $dummy = CHECK_MODULE($mod);
72                 } // END - if
73         } // END - if
74
75         // Return name
76         return $name;
77 }
78
79 // Check validity of a given module name (no file extension)
80 function CHECK_MODULE($mod) {
81         // We need them now here...
82         global $cacheArray, $_CONFIG, $cacheInstance;
83
84         // Filter module name (names with low chars and underlines are fine!)
85         $mod = preg_replace("/[^a-z_]/", "", $mod);
86
87         // Check for prefix is a extension...
88         $modSplit = explode("_", $mod);
89         $extension = ""; $mod_chk = $mod;
90         //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
91         if (count($modSplit) == 2) {
92                 // Okay, there is a seperator (_) in the name so is the first part a module?
93                 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
94                 if (EXT_IS_ACTIVE($modSplit[0])) {
95                         // The prefix is an extension's name, so let's set it
96                         $extension = $modSplit[0]; $mod = $modSplit[1];
97                 }
98         }
99
100         // Major error in module registry is the default
101         $ret = "major";
102
103         // Check if script is installed if not return a "done" to prevent some errors
104         if ((!isBooleanConstantAndTrue('mxchange_installed')) || (isBooleanConstantAndTrue('mxchange_installing')) || (!isBooleanConstantAndTrue('admin_registered'))) return "done";
105
106         // Check if cache is latest version
107         $locked = "Y"; $hidden = "N"; $admin = "N"; $mem = "N"; $found = false;
108         if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (is_array($cacheArray['modules']['module']))) {
109                 // Is the module cached?
110                 if (isset($cacheArray['modules']['locked'][$mod_chk])) {
111                         // Check cache
112                         $locked = $cacheArray['modules']['locked'][$mod_chk];
113                         $hidden = $cacheArray['modules']['hidden'][$mod_chk];
114                         $admin  = $cacheArray['modules']['admin_only'][$mod_chk];
115                         $mem    = $cacheArray['modules']['mem_only'][$mod_chk];
116
117                         // Update cache hits
118                         if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
119                         $found = true;
120                 } else {
121                         // No, then we have to update it!
122                         $ret = "cache_miss";
123                 }
124         } else {
125                 // Check for module in database
126                 $result = SQL_QUERY_ESC("SELECT locked, hidden, admin_only, mem_only FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod_chk), __FILE__, __LINE__);
127                 if (SQL_NUMROWS($result) == 1) {
128                         // Read data
129                         list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
130                         SQL_FREERESULT($result);
131                         $found = true;
132                 }
133         }
134
135         // Check returned values against current access permissions
136         //
137         //  Admin access            ----- Guest access -----           --- Guest   or   member? ---
138         if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_MEMBER())))) {
139                 // If you are admin you are welcome for everything!
140                 $ret = "done";
141         } elseif ($locked == "Y") {
142                 // Module is locked
143                 $ret = "locked";
144         } elseif (($mem == "Y") && (!IS_MEMBER())) {
145                 // You have to login first!
146                 $ret = "mem_only";
147         } elseif (($admin == "Y") && (!IS_ADMIN())) {
148                 // Only the Admin is allowed to enter this module!
149                 $ret = "admin_only";
150         }
151
152         // Still no luck or not found?
153         if (($ret == "major") || ($ret == "cache_miss") || (!$found)) {
154                 //              ----- Legacy module -----                                   ---- Module in base folder  ----                       --- Module with extension's name ---
155                 if ((FILE_READABLE(sprintf("%sinc/modules/%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s/%s.php", PATH, $extension, $mod)))) {
156                         // Data is missing so we add it
157                         if (GET_EXT_VERSION("sql_patches") >= "0.3.6") {
158                                 // Since 0.3.6 we have a has_menu column, this took me a half hour
159                                 // to find a loop here... *sigh*
160                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
161 (module, locked, hidden, mem_only, admin_only, has_menu) VALUES
162 ('%s','Y','N','N','N','N')", array($mod_chk), __FILE__, __LINE__);
163                         } else {
164                                 // Wrong/missing sql_patches!
165                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
166 (module, locked, hidden, mem_only, admin_only) VALUES
167 ('%s','Y','N','N','N')", array($mod_chk), __FILE__, __LINE__);
168                         }
169
170                         // Everthing is fine?
171                         if (SQL_AFFECTEDROWS() < 1) {
172                                 // Something bad happend!
173                                 return "major";
174                         } // END - if
175
176                         // Destroy cache here
177                         REBUILD_CACHE("mod_reg", "modreg");
178
179                         // And reload data
180                         $ret = CHECK_MODULE($mod_chk);
181                 } else {
182                         // Module not found we don't add it to the database
183                         $ret = "404";
184                 }
185         } // END - if
186
187         // Return the value
188         return $ret;
189 }
190
191 // Add menu description pending on given file name (without path!)
192 function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
193         global $NAV_DEPTH, $_CONFIG;
194         // Use only filename of the file ;)
195         $file = basename($file);
196
197         // Init variables
198         $LINK_ADD = ""; $OUT = ""; $AND = "";
199
200         // First we have to do some analysis...
201         if (substr($file, 0, 7) == "action-") {
202                 // This is an action file!
203                 $type = "action";
204                 $search = substr($file, 7);
205                 switch ($ACC_LVL)
206                 {
207                 case "admin":
208                         $modCheck = "admin";
209                         break;
210
211                 case "sponsor":
212                 case "guest":
213                 case "member":
214                         $modCheck = $GLOBALS['module'];
215                         break;
216                 }
217                 $AND = " AND (what='' OR what IS NULL)";
218         } elseif (substr($file, 0, 5) == "what-") {
219                 // This is an admin what file!
220                 $type = "what";
221                 $search = substr($file, 5);
222                 $AND = "";
223                 switch ($ACC_LVL)
224                 {
225                 case "admin":
226                         $modCheck = "admin";
227                         break;
228
229                 case "guest":
230                 case "member":
231                         $modCheck = $GLOBALS['module'];
232                         if (!IS_ADMIN()) {
233                                 $AND = " AND visible='Y' AND locked='N'";
234                         }
235                         break;
236                 }
237                 $dummy = substr($search, 0, -4);
238                 $AND .= " AND action='".GET_ACTION($ACC_LVL, $dummy)."'";
239         } elseif (($ACC_LVL == "sponsor") || ($ACC_LVL == "engine")) {
240                 // Sponsor / engine menu
241                 $type = "what";
242                 $search = $file;
243                 $modCheck = $GLOBALS['module'];
244                 $AND = "";
245         } else {
246                 // Other
247                 $type = "menu";
248                 $search = $file;
249                 $modCheck = $GLOBALS['module'];
250                 $AND = "";
251         }
252         if ((!isset($NAV_DEPTH)) && (!$return)) {
253                 $NAV_DEPTH = 0;
254                 $prefix = "<DIV class=\"you_are_here\">".YOU_ARE_HERE."&nbsp;<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$GLOBALS['module'].$LINK_ADD."\">Home</A></STRONG>";
255         } else {
256                 if (!$return) $NAV_DEPTH++;
257                 $prefix = "";
258         }
259
260         $prefix .= "&nbsp;-&gt;&nbsp;";
261
262         // We need to remove .php and the end
263         if (substr($search, -4, 4) == ".php") {
264                 // Remove the .php
265                 $search = substr($search, 0, -4);
266         } // END - i
267
268         // Get the title from menu
269         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1",
270          array($ACC_LVL, $type, $search), __FILE__, __LINE__);
271
272         // Menu found?
273         if (SQL_NUMROWS($result) == 1) {
274                 // Load title
275                 list($ret) = SQL_FETCHROW($result);
276
277                 // Shall we return it?
278                 if ($return) {
279                         // Return title
280                         return $ret;
281                 } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && ($_CONFIG['youre_here'] == "Y")) || ((IS_ADMIN()) && ($modCheck == "admin"))) {
282                         // Output HTML code
283                         $OUT = $prefix."<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$modCheck."&amp;".$type."=".$search.$LINK_ADD."\">".$ret."</A></STRONG>\n";
284
285                         // Can we close the you-are-here navigation?
286                         //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*<br />\n";
287                         //* DEBUG: */ die("<pre>".print_r($_CONFIG, true)."</pre>");
288                         if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
289                                 //* DEBUG: */ echo __LINE__."+".$type."+<br />\n";
290                                 $OUT .= "</div>\n";
291
292                                 // Extension removeip activated?
293                                 if ((EXT_IS_ACTIVE("removeip")) && (isset($_CONFIG['removeip_'.strtolower($ACC_LVL).'_show'])) && ($_CONFIG['removeip_'.strtolower($ACC_LVL).'_show'] == "Y")) {
294                                         // Add anoymity/privacy infos
295                                         $OUT .= REMOVEIP_ADD_INFOS();
296                                 } // END - if
297
298                                 // Add line-break tag
299                                 $OUT .= "<br />\n";
300                                 $NAV_DEPTH = "0";
301
302                                 // Handle failed logins here if not in guest
303                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):type={$type},action={$GLOBALS['action']},what={$GLOBALS['what']},lvl={$ACC_LVL}<br />\n";
304                                 if ((($type == "what") || ($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview") || ($GLOBALS['what'] == $_CONFIG['index_home']))) && ($ACC_LVL != "guest") && ((GET_EXT_VERSION("sql_patches") >= "0.4.7") || (GET_EXT_VERSION("admins") >= "0.7.0"))) {
305                                         // Handle failture
306                                         $OUT .= HANDLE_LOGIN_FAILTURES($ACC_LVL);
307                                 } // END - if
308                         } // END - if
309                 }
310         } // END - if
311
312         // Free result
313         SQL_FREERESULT($result);
314
315         // Return or output HTML code?
316         if ($output) {
317                 // Output HTML code here
318                 OUTPUT_HTML($OUT);
319         } else {
320                 // Return HTML code
321                 return $OUT;
322         }
323 }
324 //
325 function ADD_MENU($MODE, $act, $wht) {
326         global $_CONFIG;
327
328         // Init some variables
329         $main_cnt = 0;
330         $AND = "";
331         $main_action = "";
332         $sub_what = "";
333
334         if (!VALIDATE_MENU_ACTION($MODE, $act, $wht, true)) return CODE_MENU_NOT_VALID;
335
336         // Non-admin shall not see all menus
337         if (!IS_ADMIN()) {
338                 $AND = " AND visible='Y' AND locked='N'";
339         }
340
341         // Load SQL data and add the menu to the output stream...
