7a4e9833adb57d38c63fa226e44989630bb21d61
[mailer.git] / inc / mysql-manager.php
1 <?php
2 /************************************************************************
3  * MXChange v0.2.1                                    Start: 08/26/2003 *
4  * ===============                              Last change: 11/29/2004 *
5  *                                                                      *
6  * -------------------------------------------------------------------- *
7  * File              : mysql-manager.php                                *
8  * -------------------------------------------------------------------- *
9  * Short description : All MySQL-related functions                      *
10  * -------------------------------------------------------------------- *
11  * Kurzbeschreibung  : Alle MySQL-Relevanten Funktionen                 *
12  * -------------------------------------------------------------------- *
13  *                                                                      *
14  * -------------------------------------------------------------------- *
15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
16  * For more information visit: http://www.mxchange.org                  *
17  *                                                                      *
18  * This program is free software; you can redistribute it and/or modify *
19  * it under the terms of the GNU General Public License as published by *
20  * the Free Software Foundation; either version 2 of the License, or    *
21  * (at your option) any later version.                                  *
22  *                                                                      *
23  * This program is distributed in the hope that it will be useful,      *
24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
26  * GNU General Public License for more details.                         *
27  *                                                                      *
28  * You should have received a copy of the GNU General Public License    *
29  * along with this program; if not, write to the Free Software          *
30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
31  * MA  02110-1301  USA                                                  *
32  ************************************************************************/
33
34 // Some security stuff...
35 if (!defined('__SECURITY')) {
36         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
37         require($INC);
38 }
39
40 //
41 function ADD_MODULE_TITLE($mod) {
42         global $cacheArray, $_CONFIG;
43         $name = ""; $result = false;
44
45         // Is the script installed?
46         if (isBooleanConstantAndTrue('mxchange_installed')) {
47                 // Check if cache is valid
48                 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
49                         // Load from cache
50                         $name = $cacheArray['modules']['title'][$mod];
51
52                         // Update cache hits
53                         if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
54                 } elseif (!EXT_IS_ACTIVE("cache")) {
55                         // Load from database
56                         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__);
57                         list($name) = SQL_FETCHROW($result);
58                         SQL_FREERESULT($result);
59                 }
60         } // END - if
61
62         // Trim name
63         $name = trim($name);
64
65         // Still no luck or empty title?
66         if (empty($name)) {
67                 // No name found
68                 $name = sprintf("%s (%s)", LANG_UNKNOWN_MODULE, $mod);
69                 if (SQL_NUMROWS($result) == 0) {
70                         // Add module to database
71                         $dummy = CHECK_MODULE($mod);
72                 } // END - if
73         } // END - if
74
75         // Return name
76         return $name;
77 }
78
79 // Check validity of a given module name (no file extension)
80 function CHECK_MODULE ($mod) {
81         // We need them now here...
82         global $cacheArray, $_CONFIG, $cacheInstance;
83
84         // Filter module name (names with low chars and underlines are fine!)
85         $mod = preg_replace("/[^a-z_]/", "", $mod);
86
87         // Check for prefix is a extension...
88         $modSplit = explode("_", $mod);
89         $extension = ""; $mod_chk = $mod;
90         //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
91         if (count($modSplit) == 2) {
92                 // Okay, there is a seperator (_) in the name so is the first part a module?
93                 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
94                 if (EXT_IS_ACTIVE($modSplit[0])) {
95                         // The prefix is an extension's name, so let's set it
96                         $extension = $modSplit[0]; $mod = $modSplit[1];
97                 }
98         }
99
100         // Major error in module registry is the default
101         $ret = "major";
102
103         // Check if script is installed if not return a "done" to prevent some errors
104         if ((!isBooleanConstantAndTrue('mxchange_installed')) || (isBooleanConstantAndTrue('mxchange_installing')) || (!isBooleanConstantAndTrue('admin_registered'))) return "done";
105
106         // Check if cache is latest version
107         $locked = "Y"; $hidden = "N"; $admin = "N"; $mem = "N"; $found = false;
108         if (GET_EXT_VERSION("cache") >= "0.1.2") {
109                 // Is the module cached?