342         $result_main = SQL_QUERY_ESC("SELECT title, action FROM "._MYSQL_PREFIX."_%s_menu WHERE (what='' OR what IS NULL)".$AND." ORDER BY sort",
343          array($MODE), __FILE__, __LINE__);
344         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
345         if (SQL_NUMROWS($result_main) > 0) {
346                 OUTPUT_HTML("<TABLE border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$MODE."_menu\">");
347                 // There are menus available, so we simply display them... :)
348                 while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) {
349                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
350                         // Init variables
351                         $BLOCK_MODE = false; $act = $main_action;
352
353                         // Prepare content
354                         $content = array(
355                                 'action' => $main_action,
356                                 'title'  => $main_title
357                         );
358
359                         // Load menu header template
360                         LOAD_TEMPLATE($MODE."_menu_title", false, $content);
361
362                         $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort",
363                          array($MODE, $main_action), __FILE__, __LINE__);
364                         $ctl = SQL_NUMROWS($result_sub);
365                         if ($ctl > 0) {
366                                 $cnt=0;
367                                 while (list($sub_title, $sub_what) = SQL_FETCHROW($result_sub)) {
368                                         // Init content
369                                         $content = "";
370
371                                         // Full file name for checking menu
372                                         //* DEBUG: */ echo __LINE__.":!!!!".$sub_what."!!!<br />\n";
373                                         $test_inc = sprintf("%sinc/modules/%s/what-%s.php", PATH, $MODE, $sub_what);
374                                         $test = (FILE_READABLE($test_inc));
375                                         if ($test) {
376                                                 if ((!empty($wht)) && (($wht == $sub_what))) {
377                                                         $content = "<STRONG>";
378                                                 }
379
380                                                 // Navigation link
381                                                 $content .= "<A name=\"menu\" class=\"menu_blur\" href=\"".URL."/modules.php?module=".$GLOBALS['module']."&amp;what=".$sub_what.ADD_URL_DATA("")."\" target=\"_self\">";
382                                         } else {
383                                                 $content .= "<I>";
384                                         }
385
386                                         // Menu title
387                                         $content .= $_CONFIG['menu_blur_spacer'].$sub_title;
388
389                                         if ($test) {
390                                                 $content .= "</A>";
391                                         } else {
392                                                 $content .= "</I>";
393                                         }
394
395                                         if ((!empty($wht)) && (($wht == $sub_what))) {
396                                                 $content .= "</STRONG>";
397                                         }
398                                         $wht = $sub_what; $cnt++;
399                                         // Prepare array
400                                         $content =  array(
401                                                 'menu' => $content,
402                                                 'what' => $sub_what
403                                         );
404
405                                         // Add regular menu row or bottom row?
406                                         if ($cnt < $ctl) {
407                                                 LOAD_TEMPLATE($MODE."_menu_row", false, $content);
408                                         } else {
409                                                 LOAD_TEMPLATE($MODE."_menu_bottom", false, $content);
410                                         }
411                                 }
412                         } else {
413                                 // This is a menu block... ;-)
414                                 $BLOCK_MODE = true;
415                                 $INC_BLOCK = sprintf("%sinc/modules/%s/action-%s.php", PATH, $MODE, $main_action);
416                                 if (FILE_READABLE($INC_BLOCK)) {
417                                         // Load include file
418                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("<TR>
419   <TD class=\"".$MODE."_menu_whats\">");
420                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
421                                         include ($INC_BLOCK);
422                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
423                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("  </TD>
424 </TR>");
425                                 }
426                                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
427                         }
428                         $main_cnt++;
429                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
430                         if (SQL_NUMROWS($result_main) > $main_cnt)      OUTPUT_HTML("<TR><TD class=\"".$MODE."_menu_seperator\"></TD></TR>");
431                 }
432
433                 // Free memory
434                 SQL_FREERESULT($result_main);
435
436                 // Close table
437                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
438                 OUTPUT_HTML("</TABLE>");
439         }
440 }
441 // This patched function will reduce many SELECT queries for the specified or current admin login
442 function IS_ADMIN($admin="")
443 {
444         global $cacheArray, $_CONFIG;
445         $ret = false; $passCookie = ""; $valPass = "";
446         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
447
448         // If admin login is not given take current from cookies...
449         if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
450                 // Get admin login and password from session/cookies
451                 $admin = get_session('admin_login');
452                 $passCookie = get_session('admin_md5');
453         }
454         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."<br />";
455
456         // Search in array for entry
457         if (isset($cacheArray['admin_hash'])) {
458                 // Use cached string
459                 $valPass = $cacheArray['admin_hash'];
460         } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
461                 // Count cache hits
462                 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
463
464                 // Login data is valid or not?
465                 $valPass = generatePassString($cacheArray['admins']['password'][$admin]);
466
467                 // Cache it away
468                 $cacheArray['admin_hash'] = $valPass;
469         } elseif (!empty($admin)) {
470                 // Search for admin
471                 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
472                  array($admin), __FILE__, __LINE__);
473
474                 // Is he admin?
475                 $passDB = "";
476                 if (SQL_NUMROWS($result) == 1) {
477                         // Admin login was found so let's load password from DB
478                         list($passDB) = SQL_FETCHROW($result);
479
480                         // Temporary cache it
481                         $cacheArray['admins']['password'][$admin] = $passDB;
482
483                         // Generate password hash
484                         $valPass = generatePassString($passDB);
485                 } // END - if
486
487                 // Free memory
488                 SQL_FREERESULT($result);
489         }
490
491         if (!empty($valPass)) {
492                 // Check if password is valid
493                 //* DEBUG: */ print __FUNCTION__."*".$valPass."/".$passCookie."*<br />\n";
494                 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE("cache"))));
495         }
496
497         // Return result of comparision
498         //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
499         return $ret;
500 }
501 //
502 function ADD_MAX_RECEIVE_LIST($MODE, $default="", $return=false)
503 {
504         global $_POST;
505         $OUT = "";
506         switch ($MODE)
507         {
508         case "guest":
509                 // Guests (in the registration form) are not allowed to select 0 mails per day.
510                 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive WHERE value > 0 ORDER BY value", __FILE__, __LINE__);
511                 if (SQL_NUMROWS($result) > 0)
512                 {
513                         $OUT = "";
514                         while (list($value, $comment) = SQL_FETCHROW($result))
515                         {
516                                 $OUT .= "      <OPTION value=\"".$value."\"";
517                                 if ($_POST['max_mails'] == $value) $OUT .= " selected=\"selected\"";
518                                 $OUT .= ">".$value." ".PER_DAY;
519                                 if (!empty($comment)) $OUT .= " (".$comment.")";
520                                 $OUT .= "</OPTION>\n";
521                         }
522                         define('__MAX_RECEIVE_OPTIONS', $OUT);
523
524                         // Free memory
525                         SQL_FREERESULT($result);
526                         $OUT = LOAD_TEMPLATE("guest_receive_table", true);
527                 }
528                  else
529                 {
530                         // Maybe the admin has to setup some maximum values?
531                 }
532                 break;
533
534         case "member":
535                 // Members are allowed to set to zero mails per day (we will change this soon!)
536                 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive ORDER BY value", __FILE__, __LINE__);
537                 if (SQL_NUMROWS($result) > 0)
538                 {
539                         $OUT = "";
540                         while (list($value, $comment) = SQL_FETCHROW($result))
541                         {
542                                 $OUT .= "      <OPTION value=\"".$value."\"";
543                                 if ($default == $value) $OUT .= " selected=\"selected\"";
544                                 $OUT .= ">".$value." ".PER_DAY;
545                                 if (!empty($comment)) $OUT .= " (".$comment.")";
546                                 $OUT .= "</OPTION>\n";
547                         }
548                         define('__MAX_RECEIVE_OPTIONS', $OUT);
549                         SQL_FREERESULT($result);
550                         $OUT = LOAD_TEMPLATE("member_receive_table", true);
551                 }
552                  else
553                 {
554                         // Maybe the admin has to setup some maximum values?
555                         $OUT = LOAD_TEMPLATE("admin_settings_saved", true, NO_MAX_VALUES);
556                 }
557                 break;
558         }
559         if ($return)
560         {
561                 // Return generated HTML code
562                 return $OUT;
563         }
564          else
565         {
566                 // Output directly (default)
567                 OUTPUT_HTML($OUT);
568         }
569 }
570 //
571 function SEARCH_EMAIL_USERTAB($email)
572 {
573         $ret = false;
574         $result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE email LIKE '{PER}%s{PER}' LIMIT 1", array($email), __FILE__, __LINE__);
575         if (SQL_NUMROWS($result) == 1) $ret = true;
576         SQL_FREERESULT($result);
577         return $ret;
578 }
579 //
580 function WHAT_IS_VALID($act, $wht, $type="guest")
581 {
582         if (IS_ADMIN())
583         {
584                 // Everything is valid to the admin :-)
585                 return true;
586         }
587          else
588         {
589                 $ret = false;
590                 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what='%s' AND locked='N' LIMIT 1", array($type, $act, $wht), __FILE__, __LINE__);
591                 // Is "what" valid?
592                 if (SQL_NUMROWS($result) == 1) $ret = true;
593                 SQL_FREERESULT($result);
594                 return $ret;
595         }
596 }
597 //
598 function IS_MEMBER()
599 {
600         global $status, $LAST, $cacheArray;
601         if (!is_array($LAST)) $LAST = array();
602         $ret = false;
603
604         // is the cache entry there?
605         if (isset($cacheArray['is_member'])) {
606                 // Then return it
607                 return $cacheArray['is_member'];
608         } // END - if
609
610         // Fix "deleted" cookies first
611         FIX_DELETED_COOKIES(array('userid','u_hash','lifetime'));
612
613         // Are cookies set?
614         if ((!empty($GLOBALS['userid'])) && (isSessionVariableSet('u_hash')) && (isSessionVariableSet('lifetime')) && (defined('COOKIE_PATH')))
615         {
616                 // Cookies are set with values, but are they valid?
617                 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
618                  array($GLOBALS['userid']), __FILE__, __LINE__);
619                 if (SQL_NUMROWS($result) == 1)
620                 {
621                         // Load data from cookies
622                         list($password, $status, $mod, $onl) = SQL_FETCHROW($result);
623
624                         // Validate password by created the difference of it and the secret key
625                         $valPass = generatePassString($password);
626
627                         // Transfer last module and online time
628                         if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; }
629
630                         // So did we now have valid data and an unlocked user?
631                         //* DEBUG: */ echo $valPass."<br />".get_session('u_hash')."<br />";
632                         if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
633                                 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
634                                 $ret = true;
635                         } else {
636                                 // Maybe got locked etc.
637                                 //* DEBUG: */ echo __LINE__."!!!<br />";
638                                 destroy_user_session();
639
640                                 // Reset userid
641                                 $GLOBALS['userid'] = 0;
642                         }
643                 } else {
644                         // Cookie data is invalid!
645                         //* DEBUG: */ echo __LINE__."***<br />";
646                         destroy_user_session();
647
648                         // Reset userid
649                         $GLOBALS['userid'] = 0;
650                 }
651
652                 // Free memory
653                 SQL_FREERESULT($result);
654         } else {
655                 // Cookie data is invalid!
656                 //* DEBUG: */ echo __LINE__."///<br />";
657                 destroy_user_session();
658
659                 // Reset userid
660                 $GLOBALS['userid'] = 0;
661         }
662
663         // Cache status
664         $cacheArray['is_member'] = $ret;
665
666         // Return status
667         return $ret;
668 }
669 //
670 function UPDATE_LOGIN_DATA () {
671         global $LAST, $_CONFIG;
672         if (!is_array($LAST)) $LAST = array();
673
674         // Recheck if logged in
675         if (!IS_MEMBER()) return false;
676
677         // Secure user ID
678         $GLOBALS['userid'] = bigintval(get_session('userid'));
679
680         // Extract last online time (life) and how long is auto-login valid (time)
681         $newl = time() + bigintval(get_session('lifetime'));
682
683         // Load last module and last online time
684         $result = SQL_QUERY_ESC("SELECT last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__);
685         if (SQL_NUMROWS($result) == 1) {
686                 // Load last module and online time
687                 list($mod, $onl) = SQL_FETCHROW($result);
688                 SQL_FREERESULT($result);
689
690                 // Maybe first login time?
691                 if (empty($mod)) $mod = "login";
692
693                 if (set_session("userid", $GLOBALS['userid'], $newl, COOKIE_PATH) && set_session("u_hash", get_session('u_hash'), $newl, COOKIE_PATH) && set_session("lifetime", bigintval(get_session('lifetime')), $newl, COOKIE_PATH)) {
694                         // This will be displayed on welcome page! :-)
695                         if (empty($LAST['module'])) {
696                                 $LAST['module'] = $mod; $LAST['online'] = $onl;
697                         } // END - if
698
699                         // "what" not set?
700                         if (empty($GLOBALS['what'])) {
701                                 // Fix it to default
702                                 $GLOBALS['what'] = "welcome";
703                                 if (!empty($_CONFIG['index_home'])) $GLOBALS['what'] = $_CONFIG['index_home'];
704                         } // END - if
705
706                         // Update last module / online time
707                         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET last_module='%s', last_online=UNIX_TIMESTAMP(), REMOTE_ADDR='%s' WHERE userid=%s LIMIT 1",
708                          array($GLOBALS['what'], GET_REMOTE_ADDR(), $GLOBALS['userid']), __FILE__, __LINE__);
709                 }
710         }  else {
711                 // Destroy session, we cannot update!
712                 destroy_user_session();
713         }
714 }
715 //
716 function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false)
717 {
718         $ret = false;
719         $ADD = "";
720         if ((!IS_ADMIN()) && ($MODE != "admin")) $ADD = " AND locked='N'";
721         //* DEBUG: */ echo __LINE__.":".$MODE."/".$act."/".$wht."*<br />\n";
722         if (($MODE != "admin") && ($UPDATE))
723         {
724                 // Update guest or member menu
725                 $SQL = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_%s_menu SET counter=counter+1 WHERE action='%s' AND what='%s'".$ADD." LIMIT 1",
726                  array($MODE, $act, $wht), __FILE__, __LINE__, false);
727         }
728          elseif ($wht != "overview")
729         {
730                 // Other actions
731                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s'".$ADD." ORDER BY action DESC LIMIT 1",
732                  array($MODE, $act), __FILE__, __LINE__, false);
733         }
734          else
735         {
736                 // Admin login overview
737                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND (what='' OR what IS NULL)".$ADD." ORDER BY action DESC LIMIT 1",
738                  array($MODE, $act), __FILE__, __LINE__, false);
739         }
740
741         // Run SQL command
742         $result = SQL_QUERY($SQL, __FILE__, __LINE__);
743         if ($UPDATE)
744         {
745                 if (SQL_AFFECTEDROWS() == 1) $ret = true;
746                 //* DEBUG: */ debug_print_backtrace();
747         }
748          else
749         {
750                 if (SQL_NUMROWS($result) == 1) {
751                         list($id, $wht2) = SQL_FETCHROW($result);
752                         //* DEBUG: */ echo __LINE__."+".$SQL."+<br />\n";
753                         //* DEBUG: */ echo __LINE__."*".$id."/".$wht."/".$wht2."*<br />\n";
754                         $ret = true;
755                 }
756         }
757
758         // Free memory
759         SQL_FREERESULT($result);
760
761         // Return result
762         return $ret;
763 }
764 //
765 function GET_MOD_DESCR($MODE, $wht, $column="what")
766 {
767         // Fix empty "what"
768         if (empty($wht)) {
769                 $wht = "welcome";
770                 if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
771         } // END - if
772
773         // Default is not found
774         $ret = "??? (".$wht.")";
775
776         // Look for title
777         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1",
778                 array($MODE, $column, $wht), __FILE__, __LINE__);
779
780         // Is there an entry?
781         if (SQL_NUMROWS($result) == 1) {
782                 // Fetch the title
783                 list($ret) = SQL_FETCHROW($result);
784         } // END - if
785
786         // Free result
787         SQL_FREERESULT($result);
788         return $ret;
789 }
790 //
791 function SEND_MODE_MAILS($mod, $modes)
792 {
793         global $_CONFIG, $DATA;
794
795         // Load hash
796         $result_main = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
797          array($GLOBALS['userid']), __FILE__, __LINE__);
798         if (SQL_NUMROWS($result_main) == 1) {
799                 // Load hash from database
800                 list($hashDB) = SQL_FETCHROW($result_main);
801
802                 // Extract salt from cookie
803                 $salt = substr(get_session('u_hash'), 0, -40);
804
805                 // Now let's compare passwords
806                 $hash = generatePassString($hashDB);
807                 if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) {
808                         // Load user's data
809                         $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND password='%s' LIMIT 1",
810                          array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__);
811                         if (SQL_NUMROWS($result) == 1) {
812                                 // Load the data
813                                 $DATA = SQL_FETCHROW($result);
814
815                                 // Free result
816                                 SQL_FREERESULT($result);
817
818                                 // Translate gender
819                                 $DATA[0] = TRANSLATE_GENDER($DATA[0]);
820
821                                 // Clear/init the content variable
822                                 $content = "";
823                                 $DATA['info'] = "";
824
825                                 switch ($mod)
826                                 {
827                                 case "mydata":
828                                         foreach ($modes as $mode) {
829                                                 switch ($mode)
830                                                 {
831                                                 case "normal": break; // Do not add any special lines
832
833                                                 case "email": // Email was changed!
834                                                         $content = MEMBER_CHANGED_EMAIL.": ".$_POST['old_addy']."\n";
835                                                         break;
836
837                                                 case "pass": // Password was changed
838                                                         $content = MEMBER_CHANGED_PASS."\n";
839                                                         break;
840
841                                                 default:
842                                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
843                                                         $content = MEMBER_UNKNOWN_MODE.": ".$mode."\n\n";
844                                                         break;
845                                                 }
846                                         } // END - if
847
848                                         if (EXT_IS_ACTIVE("country")) {
849                                                 // Replace code with description
850                                                 $DATA[4] = COUNTRY_GENERATE_INFO($_POST['country_code']);
851                                         }
852
853                                         // Load template
854                                         $msg = LOAD_EMAIL_TEMPLATE("member_mydata_notify", $content, $GLOBALS['userid']);
855
856                                         if ($_CONFIG['admin_notify'] == "Y") {
857                                                 // The admin needs to be notified about a profile change
858                                                 $msg_admin = "admin_mydata_notify";
859                                                 $sub_adm   = ADMIN_CHANGED_DATA;
860                                         } else {
861                                                 // No mail to admin
862                                                 $msg_admin = "";
863                                                 $sub_adm   = "";
864                                         }
865
866                                         // Set subject lines
867                                         $sub_mem = MEMBER_CHANGED_DATA;
868
869                                         // Output success message
870                                         $content = "<STRONG><SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN></STRONG>";
871                                         break;
872
873                                 default:
874                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
875                                         $content = "<STRONG><SPAN class=\"member_failed\">".UNKNOWN_MODULE."</SPAN></STRONG>";
876                                         break;
877                                 }
878                         } else {
879                                 // Could not load profile data
880                                 $content = "<STRONG><SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN></STRONG>";
881                         }
882                 } else {
883                         // Passwords mismatch
884                         $content = "<STRONG><SPAN class=\"member_failed\">".MEMBER_PASSWORD_ERROR."</SPAN></STRONG>";
885                 }
886         } else {
887                 // Could not load profile
888                 $content = "<STRONG><SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN></STRONG>";
889         }
890
891         // Send email to user if required
892         if ((!empty($sub_mem)) && (!empty($msg))) {
893                 // Send member mail
894                 SEND_EMAIL($DATA[7], $sub_mem, $msg);
895         }
896
897         // Send only if no other error has occured
898         if (empty($content)) {
899                 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
900                         // Send admin mail
901                         SEND_ADMIN_NOTIFICATION($sub_adm, $msg_admin, $content, $GLOBALS['userid']);
902                 } elseif ($_CONFIG['admin_notify'] == "Y") {
903                         // Cannot send mails to admin!
904                         $content = CANNOT_SEND_ADMIN_MAILS;
905                 } else {
906                         // No mail to admin
907                         $content = "<STRONG><SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN></STRONG>";
908                 }
909         }
910
911         // Load template
912         LOAD_TEMPLATE("admin_settings_saved", false, $content);
913 }
914 // Update module counter
915 function COUNT_MODULE($mod)
916 {
917         if ($mod != "css")
918         {
919                 // Do count all other modules but not accesses on CSS file css.php!