110                 if (isset($cacheArray['modules']['locked'][$mod_chk])) {
111                         // Check cache
112                         $locked = $cacheArray['modules']['locked'][$mod_chk];
113                         $hidden = $cacheArray['modules']['hidden'][$mod_chk];
114                         $admin  = $cacheArray['modules']['admin_only'][$mod_chk];
115                         $mem    = $cacheArray['modules']['mem_only'][$mod_chk];
116
117                         // Update cache hits
118                         if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
119                         $found = true;
120                 } else {
121                         // No, then we have to update it!
122                         $ret = "cache_miss";
123                 }
124         } elseif (!EXT_IS_ACTIVE("cache")) {
125                 // Check for module in database
126                 $result = SQL_QUERY_ESC("SELECT locked, hidden, admin_only, mem_only FROM "._MYSQL_PREFIX."_mod_reg WHERE module='%s' LIMIT 1", array($mod_chk), __FILE__, __LINE__);
127                 if (SQL_NUMROWS($result) == 1) {
128                         // Read data
129                         list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
130                         SQL_FREERESULT($result);
131                         $found = true;
132                 }
133         }
134
135         // Is the module found?
136         if ($found) {
137                 // Check returned values against current access permissions
138                 //
139                 //  Admin access            ----- Guest access -----           --- Guest   or   member? ---
140                 if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_MEMBER())))) {
141                         // If you are admin you are welcome for everything!
142                         $ret = "done";
143                 } elseif ($locked == "Y") {
144                         // Module is locked
145                         $ret = "locked";
146                 } elseif (($mem == "Y") && (!IS_MEMBER())) {
147                         // You have to login first!
148                         $ret = "mem_only";
149                 } elseif (($admin == "Y") && (!IS_ADMIN())) {
150                         // Only the Admin is allowed to enter this module!
151                         $ret = "admin_only";
152                 }
153         } // END - if
154
155         // Still no luck or not found?
156         if (($ret == "cache_miss") || (!$found)) {
157                 //              ----- Legacy module -----                                   ---- Module in base folder  ----                       --- Module with extension's name ---
158                 if ((FILE_READABLE(sprintf("%sinc/modules/%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s.php", PATH, $mod))) || (FILE_READABLE(sprintf("%s%s/%s.php", PATH, $extension, $mod)))) {
159                         // Data is missing so we add it
160                         if (GET_EXT_VERSION("sql_patches") >= "0.3.6") {
161                                 // Since 0.3.6 we have a has_menu column, this took me a half hour
162                                 // to find a loop here... *sigh*
163                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
164 (module, locked, hidden, mem_only, admin_only, has_menu) VALUES
165 ('%s','Y','N','N','N','N')", array($mod_chk), __FILE__, __LINE__);
166                         } else {
167                                 // Wrong/missing sql_patches!
168                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_mod_reg
169 (module, locked, hidden, mem_only, admin_only) VALUES
170 ('%s','Y','N','N','N')", array($mod_chk), __FILE__, __LINE__);
171                         }
172
173                         // Everthing is fine?
174                         if (SQL_AFFECTEDROWS() < 1) {
175                                 // Something bad happend!
176                                 return "major";
177                         } // END - if
178
179                         // Destroy cache here
180                         REBUILD_CACHE("mod_reg", "modreg");
181
182                         // And reload data
183                         $ret = CHECK_MODULE($mod_chk);
184                 } else {
185                         // Module not found we don't add it to the database
186                         $ret = "404";
187                 }
188         } elseif (!$found) {
189                 // Problem with module detected
190                 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Problem in module %s detected. ret=%s, locked=%s, hidden=%s, mem=%s, admin=%s",
191                         $mod,
192                         $ret,
193                         $locked,
194                         $hidden,
195                         $mem,
196                         $admin
197                 ));
198         }
199
200         // Return the value
201         return $ret;
202 }
203
204 // Add menu description pending on given file name (without path!)
205 function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) {
206         global $NAV_DEPTH, $_CONFIG;
207         // Use only filename of the file ;)
208         $file = basename($file);
209
210         // Init variables
211         $LINK_ADD = ""; $OUT = ""; $AND = "";
212
213         // First we have to do some analysis...
214         if (substr($file, 0, 7) == "action-") {
215                 // This is an action file!
216                 $type = "action";
217                 $search = substr($file, 7);
218                 switch ($ACC_LVL)
219                 {
220                 case "admin":
221                         $modCheck = "admin";
222                         break;
223
224                 case "sponsor":
225                 case "guest":
226                 case "member":
227                         $modCheck = $GLOBALS['module'];
228                         break;
229                 }
230                 $AND = " AND (what='' OR what IS NULL)";
231         } elseif (substr($file, 0, 5) == "what-") {
232                 // This is an admin what file!
233                 $type = "what";
234                 $search = substr($file, 5);
235                 $AND = "";
236                 switch ($ACC_LVL)
237                 {
238                 case "admin":
239                         $modCheck = "admin";
240                         break;
241
242                 case "guest":
243                 case "member":
244                         $modCheck = $GLOBALS['module'];
245                         if (!IS_ADMIN()) {
246                                 $AND = " AND visible='Y' AND locked='N'";
247                         }
248                         break;
249                 }
250                 $dummy = substr($search, 0, -4);
251                 $AND .= " AND action='".GET_ACTION($ACC_LVL, $dummy)."'";
252         } elseif (($ACC_LVL == "sponsor") || ($ACC_LVL == "engine")) {
253                 // Sponsor / engine menu
254                 $type = "what";
255                 $search = $file;
256                 $modCheck = $GLOBALS['module'];
257                 $AND = "";
258         } else {
259                 // Other
260                 $type = "menu";
261                 $search = $file;
262                 $modCheck = $GLOBALS['module'];
263                 $AND = "";
264         }
265         if ((!isset($NAV_DEPTH)) && (!$return)) {
266                 $NAV_DEPTH = 0;
267                 $prefix = "<DIV class=\"you_are_here\">".YOU_ARE_HERE."&nbsp;<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$GLOBALS['module'].$LINK_ADD."\">Home</A></STRONG>";
268         } else {
269                 if (!$return) $NAV_DEPTH++;
270                 $prefix = "";
271         }
272
273         $prefix .= "&nbsp;-&gt;&nbsp;";
274
275         // We need to remove .php and the end
276         if (substr($search, -4, 4) == ".php") {
277                 // Remove the .php
278                 $search = substr($search, 0, -4);
279         } // END - i
280
281         // Get the title from menu
282         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1",
283                 array($ACC_LVL, $type, $search), __FILE__, __LINE__);
284
285         // Menu found?
286         if (SQL_NUMROWS($result) == 1) {
287                 // Load title
288                 list($ret) = SQL_FETCHROW($result);
289
290                 // Shall we return it?
291                 if ($return) {
292                         // Return title
293                         return $ret;
294                 } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && (getConfig('youre_here') == "Y")) || ((IS_ADMIN()) && ($modCheck == "admin"))) {
295                         // Output HTML code
296                         $OUT = $prefix."<STRONG><A class=\"you_are_here\" href=\"".URL."/modules.php?module=".$modCheck."&amp;".$type."=".$search.$LINK_ADD."\">".$ret."</A></STRONG>\n";
297
298                         // Can we close the you-are-here navigation?
299                         //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*<br />\n";
300                         //* DEBUG: */ die("<pre>".print_r($_CONFIG, true)."</pre>");
301                         if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
302                                 //* DEBUG: */ echo __LINE__."+".$type."+<br />\n";
303                                 // Add closing div and br-tag
304                                 $OUT .= "</div><br />\n";
305                                 $NAV_DEPTH = "0";
306
307                                 // Run the filter chain
308                                 $ret = RUN_FILTER('post_youhere_line', array('access_level' => $ACC_LVL, 'type' => $type, 'content' => ""));
309                                 $OUT .= $ret['content'];
310                         } // END - if
311                 }
312         } // END - if
313
314         // Free result
315         SQL_FREERESULT($result);
316
317         // Return or output HTML code?