920                 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_mod_reg SET clicks=clicks+1 WHERE module='%s' LIMIT 1",
921                  array($mod), __FILE__, __LINE__);
922         }
923 }
924 // Get action value from mode (admin/guest/member) and what-value
925 function GET_ACTION ($MODE, &$wht)
926 {
927         global $ret, $_CONFIG;
928         // @DEPRECATED Init status
929         $ret = "";
930
931         //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=<br />";
932         if ((empty($wht)) && ($MODE != "admin")) {
933                 $wht = "welcome";
934                 if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home'];
935         } // END - if
936
937         if ($MODE == "admin") {
938                 // Action value for admin area
939                 if (!empty($GLOBALS['action'])) {
940                         // Get it directly from URL
941                         return $GLOBALS['action'];
942                 } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
943                         // Default value for admin area
944                         $ret = "login";
945                 }
946         } elseif (!empty($GLOBALS['action'])) {
947                 // Get it directly from URL
948                 return $GLOBALS['action'];
949         }
950         //* DEBUG: */ echo __LINE__."*".$ret."*<br />\n";
951
952         if (MODULE_HAS_MENU($MODE)) {
953                 // Rewriting modules to menu
954                 switch ($MODE) {
955                         case "index": $MODE = "guest";  break;
956                         case "login": $MODE = "member"; break;
957                 } // END - switch
958
959                 // Guest and member menu is "main" as the default
960                 if (empty($ret)) $ret = "main";
961
962                 // Load from database
963                 $result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1",
964                  array($MODE, $wht), __FILE__, __LINE__);
965                 if (SQL_NUMROWS($result) == 1) {
966                         // Load action value and pray that this one is the right you want... ;-)
967                         list($ret) = SQL_FETCHROW($result);
968                 } // END - if
969
970                 // Free memory
971                 SQL_FREERESULT($result);
972         } // END - if
973
974         // Return action value
975         return $ret;
976 }
977 //
978 function GET_CATEGORY ($cid) {
979         // Default is not found
980         $ret = _CATEGORY_404;
981
982         // Is the category id set?
983         if ($cid == "0") {
984                 // No category
985                 $ret = _CATEGORY_NONE;
986         } elseif ($cid > 0) {
987                 // Lookup the category in database
988                 $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
989                         array(bigintval($cid)), __FILE__, __LINE__);
990                 if (SQL_NUMROWS($result) == 1) {
991                         // Category found... :-)
992                         list($ret) = SQL_FETCHROW($result);
993                 } // END - if
994
995                 // Free result
996                 SQL_FREERESULT($result);
997         } // END - if
998
999         // Return result
1000         return $ret;
1001 }
1002 //
1003 function GET_PAYMENT ($pid, $full=false) {
1004         // Default is not found
1005         $ret = _PAYMENT_404;
1006
1007         // Load payment data
1008         $result = SQL_QUERY_ESC("SELECT mail_title, price FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
1009                 array(bigintval($pid)), __FILE__, __LINE__);
1010         if (SQL_NUMROWS($result) == 1) {
1011                 // Payment type found... :-)
1012                 if (!$full) {
1013                         // Return only title
1014                         list($ret) = SQL_FETCHROW($result);
1015                 } else {
1016                         // Return title and price
1017                         list($t, $p) = SQL_FETCHROW($result);
1018                         $ret = $t." / ".TRANSLATE_COMMA($p)." ".POINTS;
1019                 }
1020         }
1021
1022         // Free result
1023         SQL_FREERESULT($result);
1024
1025         // Return result
1026         return $ret;
1027 }
1028 //
1029 function GET_PAY_POINTS($pid, $lookFor="price")
1030 {
1031         $ret = "-1";
1032         $result = SQL_QUERY_ESC("SELECT %s FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
1033                 array($lookFor, $pid), __FILE__, __LINE__);
1034         if (SQL_NUMROWS($result) == 1)
1035         {
1036                 // Payment type found... :-)
1037                 list($ret) = SQL_FETCHROW($result);
1038                 SQL_FREERESULT($result);
1039         }
1040         return $ret;
1041 }
1042 // Remove a receiver's ID from $ARRAY and add a link for him to confirm
1043 function REMOVE_RECEIVER(&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=false)
1044 {
1045         $ret = "failed";
1046         if ($uid > 0)
1047         {
1048                 // Remove entry from array
1049                 unset($ARRAY[$key]);
1050
1051                 // Is there already a line for this user available?
1052                 if ($stats_id > 0)
1053                 {
1054                         // Only when we got a real stats ID continue searching for the entry
1055                         $type = "NORMAL"; $rowName = "stats_id";
1056                         if ($bonus) { $type = "BONUS"; $rowName = "bonus_id"; }
1057                         $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_links WHERE %s='%s' AND userid=%s AND link_type='%s' LIMIT 1",
1058                          array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1059                         if (SQL_NUMROWS($result) == 0)
1060                         {
1061                                 // No, so we add one!
1062                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_links (%s, userid, link_type) VALUES ('%s','%s','%s')",
1063                                  array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1064                                 $ret = "done";
1065                         }
1066                          else
1067                         {
1068                                 // Already found
1069                                 $ret = "already";
1070                         }
1071
1072                         // Free memory
1073                         SQL_FREERESULT($result);
1074                 }
1075         }
1076         // Return status for sending routine
1077         return $ret;
1078 }
1079
1080 // Calculate sum (default) or count records of given criteria
1081 function GET_TOTAL_DATA ($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false, $add="") {
1082         $ret = 0;
1083         //* DEBUG: */ echo $search."/".$tableName."/".$lookFor."/".$whereStatement."/".$add."<br />\n";
1084         if (($onlyRows) || ($lookFor == "userid")) {
1085                 // Count rows
1086                 //* DEBUG: */ echo "COUNT!<br />\n";
1087                 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1088                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1089         } else {
1090                 // Add all rows
1091                 //* DEBUG: */ echo "SUM!<br />\n";
1092                 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1093                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1094         }
1095
1096         // Load row
1097         list($ret) = SQL_FETCHROW($result);
1098
1099         // Free result
1100         SQL_FREERESULT($result);
1101
1102         // Fix empty values
1103         if ((empty($ret)) && ($lookFor != "counter") && ($lookFor != "id") && ($lookFor != "userid")) {
1104                 // Float number
1105                 $ret = "0.00000";
1106         } elseif ("".$ret."" == "") {
1107                 // Fix empty result
1108                 $ret = "0";
1109         }
1110
1111         // Return value
1112         return $ret;
1113 }
1114 // "Getter fro ref level percents
1115 function GET_REF_LEVEL_PERCENTS ($level) {
1116         global $cacheInstance, $_CONFIG, $cacheArray;
1117
1118         // Default is zero
1119         $per = 0;
1120
1121         // Do we have cache?
1122         if ((isset($cacheArray['ref_depths']['level'])) && (EXT_IS_ACTIVE("cache"))) {
1123                 // First look for level
1124                 $key = array_search($level, $cacheArray['ref_depths']['level']);
1125                 if ($key !== false) {
1126                         // Entry found!
1127                         $per = $cacheArray['ref_depths']['percents'][$key];
1128
1129                         // Count cache hit
1130                         if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1131                 }
1132         } else {
1133                 // Get referal data
1134                 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM "._MYSQL_PREFIX."_refdepths WHERE level='%s' LIMIT 1",
1135                         array(bigintval($level)), __FILE__, __LINE__);
1136
1137                 // Entry found?
1138                 if (SQL_NUMROWS($result_lvl) == 1) {
1139                         // Get percents
1140                         list($per) = SQL_FETCHROW($result_lvl);
1141                 } // END - if
1142
1143                 // Free result
1144                 SQL_FREERESULT($result_lvl);
1145         }
1146
1147         // Return percent
1148         return $per;
1149 }
1150 /**
1151  *
1152  * Dynamic referal system, can also send mails!
1153  *
1154  * subject     = Subject line, write in lower-case letters and underscore is allowed
1155  * uid         = Referal ID wich should receive...
1156  * points      = ... xxx points
1157  * send_notify = shall I send the referal an email or not?
1158  * rid         = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1159  * locked      = Shall I pay it to normal (false) or locked (true) points ammount?
1160  * add_mode    = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
1161  *               for default value will cause no referal will get points ever!!!)
1162  */
1163 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") {
1164         //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
1165         global $DEPTH, $_CONFIG, $DATA, $cacheArray;
1166
1167         // Convert mode to lower-case
1168         $add_mode = strtolower($add_mode);
1169
1170         // When $uid = 0 add points to jackpot
1171         if ($uid == "0") {
1172                 // Add points to jackpot
1173                 ADD_JACKPOT($points);
1174                 return;
1175         } // END - if
1176
1177         // Add booking record if extension is installed
1178         if (EXT_IS_ACTIVE("booking")) {
1179                 // Add record
1180                 ADD_BOOKING_RECORD($subject, $uid, $points, "add");
1181         } // END - if
1182
1183         // Count up referal depth
1184         if (!isset($DEPTH)) {
1185                 // Initialialize referal system
1186                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />\n";
1187                 $DEPTH = 0;
1188         } else {
1189                 // Increase referal level
1190                 $DEPTH++;
1191                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$DEPTH}<br />\n";
1192         }
1193
1194         // Default is "normal" points
1195         $data = "points";
1196
1197         // Which points, locked or normal?
1198         if ($locked) $data = "locked_points";
1199
1200         // Check user account
1201         $result_user = SQL_QUERY_ESC("SELECT refid, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
1202          array(bigintval($uid)), __FILE__, __LINE__);
1203
1204         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
1205         if (SQL_NUMROWS($result_user) == 1) {
1206                 // This is the user and his ref
1207                 list($ref, $email) = SQL_FETCHROW($result_user);
1208                 $cacheArray['add_uid'][$ref] = $uid;
1209
1210                 // Get percents
1211                 $per = GET_REF_LEVEL_PERCENTS($DEPTH);
1212                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$DEPTH},per={$per},mode={$add_mode}<br />\n";
1213
1214                 // Some percents found?