318         if ($output) {
319                 // Output HTML code here
320                 OUTPUT_HTML($OUT);
321         } else {
322                 // Return HTML code
323                 return $OUT;
324         }
325 }
326 //
327 function ADD_MENU($MODE, $act, $wht) {
328         global $_CONFIG;
329
330         // Init some variables
331         $main_cnt = 0;
332         $AND = "";
333         $main_action = "";
334         $sub_what = "";
335
336         if (!VALIDATE_MENU_ACTION($MODE, $act, $wht, true)) return CODE_MENU_NOT_VALID;
337
338         // Non-admin shall not see all menus
339         if (!IS_ADMIN()) {
340                 $AND = " AND visible='Y' AND locked='N'";
341         }
342
343         // Load SQL data and add the menu to the output stream...
344         $result_main = SQL_QUERY_ESC("SELECT title, action FROM "._MYSQL_PREFIX."_%s_menu WHERE (what='' OR what IS NULL)".$AND." ORDER BY sort",
345          array($MODE), __FILE__, __LINE__);
346         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
347         if (SQL_NUMROWS($result_main) > 0) {
348                 OUTPUT_HTML("<TABLE border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$MODE."_menu\">");
349                 // There are menus available, so we simply display them... :)
350                 while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) {
351                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
352                         // Init variables
353                         $BLOCK_MODE = false; $act = $main_action;
354
355                         // Prepare content
356                         $content = array(
357                                 'action' => $main_action,
358                                 'title'  => $main_title
359                         );
360
361                         // Load menu header template
362                         LOAD_TEMPLATE($MODE."_menu_title", false, $content);
363
364                         $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort",
365                          array($MODE, $main_action), __FILE__, __LINE__);
366                         $ctl = SQL_NUMROWS($result_sub);
367                         if ($ctl > 0) {
368                                 $cnt=0;
369                                 while (list($sub_title, $sub_what) = SQL_FETCHROW($result_sub)) {
370                                         // Init content
371                                         $content = "";
372
373                                         // Full file name for checking menu
374                                         //* DEBUG: */ echo __LINE__.":!!!!".$sub_what."!!!<br />\n";
375                                         $test_inc = sprintf("%sinc/modules/%s/what-%s.php", PATH, $MODE, $sub_what);
376                                         $test = (FILE_READABLE($test_inc));
377                                         if ($test) {
378                                                 if ((!empty($wht)) && (($wht == $sub_what))) {
379                                                         $content = "<STRONG>";
380                                                 }
381
382                                                 // Navigation link
383                                                 $content .= "<A name=\"menu\" class=\"menu_blur\" href=\"".URL."/modules.php?module=".$GLOBALS['module']."&amp;what=".$sub_what.ADD_URL_DATA("")."\" target=\"_self\">";
384                                         } else {
385                                                 $content .= "<I>";
386                                         }
387
388                                         // Menu title
389                                         $content .= getConfig('menu_blur_spacer') . $sub_title;
390
391                                         if ($test) {
392                                                 $content .= "</A>";
393                                         } else {
394                                                 $content .= "</I>";
395                                         }
396
397                                         if ((!empty($wht)) && (($wht == $sub_what))) {
398                                                 $content .= "</STRONG>";
399                                         }
400                                         $wht = $sub_what; $cnt++;
401                                         // Prepare array
402                                         $content =  array(
403                                                 'menu' => $content,
404                                                 'what' => $sub_what
405                                         );
406
407                                         // Add regular menu row or bottom row?