1215                 if ($per > 0) {
1216                         // Calculate new points
1217                         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$DEPTH}<br />\n";
1218                         $ref_points = $points * $per / 100;
1219
1220                         // Pay refback here if level > 0 and in ref-mode
1221                         if ((EXT_IS_ACTIVE("refback")) && ($DEPTH > 0) && ($per < 100) && ($add_mode == "ref") && (isset($cacheArray['add_uid'][$uid]))) {
1222                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$DEPTH} - BEFORE!<br />\n";
1223                                 $ref_points = ADD_REFBACK_POINTS($cacheArray['add_uid'][$uid], $uid, $points, $ref_points);
1224                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$DEPTH} - AFTER!<br />\n";
1225                         } // END - if
1226
1227                         // Update points...
1228                         SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
1229                          array($data, $data, $ref_points, bigintval($uid), bigintval($DEPTH)), __FILE__, __LINE__);
1230                         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$DEPTH},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
1231
1232                         // No entry updated?
1233                         if (SQL_AFFECTEDROWS() < 1) {
1234                                 // First ref in this level! :-)
1235                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_points (userid,ref_depth,%s) VALUES (%s,%s,%s)",
1236                                  array($data, bigintval($uid), bigintval($DEPTH), $ref_points), __FILE__, __LINE__);
1237                         } // END - if
1238
1239                         // Update mediadata as well
1240                         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1241                                 // Update database
1242                                 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $ref_points);
1243                         } // END - if
1244
1245                         // Points updated, maybe I shall send him an email?
1246                         if (($send_notify) && ($ref > 0) && (!$locked)) {
1247                                 // Prepare content
1248                                 $content = array(
1249                                         'percent' => $per,
1250                                         'level'   => bigintval($DEPTH),
1251                                         'points'  => $ref_points,
1252                                         'refid'   => bigintval($ref)
1253                                 );
1254
1255                                 // Load email template
1256                                 $msg = LOAD_EMAIL_TEMPLATE("confirm-referal", $content, bigintval($uid));
1257
1258                                 SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg);
1259                         } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) {
1260                                 // Direct payment shall be notified about
1261                                 define('__POINTS_VALUE', $ref_points);
1262
1263                                 // Prepare content
1264                                 $content = array(
1265                                         'text'   => REASON_DIRECT_PAYMENT,
1266                                         'points' => TRANSLATE_COMMA($ref_points)
1267                                 );
1268
1269                                 // Load message
1270                                 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, $uid);
1271
1272                                 // And sent it away
1273                                 SEND_EMAIL($email, SUBJECT_DIRECT_PAYMENT, $msg);
1274                                 if (!isset($_GET['mid'])) LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
1275                         }
1276
1277                         // Maybe there's another ref?
1278                         if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == "ref")) {
1279                                 // Then let's credit him here...
1280                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />\n";
1281                                 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $DEPTH), $ref, $points, $send_notify, $ref, $locked);
1282                         } // END - if
1283                 } // END - if
1284         } // END - if
1285
1286         // Free result
1287         SQL_FREERESULT($result_user);
1288         //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
1289 }
1290 //
1291 function UPDATE_REF_COUNTER ($uid) {
1292         global $cacheArray, $cacheInstance;
1293
1294         // Make it sure referal level zero (member him-/herself) is at least selected
1295         if (empty($cacheArray['ref_level'][$uid])) $cacheArray['ref_level'][$uid] = 1;
1296         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$cacheArray['ref_level'][$uid]}<br />\n";
1297
1298         // Update counter
1299         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refsystem SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1300                 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1301
1302         // When no entry was updated then we have to create it here
1303         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />\n";
1304         if (SQL_AFFECTEDROWS() < 1) {
1305                 // First count!
1306                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES (%s,%s,1)",
1307                         array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1308                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />\n";
1309         } // END - if
1310
1311         // Check for his referal
1312         $result = SQL_QUERY_ESC("SELECT refid FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
1313                 array(bigintval($uid)), __FILE__, __LINE__);
1314
1315         // Load refid
1316         list($ref) = SQL_FETCHROW($result);
1317
1318         // Free memory
1319         SQL_FREERESULT($result);
1320         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />\n";
1321
1322         // When he has a referal...
1323         if (($ref > 0) && ($ref != $uid)) {
1324                 // Move to next referal level and count his counter one up!
1325                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />\n";
1326                 $cacheArray['ref_level'][$uid]++; UPDATE_REF_COUNTER($ref);
1327         } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION("cache") >= "0.1.2")) {
1328                 // Remove cache here
1329                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />\n";
1330                 REBUILD_CACHE("refsystem", "refsystem");
1331         }
1332
1333         // "Walk" back here
1334         $cacheArray['ref_level'][$uid]--;
1335
1336         // Handle refback here if extension is installed
1337         if (EXT_IS_ACTIVE("refback")) {
1338                 UPDATE_REFBACK_TABLE($uid);
1339         } // END - if
1340 }
1341 // Updates/extends the online list
1342 function UPDATE_ONLINE_LIST($SID, $mod, $act, $wht) {
1343         global $_CONFIG;
1344
1345         // Do not update online list when extension is deactivated
1346         if (!EXT_IS_ACTIVE("online", true)) return;
1347
1348         // Empty session?
1349         if (empty($SID)) {
1350                 // This is invalid here!
1351                 print "Invalid session. Backtrace:<pre>";
1352                 debug_print_backtrace();
1353                 die("</pre>");
1354         } // END - if
1355
1356         // Initialize variables
1357         $uid = 0; $rid = 0; $MEM = "N"; $ADMIN = "N";
1358
1359         // Valid userid?
1360         if ((!empty($GLOBALS['userid'])) && ($GLOBALS['userid'] > 0) && (IS_MEMBER())) {
1361                 // Is valid user
1362                 $uid = bigintval($GLOBALS['userid']);
1363                 $MEM = "Y";
1364         } // END - if
1365
1366         if (IS_ADMIN()) {
1367                 // Is administrator
1368                 $ADMIN = "Y";
1369         } // END - if
1370
1371         if (isSessionVariableSet('refid')) {
1372                 // Check cookie
1373                 if (get_session('refid') > 0) $rid = bigintval($GLOBALS['refid']);
1374         } // END - if
1375
1376         // Now search for the user
1377         $result = SQL_QUERY_ESC("SELECT timestamp FROM "._MYSQL_PREFIX."_online
1378 WHERE sid='%s' LIMIT 1",
1379  array($SID), __FILE__, __LINE__);
1380
1381         // Entry found?
1382         if (SQL_NUMROWS($result) == 1) {
1383                 // Then update it
1384                 SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_online SET
1385 module='%s',
1386 action='%s',
1387 what='%s',
1388 userid=%s,
1389 refid=%s,
1390 is_member='%s',
1391 is_admin='%s',
1392 timestamp=UNIX_TIMESTAMP()
1393 WHERE sid='%s' LIMIT 1",
1394                         array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID), __FILE__, __LINE__
1395                 );
1396         } else {
1397                 // No entry does exists so we simply add it!
1398                 SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_online (module, action, what, userid, refid, is_member, is_admin, timestamp, sid, ip) VALUES ('%s','%s','%s', %s, %s, '%s','%s', UNIX_TIMESTAMP(), '%s','%s')",
1399                         array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID, GET_REMOTE_ADDR()), __FILE__, __LINE__
1400                 );
1401         }
1402
1403         // Free result
1404         SQL_FREERESULT($result);
1405
1406         // Purge old entries
1407         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_online WHERE timestamp <= (UNIX_TIMESTAMP() - %s)",
1408          array($_CONFIG['online_timeout']), __FILE__, __LINE__);
1409 }
1410 // OBSULETE: Sends out mail to all administrators
1411 function SEND_ADMIN_EMAILS ($subj, $msg) {
1412         // Load all admin email addresses
1413         $result = SQL_QUERY("SELECT email FROM "._MYSQL_PREFIX."_admins ORDER BY id ASC", __FILE__, __LINE__);
1414         while (list($email) = SQL_FETCHROW($result)) {
1415                 // Send the email out
1416                 SEND_EMAIL($email, $subj, $msg);
1417         } // END - if
1418
1419         // Free result
1420         SQL_FREERESULT($result);
1421
1422         // Really simple... ;-)
1423 }
1424 // Get ID number from administrator's login name
1425 function GET_ADMIN_ID ($login) {
1426         global $cacheArray, $_CONFIG;
1427         $ret = "-1";
1428         if (!empty($cacheArray['admins']['aid'][$login])) {
1429                 // Check cache
1430                 $ret = $cacheArray['admins']['aid'][$login];
1431
1432                 // Update cache hits
1433                 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1434         } elseif (!EXT_IS_ACTIVE("cache")) {
1435                 // Load from database
1436                 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
1437                  array($login), __FILE__, __LINE__);
1438                 if (SQL_NUMROWS($result) == 1) {
1439                         list($ret) = SQL_FETCHROW($result);
1440                 } // END - if
1441
1442                 // Free result
1443                 SQL_FREERESULT($result);
1444         }
1445         return $ret;
1446 }
1447 //
1448 // Get password hash from administrator's login name
1449 function GET_ADMIN_HASH ($aid)
1450 {
1451         global $cacheArray, $_CONFIG;
1452         $ret = "-1";
1453         if (!empty($cacheArray['admins']['password'][$aid])) {
1454                 // Check cache
1455                 $ret = $cacheArray['admins']['password'][$aid];
1456
1457                 // Update cache hits
1458                 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1459         } elseif (!EXT_IS_ACTIVE("cache")) {
1460                 // Load from database
1461                 $result = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1462                  array($aid), __FILE__, __LINE__);
1463                 if (SQL_NUMROWS($result) == 1) {
1464                         // Fetch data
1465                         list($ret) = SQL_FETCHROW($result);
1466
1467                         // Set cache
1468                         $cacheArray['admins']['password'][$aid] = $ret;
1469                 }
1470
1471                 // Free result
1472                 SQL_FREERESULT($result);
1473         }
1474         return $ret;
1475 }
1476 //
1477 function GET_ADMIN_LOGIN ($aid) {
1478         global $cacheArray, $_CONFIG;
1479         $ret = "***";
1480         if (!empty($cacheArray['admins']['login'][$aid])) {
1481                 // Get cache
1482                 $ret = $cacheArray['admins']['login'][$aid];
1483
1484                 // Update cache hits
1485                 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1486         } elseif (!EXT_IS_ACTIVE("cache")) {
1487                 // Load from database
1488                 $result = SQL_QUERY_ESC("SELECT login FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1489                         array(bigintval($aid)), __FILE__, __LINE__);
1490                 if (SQL_NUMROWS($result) == 1) {
1491                         // Fetch data
1492                         list($ret) = SQL_FETCHROW($result);
1493
1494                         // Set cache
1495                         $cacheArray['admins']['login'][$aid] = $ret;
1496                 } // END - if
1497
1498                 // Free memory
1499                 SQL_FREERESULT($result);
1500         }
1501         return $ret;
1502 }
1503 // Get email address of admin id
1504 function GET_ADMIN_EMAIL ($aid) {
1505         global $cacheArray, $_CONFIG;
1506
1507         $ret = "***";
1508         if (!empty($cacheArray['admins']['email'][$aid])) {
1509                 // Get cache
1510                 $ret = $cacheArray['admins']['email'][$aid];
1511
1512                 // Update cache hits
1513                 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1514         } elseif (!EXT_IS_ACTIVE("cache")) {
1515                 // Load from database
1516                 $result_aid = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1517                         array(bigintval($ret)), __FILE__, __LINE__);
1518                 if (SQL_NUMROWS($result) == 1) {
1519                         // Get data
1520                         list($ret) = SQL_FETCHROW($result_aid);
1521
1522                         // Set cache
1523                         $cacheArray['admins']['email'][$aid] = $ret;
1524                         } // END - if
1525
1526                 // Free result
1527                 SQL_FREERESULT($result_aid);
1528         }
1529
1530         // Return email
1531         return $ret;
1532 }
1533 // Get default ACL  of admin id
1534 function GET_ADMIN_DEFAULT_ACL ($aid) {
1535         global $cacheArray, $_CONFIG;
1536
1537         $ret = "***";
1538         if (!empty($cacheArray['admins']['def_acl'][$aid])) {
1539                 // Use cache
1540                 $ret = $cacheArray['admins']['def_acl'][$aid];
1541
1542                 // Update cache hits
1543                 if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1544         } elseif (!EXT_IS_ACTIVE("cache")) {
1545                 // Load from database
1546                 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1547                         array(bigintval($aid)), __FILE__, __LINE__);
1548                 if (SQL_NUMROWS($result_aid) == 1) {
1549                         // Fetch data
1550                         list($ret) = SQL_FETCHROW($result_aid);
1551
1552                         // Set cache
1553                         $cacheArray['admins']['def_acl'][$aid] = $ret;
1554                 }
1555
1556                 // Free result
1557                 SQL_FREERESULT($result_aid);
1558         }
1559
1560         // Return email
1561         return $ret;
1562 }
1563 //
1564 function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="") {
1565         $ret = "";
1566         if ($table == "/ARRAY/") {
1567                 // Selection from array
1568                 if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) {
1569                         // Both are arrays
1570                         foreach ($id as $idx => $value) {
1571                                 $ret .= "<OPTION value=\"".$value."\"";
1572                                 if ($default == $value) $ret .= " selected checked";
1573                                 $ret .= ">".$name[$idx]."</OPTION>\n";
1574                         } // END - foreach
1575                 } // END - if
1576         } else {
1577                 // Data from database
1578                 $SPEC = ", ".$id;
1579                 if (!empty($special)) $SPEC = ", ".$special;
1580                 $ORDER = $name.$SPEC;
1581                 if ($table == "country") $ORDER = $special;
1582                 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM "._MYSQL_PREFIX."_%s ".$where." ORDER BY %s",
1583                  array($id, $ORDER, $table, $name), __FILE__, __LINE__);
1584                 if (SQL_NUMROWS($result) > 0) {
1585                         // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1586                         while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1587                                 if (empty($special)) $add = "";
1588                                 $ret .= "<OPTION value=\"".$value."\"";
1589                                 if ($default == $value) $ret .= " selected checked";
1590                                 if (!empty($add)) $add = " (".$add.")";
1591                                 $ret .= ">".$title.$add."</OPTION>\n";
1592                         } // END - while
1593
1594                         // Free memory
1595                         SQL_FREERESULT($result);
1596                 } else {
1597                         // No data found
1598                         $ret = "<OPTION value=\"x\">".SELECT_NONE."</OPTION>\n";
1599                 }
1600         }
1601
1602         // Return - hopefully - the requested data
1603         return $ret;
1604 }
1605 // Activate exchange (DEPERECATED???)
1606 function activateExchange() {
1607         global $_CONFIG;
1608         $result = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' AND max_mails > 0", __FILE__, __LINE__);
1609         if (SQL_NUMROWS($result) >= $_CONFIG['activate_xchange'])
1610         {
1611                 // Free memory
1612                 SQL_FREERESULT($result);
1613
1614                 // Activate System
1615                 $SQLs = array(
1616                         "UPDATE "._MYSQL_PREFIX."_mod_reg SET locked='N', hidden='N', mem_only='Y' WHERE module='order' LIMIT 1",
1617                         "UPDATE "._MYSQL_PREFIX."_member_menu SET visible='Y', locked='N' WHERE what='order' OR what='unconfirmed' LIMIT 2",
1618                         "UPDATE "._MYSQL_PREFIX."_config SET activate_xchange='0' WHERE config=0 LIMIT 1"
1619                 );
1620
1621                 // Run SQLs
1622                 foreach ($SQLs as $sql) {
1623                         $result = SQL_QUERY($sql, __FILE__, __LINE__);
1624                 }
1625
1626                 // @TODO Destroy cache
1627         }
1628 }
1629 //
1630 function DELETE_USER_ACCOUNT($uid, $reason)
1631 {
1632         $points = 0;
1633         $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1634 FROM "._MYSQL_PREFIX."_user_points AS p
1635 LEFT JOIN "._MYSQL_PREFIX."_user_data AS d
1636 ON p.userid=d.userid
1637 WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1638         if (SQL_NUMROWS($result) == 1) {
1639                 // Save his points to add them to the jackpot
1640                 list($points) = SQL_FETCHROW($result);
1641                 SQL_FREERESULT($result);
1642
1643                 // Delete points entries as well
1644                 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1645
1646                 // Update mediadata as well
1647                 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1648                         // Update database
1649                         MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1650                 } // END - if
1651
1652                 // Now, when we have all his points adds them do the jackpot!
1653                 ADD_JACKPOT($points);
1654         }
1655
1656         // Delete category selections as well...
1657         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s",
1658          array(bigintval($uid)), __FILE__, __LINE__);
1659
1660         // Remove from rallye if found
1661         if (EXT_IS_ACTIVE("rallye")) {
1662                 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_rallye_users WHERE userid=%s",
1663                  array(bigintval($uid)), __FILE__, __LINE__);
1664         }
1665
1666         // Now a mail to the user and that's all...
1667         $msg = LOAD_EMAIL_TEMPLATE("del-user", array('text' => $reason), $uid);
1668         SEND_EMAIL($uid, ADMIN_DEL_ACCOUNT, $msg);
1669
1670         // Ok, delete the account!
1671         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__);
1672 }
1673 //
1674 function META_DESCRIPTION ($mod, $wht) {
1675         global $_CONFIG, $DEPTH;
1676
1677         // Exclude admin and member's area
1678         if (($mod != "admin") && ($mod != "login")) {
1679                 // Construct dynamic description
1680                 $DESCR = MAIN_TITLE." ".trim($_CONFIG['title_middle'])." ".ADD_DESCR("guest", "what-".$wht, true);
1681
1682                 // Output it directly
1683                 OUTPUT_HTML("<meta name=\"description\" content=\"".$DESCR."\" />");
1684         } // END - if
1685
1686         // Remove depth
1687         unset($DEPTH);
1688 }
1689 //
1690 function ADD_JACKPOT($points) {
1691         $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1692         if (SQL_NUMROWS($result) == 0) {
1693                 // Create line
1694                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok','%s')", array($points), __FILE__, __LINE__);
1695         } else {
1696                 // Free memory
1697                 SQL_FREERESULT($result);
1698
1699                 // Update points
1700                 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points+%s WHERE ok='ok' LIMIT 1",
1701                  array($points), __FILE__, __LINE__);
1702         }
1703 }
1704 //
1705 function SUB_JACKPOT($points) {
1706         // First failed
1707         $ret = "-1";
1708
1709         // Get current points
1710         $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1711         if (SQL_NUMROWS($result) == 0) {
1712                 // Create line
1713                 SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', 0.00000)", __FILE__, __LINE__);
1714         } else {
1715                 // Read points
1716                 list($jackpot) = SQL_FETCHROW($result);
1717                 if ($jackpot >= $points) {
1718                         // Update points when there are enougth points in jackpot
1719                         SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points-%s WHERE ok='ok' LIMIT 1",
1720                                 array($points), __FILE__, __LINE__);
1721                         $ret = $jackpot - $points;
1722                 } // END - if
1723         }
1724
1725         // Free memory
1726         SQL_FREERESULT($result);
1727 }
1728 //
1729 function IS_DEMO() {
1730         return ((EXT_IS_ACTIVE("demo")) && (get_session('admin_login') == "demo"));
1731 }
1732 //
1733 function LOAD_CONFIG($no="0") {
1734         global $cacheArray;
1735         $CFG_DUMMY = array();
1736
1737         // Check for cache extension, cache-array and if the requested configuration is in cache
1738         if ((is_array($cacheArray)) && (isset($cacheArray['config'][$no])) && (is_array($cacheArray['config'][$no]))) {
1739                 // Load config from cache
1740                 //* DEBUG: */ echo gettype($cacheArray['config'][$no])."<br />\n";
1741                 foreach ($cacheArray['config'][$no] as $key => $value) {
1742                         $CFG_DUMMY[$key] = $value;
1743                 } // END - foreach
1744
1745                 // Count cache hits if exists
1746                 if ((isset($CFG_DUMMY['cache_hits'])) && (EXT_IS_ACTIVE("cache"))) {
1747                         $CFG_DUMMY['cache_hits']++;
1748                 } // END - if
1749         } else {
1750                 // Load config from DB
1751                 $result_config = SQL_QUERY_ESC("SELECT * FROM "._MYSQL_PREFIX."_config WHERE config=%d LIMIT 1",
1752                         array(bigintval($no)), __FILE__, __LINE__);
1753
1754                 // Get config from database
1755                 $CFG_DUMMY = SQL_FETCHARRAY($result_config);
1756
1757                 // Free result
1758                 SQL_FREERESULT($result_config);
1759
1760                 // Remember this config in the array
1761                 $cacheArray['config'][$no] = $CFG_DUMMY;
1762         }
1763
1764         // Return config array
1765         return $CFG_DUMMY;
1766 }
1767 // Gets the matching what name from module
1768 function GET_WHAT($modCheck) {
1769         global $_CONFIG;
1770
1771         $wht = "";
1772         //* DEBUG: */ echo __LINE__."!".$modCheck."!<br />\n";
1773         switch ($modCheck)
1774         {
1775         case "admin":
1776                 $wht = "overview";
1777                 break;
1778
1779         case "login":
1780         case "index":
1781                 $wht = "welcome";
1782                 if (($modCheck == "index") && (!empty($_CONFIG['index_home']))) $wht = $_CONFIG['index_home'];
1783                 break;
1784
1785         default:
1786                 $wht = "";
1787                 break;
1788         }
1789
1790         // Return what value
1791         return $wht;
1792 }
1793 //
1794 function MODULE_HAS_MENU($mod, $forceDb = false) {
1795         global $cacheArray, $_CONFIG;
1796
1797         // All is false by default
1798         $ret = false;
1799         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):mod={$mod},cache=".GET_EXT_VERSION("cache")."<br />\n";
1800         if (GET_EXT_VERSION("cache") >= "0.1.2") {
1801                 // Cache version is okay, so let's check the cache!