408                                         if ($cnt < $ctl) {
409                                                 LOAD_TEMPLATE($MODE."_menu_row", false, $content);
410                                         } else {
411                                                 LOAD_TEMPLATE($MODE."_menu_bottom", false, $content);
412                                         }
413                                 }
414                         } else {
415                                 // This is a menu block... ;-)
416                                 $BLOCK_MODE = true;
417                                 $INC_BLOCK = sprintf("%sinc/modules/%s/action-%s.php", PATH, $MODE, $main_action);
418                                 if (FILE_READABLE($INC_BLOCK)) {
419                                         // Load include file
420                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("<TR>
421   <TD class=\"".$MODE."_menu_whats\">");
422                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
423                                         include ($INC_BLOCK);
424                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
425                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("  </TD>
426 </TR>");
427                                 }
428                                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
429                         }
430                         $main_cnt++;
431                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
432                         if (SQL_NUMROWS($result_main) > $main_cnt)      OUTPUT_HTML("<TR><TD class=\"".$MODE."_menu_seperator\"></TD></TR>");
433                 }
434
435                 // Free memory
436                 SQL_FREERESULT($result_main);
437
438                 // Close table
439                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
440                 OUTPUT_HTML("</TABLE>");
441         }
442 }
443 // This patched function will reduce many SELECT queries for the specified or current admin login
444 function IS_ADMIN($admin="")
445 {
446         global $cacheArray, $_CONFIG;
447         $ret = false; $passCookie = ""; $valPass = "";
448         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
449
450         // If admin login is not given take current from cookies...
451         if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
452                 // Get admin login and password from session/cookies
453                 $admin = get_session('admin_login');
454                 $passCookie = get_session('admin_md5');
455         }
456         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."<br />";
457
458         // Search in array for entry
459         if (isset($cacheArray['admin_hash'])) {
460                 // Use cached string
461                 $valPass = $cacheArray['admin_hash'];
462         } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
463                 // Count cache hits
464                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
465
466                 // Login data is valid or not?
467                 $valPass = generatePassString($cacheArray['admins']['password'][$admin]);
468
469                 // Cache it away
470                 $cacheArray['admin_hash'] = $valPass;
471         } elseif ((!empty($admin)) && ((!EXT_IS_ACTIVE("cache"))) || (!isset($cacheArray['admins']['password'][$admin]))) {
472                 // Search for admin
473                 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
474                         array($admin), __FILE__, __LINE__);
475
476                 // Is he admin?
477                 $passDB = "";
478                 if (SQL_NUMROWS($result) == 1) {
479                         // Admin login was found so let's load password from DB
480                         list($passDB) = SQL_FETCHROW($result);
481
482                         // Temporary cache it
483                         $cacheArray['admins']['password'][$admin] = $passDB;
484
485                         // Generate password hash
486                         $valPass = generatePassString($passDB);
487                 } // END - if
488
489                 // Free memory
490                 SQL_FREERESULT($result);
491         }
492
493         if (!empty($valPass)) {
494                 // Check if password is valid
495                 //* DEBUG: */ print __FUNCTION__."*".$valPass."/".$passCookie."*<br />\n";
496                 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE("cache"))));
497         }
498
499         // Return result of comparision
500         //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
501         return $ret;
502 }
503 //
504 function ADD_MAX_RECEIVE_LIST($MODE, $default="", $return=false)
505 {
506         global $_POST;
507         $OUT = "";
508         switch ($MODE)
509         {
510         case "guest":
511                 // Guests (in the registration form) are not allowed to select 0 mails per day.
512                 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive WHERE value > 0 ORDER BY value", __FILE__, __LINE__);
513                 if (SQL_NUMROWS($result) > 0)
514                 {
515                         $OUT = "";
516                         while (list($value, $comment) = SQL_FETCHROW($result))
517                         {
518                                 $OUT .= "      <OPTION value=\"".$value."\"";
519                                 if ($_POST['max_mails'] == $value) $OUT .= " selected=\"selected\"";
520                                 $OUT .= ">".$value." ".PER_DAY;
521                                 if (!empty($comment)) $OUT .= " (".$comment.")";
522                                 $OUT .= "</OPTION>\n";
523                         }
524                         define('__MAX_RECEIVE_OPTIONS', $OUT);
525
526                         // Free memory
527                         SQL_FREERESULT($result);
528                         $OUT = LOAD_TEMPLATE("guest_receive_table", true);
529                 }
530                  else
531                 {
532                         // Maybe the admin has to setup some maximum values?