1802                 if (isset($cacheArray['modules']['has_menu'][$mod])) {
1803                         // Check module cache and count hit
1804                         $ret = ($cacheArray['modules']['has_menu'][$mod] == "Y");
1805                         if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1806                 } elseif (isset($cacheArray['extensions']['ext_menu'][$mod])) {
1807                         // Check cache and count hit
1808                         $ret = ($cacheArray['extensions']['ext_menu'][$mod] == "Y");
1809                         if (isset($_CONFIG['cache_hits'])) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1810                 }
1811         } elseif ((GET_EXT_VERSION("sql_patches") >= "0.3.6") && ((!EXT_IS_ACTIVE("cache")) || ($forceDb === true))) {
1812                 // Check database for entry
1813                 $result = SQL_QUERY_ESC("SELECT has_menu FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1",
1814                  array($mod), __FILE__, __LINE__);
1815                 if (SQL_NUMROWS($result) == 1) {
1816                         list($has_menu) = SQL_FETCHROW($result);
1817
1818                         // Fake cache... ;-)
1819                         $cacheArray['extensions']['ext_menu'][$mod] = $has_menu;
1820
1821                         // Does it have a menu?
1822                         $ret = ($has_menu == "Y");
1823                 } // END  - if
1824
1825                 // Free memory
1826                 SQL_FREERESULT($result);
1827         } elseif (GET_EXT_VERSION("sql_patches") == "") {
1828                 // No sql_patches installed, so maybe in admin area?
1829                 $ret = ((IS_ADMIN()) && ($mod == "admin")); // Then there is a menu!
1830         }
1831
1832         // Return status
1833         return $ret;
1834 }
1835
1836 // Subtract points from database and mediadata cache
1837 function SUB_POINTS ($subject, $uid, $points) {
1838         // Add points to used points
1839         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
1840          array($points, bigintval($uid)), __FILE__, __LINE__);
1841
1842         // Insert booking record
1843         if (EXT_IS_ACTIVE("booking")) {
1844                 // Add record
1845                 ADD_BOOKING_RECORD($subject, $uid, $points, "sub");
1846         } // END - if
1847
1848         // Update mediadata as well
1849         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1850                 // Update database
1851                 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1852         } // END - if
1853 }
1854
1855 // Update config entries
1856 function UPDATE_CONFIG ($entries, $values, $updateMode="") {
1857         // Do we have multiple entries?
1858         if (is_array($entries)) {
1859                 // Walk through all
1860                 $all = "";
1861                 foreach ($entries as $idx => $entry) {
1862                         // Update mode set?
1863                         if (!empty($updateMode)) {
1864                                 // Update entry
1865                                 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1866                         } else {
1867                                 // Check if string or number
1868                                 if (($values[$idx] + 0) === $values[$idx]) {
1869                                         // Number detected
1870                                         $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
1871                                 } elseif ($values[$idx] == "UNIX_TIMESTAMP()") {
1872                                         // Function UNIX_TIMESTAMP() detected
1873                                         $all .= sprintf("%s=%s,", $entry, $values[$idx]);
1874                                 } else {
1875                                         // String detected
1876                                         $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
1877                                 }
1878                         }
1879                 } // END - foreach
1880
1881                 // Remove last comma
1882                 $entries = substr($all, 0, -1);
1883         } elseif (!empty($updateMode)) {
1884                 // Update mode set
1885                 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1886         } else {
1887                 // Regular entry to update
1888                 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1889         }
1890
1891         // Run database update
1892         //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1893         SQL_QUERY("UPDATE "._MYSQL_PREFIX."_config SET ".$entries." WHERE config=0 LIMIT 1", __FILE__, __LINE__);
1894
1895         // Get affected rows
1896         $affectedRows = SQL_AFFECTEDROWS();
1897         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />\n";
1898
1899         // Rebuild cache
1900         REBUILD_CACHE("config", "config");
1901 }
1902
1903 // Creates a new task for updated extension
1904 function CREATE_EXTENSION_UPDATE_TASK ($admin_id, $subject, $notes) {
1905         // Check if task is not there
1906         $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_task_system WHERE subject='%s' LIMIT 1",
1907                 array($subject), __FILE__, __LINE__);
1908         if (SQL_NUMROWS($result) == 0) {
1909                 // Task not created so it's a brand-new extension which we need to register and create a task for!
1910                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created) VALUES ('%s','0','NEW','EXTENSION_UPDATE','%s','%s', UNIX_TIMESTAMP())",
1911                         array($admin_id, $subject, $notes), __FILE__, __LINE__);
1912         } // END - if
1913
1914         // Free memory
1915         SQL_FREERESULT($result);
1916 }
1917
1918 // Creates a new task for newly installed extension
1919 function CREATE_NEW_EXTENSION_TASK ($admin_id, $subject, $ext) {
1920         // Not installed and do we have created a task for the admin?
1921         $result = SQL_QUERY_ESC("SELECT `id` FROM `"._MYSQL_PREFIX."_task_system` WHERE `subject` LIKE '%s%%' LIMIT 1",
1922                 array($subject), __FILE__, __LINE__);
1923         if ((SQL_NUMROWS($result) == 0) && (GET_EXT_VERSION($ext) == "")) {
1924                 // Template file
1925                 $tpl = sprintf("%stemplates/%s/html/ext/ext_%s.tpl",
1926                         PATH,
1927                         GET_LANGUAGE(),
1928                         $ext
1929                 );
1930
1931                 // Load text for task
1932                 if (FILE_READABLE($tpl)) {
1933                         // Load extension's own text template (HTML!)
1934                         $msg = LOAD_TEMPLATE("ext_".$ext, true);
1935                 } else {
1936                         // Load default message
1937                         $msg = LOAD_TEMPLATE("admin_new_ext", "", 0);
1938                 }
1939
1940                 // Task not created so it's a brand-new extension which we need to register and create a task for!
1941                 $result_insert = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, userid, status, task_type, subject, text, task_created)
1942 VALUES (%s,0,'NEW','EXTENSION','%s','%s',UNIX_TIMESTAMP())",
1943                         array(
1944                                 $admin_id,
1945                                 $subject,
1946                                 SQL_ESCAPE($msg),
1947                         ),  __FILE__, __LINE__, true, false
1948                 );
1949         } // END - if
1950
1951         // Free memory
1952         SQL_FREERESULT($result);
1953 }
1954
1955 // Prepares an SQL statement part for HTML mail and/or holiday depency
1956 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1957         // Exclude no users by default
1958         $MORE = "";
1959
1960         // HTML mail?
1961         if ($mode == "html") $MORE = " AND html='Y'";
1962         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1963                 // Add something for the holiday extension
1964                 $MORE .= " AND holiday_active='N'";
1965         } // END - if
1966
1967         // Return result
1968         return $MORE;
1969 }
1970
1971 // "Getter" for total available receivers
1972 function GET_TOTAL_RECEIVERS ($mode="normal") {
1973         // Query database
1974         $result_all = SQL_QUERY("SELECT userid
1975 FROM "._MYSQL_PREFIX."_user_data
1976 WHERE status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode),
1977                 __FILE__, __LINE__);
1978
1979         // Get num rows
1980         $numRows = SQL_NUMROWS($result_all);
1981
1982         // Free result
1983         SQL_FREERESULT($result_all);
1984
1985         // Return value
1986         return $numRows;
1987 }
1988
1989 // Returns HTML code with an "<option> list" of all categories
1990 function ADD_CATEGORY_OPTIONS ($mode) {
1991         // Prepare WHERE statement
1992         $whereStatement = " WHERE visible='Y'";
1993         if (IS_ADMIN()) $whereStatement = "";
1994
1995         // Initialize array...
1996         $CATS = array(
1997                 'id'   => array(),
1998                 'name' => array(),
1999                 'uids' => array()
2000         );
2001
2002         // Get categories
2003         $result = SQL_QUERY("SELECT id, cat FROM "._MYSQL_PREFIX."_cats".$whereStatement." ORDER BY sort", __FILE__, __LINE__);
2004         if (SQL_NUMROWS($result) > 0) {
2005                 // ... and begin loading stuff
2006                 while (list($id, $cat) = SQL_FETCHROW($result)) {
2007                         // Transfer some data
2008                         $CATS['id'][]   = $id;
2009                         $CATS['name'][] = $cat;
2010
2011                         // Check which users are in this category
2012                         $result_uids = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_cats WHERE cat_id=%s",
2013                          array(bigintval($id)), __FILE__, __LINE__);
2014
2015                         // Start adding all
2016                         $uid_cnt = 0;
2017                         while (list($ucat) = SQL_FETCHROW($result_uids)) {
2018                                 $result_ver = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data
2019 WHERE userid=%s AND status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
2020  array(bigintval($ucat)), __FILE__, __LINE__);
2021                                 $uid_cnt += SQL_NUMROWS($result_ver);
2022
2023                                 // Free memory
2024                                 SQL_FREERESULT($result_ver);
2025                         } // END - while
2026
2027                         // Free memory
2028                         SQL_FREERESULT($result_uids);
2029
2030                         // Add counter
2031                         $CATS['uids'][] = $uid_cnt;
2032                 }
2033
2034                 // Free memory
2035                 SQL_FREERESULT($result);
2036
2037                 // Generate options
2038                 $OUT = "";
2039                 foreach ($CATS['id'] as $key => $value) {
2040                         if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
2041                         $OUT .= "      <OPTION value=\"".$value."\">".$CATS['name'][$key]." (".$CATS['uids'][$key]." ".USER_IN_CAT.")</OPTION>\n";
2042                 }
2043         } else {
2044                 // No cateogries are defined yet
2045                 $OUT = "<option class=\"member_failed\">".MEMBER_NO_CATS."</option>\n";
2046         }
2047
2048         // Return HTML code
2049         return $OUT;
2050 }
2051
2052 // Add bonus mail to queue
2053 function ADD_BONUS_MAIL_TO_QUEUE ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode="normal", $receiver=0) {
2054         // Is admin or bonus extension there?