533                 }
534                 break;
535
536         case "member":
537                 // Members are allowed to set to zero mails per day (we will change this soon!)
538                 $result = SQL_QUERY("SELECT value, comment FROM "._MYSQL_PREFIX."_max_receive ORDER BY value", __FILE__, __LINE__);
539                 if (SQL_NUMROWS($result) > 0)
540                 {
541                         $OUT = "";
542                         while (list($value, $comment) = SQL_FETCHROW($result))
543                         {
544                                 $OUT .= "      <OPTION value=\"".$value."\"";
545                                 if ($default == $value) $OUT .= " selected=\"selected\"";
546                                 $OUT .= ">".$value." ".PER_DAY;
547                                 if (!empty($comment)) $OUT .= " (".$comment.")";
548                                 $OUT .= "</OPTION>\n";
549                         }
550                         define('__MAX_RECEIVE_OPTIONS', $OUT);
551                         SQL_FREERESULT($result);
552                         $OUT = LOAD_TEMPLATE("member_receive_table", true);
553                 }
554                  else
555                 {
556                         // Maybe the admin has to setup some maximum values?
557                         $OUT = LOAD_TEMPLATE("admin_settings_saved", true, NO_MAX_VALUES);
558                 }
559                 break;
560         }
561         if ($return)
562         {
563                 // Return generated HTML code
564                 return $OUT;
565         }
566          else
567         {
568                 // Output directly (default)
569                 OUTPUT_HTML($OUT);
570         }
571 }
572 //
573 function SEARCH_EMAIL_USERTAB($email)
574 {
575         $ret = false;
576         $result = SQL_QUERY_ESC("SELECT userid FROM `"._MYSQL_PREFIX."_user_data` WHERE email LIKE '{PER}%s{PER}' LIMIT 1", array($email), __FILE__, __LINE__);
577         if (SQL_NUMROWS($result) == 1) $ret = true;
578         SQL_FREERESULT($result);
579         return $ret;
580 }
581 //
582 function WHAT_IS_VALID($act, $wht, $type="guest")
583 {
584         if (IS_ADMIN())
585         {
586                 // Everything is valid to the admin :-)
587                 return true;
588         }
589          else
590         {
591                 $ret = false;
592                 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what='%s' AND locked='N' LIMIT 1", array($type, $act, $wht), __FILE__, __LINE__);
593                 // Is "what" valid?
594                 if (SQL_NUMROWS($result) == 1) $ret = true;
595                 SQL_FREERESULT($result);
596                 return $ret;
597         }
598 }
599 //
600 function IS_MEMBER()
601 {
602         global $status, $LAST, $cacheArray;
603         if (!is_array($LAST)) $LAST = array();
604         $ret = false;
605
606         // is the cache entry there?
607         if (isset($cacheArray['is_member'])) {
608                 // Then return it
609                 return $cacheArray['is_member'];
610         } // END - if
611
612         // Fix "deleted" cookies first
613         FIX_DELETED_COOKIES(array('userid','u_hash','lifetime'));
614
615         // Are cookies set?
616         if ((!empty($GLOBALS['userid'])) && (isSessionVariableSet('u_hash')) && (isSessionVariableSet('lifetime')) && (defined('COOKIE_PATH')))
617         {
618                 // Cookies are set with values, but are they valid?
619                 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1",
620                  array($GLOBALS['userid']), __FILE__, __LINE__);
621                 if (SQL_NUMROWS($result) == 1)
622                 {
623                         // Load data from cookies
624                         list($password, $status, $mod, $onl) = SQL_FETCHROW($result);
625
626                         // Validate password by created the difference of it and the secret key
627                         $valPass = generatePassString($password);
628
629                         // Transfer last module and online time
630                         if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; }
631
632                         // So did we now have valid data and an unlocked user?