2055         if (!IS_ADMIN()) {
2056                 // Abort here
2057                 return false;
2058         } elseif (!EXT_IS_ACTIVE("bonus")) {
2059                 // Abort here
2060                 return false;
2061         }
2062
2063         // Calculcate target sent
2064         $target = SELECTION_COUNT(explode(";", $receiverList));
2065
2066         // Receiver is zero?
2067         if ($receiver == 0) {
2068                 // Then auto-fix it
2069                 $receiver = $target;
2070         } // END - if
2071
2072         // HTML extension active?
2073         if (EXT_IS_ACTIVE("html")) {
2074                 // No HTML by default
2075                 $HTML = "N";
2076
2077                 // HTML mode?
2078                 if ($mode == "html") $HTML = "Y";
2079
2080                 // Add HTML mail
2081                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
2082 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
2083 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
2084  array(
2085         $subject,
2086         $text,
2087         $receiverList,
2088         $points,
2089         $seconds,
2090         $url,
2091         $cat,
2092         $target,
2093         bigintval($receiver),
2094         $HTML
2095 ), __FILE__, __LINE__);
2096         } else {
2097                 // Add regular mail
2098                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
2099 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
2100 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
2101  array(
2102         $subject,
2103         $text,
2104         $receiverList,
2105         $points,
2106         $seconds,
2107         $url,
2108         $cat,
2109         $target,
2110         bigintval($receiver),
2111 ), __FILE__, __LINE__);
2112         }
2113 }
2114
2115 // Generate a receiver list for given category and maximum receivers
2116 function GENERATE_RECEIVER_LIST ($cat, $receiver, $mode="") {
2117         global $_CONFIG;
2118
2119         // Init variables
2120         $CAT_TABS     = "%s";
2121         $CAT_WHERE    = "";
2122         $receiverList = "";
2123
2124         // Secure data
2125         $cat      = bigintval($cat);
2126         $receiver = bigintval($receiver);
2127
2128         // Is the receiver zero and mode set?
2129         if (($receiver == 0) && (!empty($mode))) {
2130                 // Auto-fix receiver maximum
2131                 $receiver = GET_TOTAL_RECEIVERS($mode);
2132         } // END - if
2133
2134         // Category given?
2135         if ($cat > 0) {
2136                 // Select category
2137                 $CAT_TABS  = "LEFT JOIN "._MYSQL_PREFIX."_user_cats AS c ON d.userid=c.userid";
2138                 $CAT_WHERE = " AND c.cat_id=%s";
2139         } // END - if
2140
2141         // Exclude users in holiday?
2142         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
2143                 // Add something for the holiday extension
2144                 $CAT_WHERE .= " AND d.holiday_active='N'";
2145         } // END - if
2146
2147         if ((EXT_IS_ACTIVE("html_mail")) && ($mode == "html")) {
2148                 // Only include HTML receivers
2149                 $result = SQL_QUERY_ESC("SELECT d.userid FROM "._MYSQL_PREFIX."_user_data AS d ".$CAT_TABS." WHERE d.status='CONFIRMED' AND d.html='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2150                  array($cat, $_CONFIG['order_select'], $_CONFIG['order_mode'], $receiver), __FILE__, __LINE__);
2151         } else {
2152                 // Include all
2153                 $result = SQL_QUERY_ESC("SELECT d.userid FROM "._MYSQL_PREFIX."_user_data AS d ".$CAT_TABS." WHERE d.status='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
2154                  array($cat, $_CONFIG['order_select'], $_CONFIG['order_mode'], $receiver), __FILE__, __LINE__);
2155         }
2156
2157         // Entries found?
2158         if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
2159                 // Load all entries
2160                 while (list($REC) = SQL_FETCHROW($result)) {
2161                         // Add receiver when not empty
2162                         if (!empty($REC)) $receiverList .= $REC.";";
2163                 } // END - while
2164
2165                 // Free memory
2166                 SQL_FREERESULT($result);
2167
2168                 // Remove trailing semicolon
2169                 $receiverList = substr($receiverList, 0, -1);
2170         } // END - if
2171
2172         // Return list
2173         return $receiverList;
2174 }
2175
2176 // Get timestamp for given stats type and data
2177 function USER_STATS_GET_TIMESTAMP ($type, $data, $uid = 0) {
2178         // Default timestamp is zero
2179         $stamp = 0;
2180
2181         // User id set?
2182         if ((isset($GLOBALS['userid'])) && ($uid == 0)) {
2183                 $uid = $GLOBALS['userid'];
2184         } // END - if
2185
2186         // Is the extension installed and updated?
2187         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2188                 // Return zero here
2189                 return $stamp;
2190         } // END - if
2191
2192         // Try to find the entry
2193         $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
2194 FROM "._MYSQL_PREFIX."_user_stats_data
2195 WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
2196 LIMIT 1",
2197                 array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2198
2199         // Is the entry there?
2200         if (SQL_NUMROWS($result) == 1) {
2201                 // Get this stamp
2202                 list($stamp) = SQL_FETCHROW($result);
2203         } // END - if
2204
2205         // Free result
2206         SQL_FREERESULT($result);
2207
2208         // Return stamp
2209         return $stamp;
2210 }
2211
2212 // Inserts user stats
2213 function USER_STATS_INSERT_RECORD ($uid, $type, $data) {
2214         // Is the extension installed and updated?
2215         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2216                 // Return zero here
2217                 return false;
2218         } // END - if
2219
2220         // Does it exist?
2221         if ((!USER_STATS_GET_TIMESTAMP($type, $data, $uid)) && (!is_array($data))) {
2222                 // Then insert it!
2223                 SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_stats_data (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2224                         array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2225         } elseif (is_array($data)) {
2226                 // Invalid data!
2227                 DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2228         }
2229 }
2230
2231 // "Getter" for array for user refs and points in given level
2232 function GET_USER_REF_POINTS ($uid, $level) {
2233         global $_CONFIG;
2234
2235         //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
2236         // Default is no refs and no nickname
2237         $ADD = "";
2238         $refs = array();
2239
2240         // Do we have nickname extension installed?
2241         if (EXT_IS_ACTIVE("nickname")) {
2242                 $ADD = ", ud.nickname";
2243         } // END - if
2244
2245         // Get refs from database
2246         $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$ADD."
2247 FROM "._MYSQL_PREFIX."_user_refs AS ur
2248 LEFT JOIN "._MYSQL_PREFIX."_user_points AS up
2249 ON ur.refid=up.userid AND ur.level=0
2250 LEFT JOIN "._MYSQL_PREFIX."_user_data AS ud
2251 ON ur.refid=ud.userid
2252 WHERE ur.userid=%s AND ur.level=%s
2253 ORDER BY ur.refid ASC",
2254                 array(bigintval($uid), bigintval($level)), __FILE__, __LINE__);
2255
2256         // Are there some entries?
2257         if (SQL_NUMROWS($result) > 0) {
2258                 // Fetch all entries
2259                 while ($row = SQL_FETCHARRAY($result)) {
2260                         // Get total points of this user
2261                         $row['points'] = GET_TOTAL_DATA($row['refid'], "user_points", "points") - GET_TOTAL_DATA($row['refid'], "user_data", "used_points");
2262
2263                         // Get unconfirmed mails
2264                         $row['unconfirmed']  = GET_TOTAL_DATA($row['refid'], "user_links", "id", "userid", true);
2265
2266                         // Init clickrate with zero
2267                         $row['clickrate'] = 0;
2268
2269                         // Is at least one mail received?
2270                         if ($row['emails_received'] > 0) {
2271                                 // Calculate clickrate
2272                                 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2273                         } // END - if
2274
2275                         // Activity is "active" by default because if autopurge is not installed
2276                         $row['activity'] = MEMBER_ACTIVITY_ACTIVE;
2277
2278                         // Is autopurge installed and the user inactive?
2279                         if ((EXT_IS_ACTIVE("autopurge")) && ((time() - $_CONFIG['ap_inactive_since']) >= $row['last_online']))  {
2280                                 // Inactive user!
2281                                 $row['activity'] = MEMBER_ACTIVITY_INACTIVE;
2282                         } // END - if
2283
2284                         // Remove some entries
2285                         unset($row['mails_confirmed']);
2286                         unset($row['emails_received']);
2287                         unset($row['last_online']);
2288
2289                         // Add row
2290                         $refs[$row['id']] = $row;
2291                 } // END - while
2292         } // END - if
2293
2294         // Free result
2295         SQL_FREERESULT($result);
2296
2297         // Return result
2298         //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
2299         return $refs;
2300 }
2301
2302 // Recuced the amount of received emails for the receipients for given email
2303 function REDUCT_RECIPIENT_RECEIVED_MAILS ($column, $id, $count) {
2304         // Search for mail in database
2305         $result = SQL_QUERY_ESC("SELECT `userid` FROM `"._MYSQL_PREFIX."_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2306                 array($column, bigintval($id), $count), __FILE__, __LINE__);
2307
2308         // Are there entries?
2309         if (SQL_NUMROWS($result) > 0) {
2310                 // Now load all userids for one big query!
2311                 $UIDs = array();
2312                 while (list($uid) = SQL_FETCHROW($result)) {
2313                         $UIDs[$uid] = $uid;
2314                 } // END - while
2315
2316                 // Now update all user accounts
2317                 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2318                         array(implode(",", $UIDs), count($UIDs)), __FILE__, __LINE__);
2319         } // END - if
2320
2321         // Free result
2322         SQL_FREERESULT($result);
2323 }
2324
2325 // [EOF]
2326 ?>