633                         //* DEBUG: */ echo $valPass."<br />".get_session('u_hash')."<br />";
634                         if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
635                                 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
636                                 $ret = true;
637                         } else {
638                                 // Maybe got locked etc.
639                                 //* DEBUG: */ echo __LINE__."!!!<br />";
640                                 destroy_user_session();
641
642                                 // Reset userid
643                                 $GLOBALS['userid'] = 0;
644                         }
645                 } else {
646                         // Cookie data is invalid!
647                         //* DEBUG: */ echo __LINE__."***<br />";
648                         destroy_user_session();
649
650                         // Reset userid
651                         $GLOBALS['userid'] = 0;
652                 }
653
654                 // Free memory
655                 SQL_FREERESULT($result);
656         } else {
657                 // Cookie data is invalid!
658                 //* DEBUG: */ echo __LINE__."///<br />";
659                 destroy_user_session();
660
661                 // Reset userid
662                 $GLOBALS['userid'] = 0;
663         }
664
665         // Cache status
666         $cacheArray['is_member'] = $ret;
667
668         // Return status
669         return $ret;
670 }
671 //
672 function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false)
673 {
674         $ret = false;
675         $ADD = "";
676         if ((!IS_ADMIN()) && ($MODE != "admin")) $ADD = " AND locked='N'";
677         //* DEBUG: */ echo __LINE__.":".$MODE."/".$act."/".$wht."*<br />\n";
678         if (($MODE != "admin") && ($UPDATE))
679         {
680                 // Update guest or member menu
681                 $SQL = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_%s_menu SET counter=counter+1 WHERE action='%s' AND what='%s'".$ADD." LIMIT 1",
682                  array($MODE, $act, $wht), __FILE__, __LINE__, false);
683         }
684          elseif ($wht != "overview")
685         {
686                 // Other actions
687                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s'".$ADD." ORDER BY action DESC LIMIT 1",
688                  array($MODE, $act), __FILE__, __LINE__, false);
689         }
690          else
691         {
692                 // Admin login overview
693                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND (what='' OR what IS NULL)".$ADD." ORDER BY action DESC LIMIT 1",
694                  array($MODE, $act), __FILE__, __LINE__, false);
695         }
696
697         // Run SQL command
698         $result = SQL_QUERY($SQL, __FILE__, __LINE__);
699         if ($UPDATE)
700         {
701                 if (SQL_AFFECTEDROWS() == 1) $ret = true;
702                 //* DEBUG: */ debug_print_backtrace();
703         }
704          else
705         {
706                 if (SQL_NUMROWS($result) == 1) {
707                         list($id, $wht2) = SQL_FETCHROW($result);
708                         //* DEBUG: */ echo __LINE__."+".$SQL."+<br />\n";
709                         //* DEBUG: */ echo __LINE__."*".$id."/".$wht."/".$wht2."*<br />\n";
710                         $ret = true;
711                 }
712         }
713
714         // Free memory
715         SQL_FREERESULT($result);
716
717         // Return result
718         return $ret;
719 }
720 //
721 function GET_MOD_DESCR($MODE, $wht, $column="what")
722 {
723         // Fix empty "what"
724         if (empty($wht)) {
725                 $wht = "welcome";
726                 if (getConfig('index_home') != "") $wht = getConfig('index_home');
727         } // END - if
728
729         // Default is not found
730         $ret = "??? (".$wht.")";
731
732         // Look for title
733         $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1",
734                 array($MODE, $column, $wht), __FILE__, __LINE__);
735
736         // Is there an entry?
737         if (SQL_NUMROWS($result) == 1) {
738                 // Fetch the title
739                 list($ret) = SQL_FETCHROW($result);
740         } // END - if
741
742         // Free result
743         SQL_FREERESULT($result);
744         return $ret;
745 }
746 //
747 function SEND_MODE_MAILS($mod, $modes)
748 {
749         global $_CONFIG, $DATA;
750
751         // Load hash
752         $result_main = SQL_QUERY_ESC("SELECT password FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
753                 array($GLOBALS['userid']), __FILE__, __LINE__);
754         if (SQL_NUMROWS($result_main) == 1) {
755                 // Load hash from database
756                 list($hashDB) = SQL_FETCHROW($result_main);
757
758                 // Extract salt from cookie
759                 $salt = substr(get_session('u_hash'), 0, -40);
760
761                 // Now let's compare passwords
762                 $hash = generatePassString($hashDB);
763                 if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) {
764                         // Load user's data
765                         $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND password='%s' LIMIT 1",
766                                 array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__);
767                         if (SQL_NUMROWS($result) == 1) {
768                                 // Load the data
769                                 $DATA = SQL_FETCHROW($result);
770
771                                 // Free result
772                                 SQL_FREERESULT($result);
773
774                                 // Translate gender
775                                 $DATA[0] = TRANSLATE_GENDER($DATA[0]);
776
777                                 // Clear/init the content variable
778                                 $content = "";
779                                 $DATA['info'] = "";
780
781                                 switch ($mod)
782                                 {
783                                 case "mydata":
784                                         foreach ($modes as $mode) {
785                                                 switch ($mode)
786                                                 {
787                                                 case "normal": break; // Do not add any special lines
788
789                                                 case "email": // Email was changed!
790                                                         $content = MEMBER_CHANGED_EMAIL.": ".$_POST['old_addy']."\n";
791                                                         break;
792
793                                                 case "pass": // Password was changed
794                                                         $content = MEMBER_CHANGED_PASS."\n";
795                                                         break;
796
797                                                 default:
798                                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
799                                                         $content = MEMBER_UNKNOWN_MODE.": ".$mode."\n\n";
800                                                         break;
801                                                 } // END - switch
802                                         } // END - if
803
804                                         if (EXT_IS_ACTIVE("country")) {
805                                                 // Replace code with description
806                                                 $DATA[4] = COUNTRY_GENERATE_INFO($_POST['country_code']);
807                                         } // END - if
808
809                                         // Load template
810                                         $msg = LOAD_EMAIL_TEMPLATE("member_mydata_notify", $content, $GLOBALS['userid']);
811
812                                         if (getConfig('admin_notify') == "Y") {
813                                                 // The admin needs to be notified about a profile change
814                                                 $msg_admin = "admin_mydata_notify";
815                                                 $sub_adm   = ADMIN_CHANGED_DATA;
816                                         } else {
817                                                 // No mail to admin
818                                                 $msg_admin = "";
819                                                 $sub_adm   = "";
820                                         }
821
822                                         // Set subject lines
823                                         $sub_mem = MEMBER_CHANGED_DATA;
824
825                                         // Output success message
826                                         $content = "<SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN>";
827                                         break;
828
829                                 default:
830                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
831                                         $content = "<SPAN class=\"member_failed\">".UNKNOWN_MODULE."</SPAN>";
832                                         break;
833                                 } // END - switch
834                         } else {
835                                 // Could not load profile data
836                                 $content = "<SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN>";
837                         }
838                 } else {
839                         // Passwords mismatch
840                         $content = "<SPAN class=\"member_failed\">".MEMBER_PASSWORD_ERROR."</SPAN>";
841                 }
842         } else {
843                 // Could not load profile
844                 $content = "<SPAN class=\"member_failed\">".MEMBER_CANNOT_LOAD_PROFILE."</SPAN>";
845         }
846
847         // Send email to user if required
848         if ((!empty($sub_mem)) && (!empty($msg))) {
849                 // Send member mail
850                 SEND_EMAIL($DATA[7], $sub_mem, $msg);
851         } // END - if
852
853         // Send only if no other error has occured
854         if (empty($content)) {
855                 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
856                         // Send admin mail
857                         SEND_ADMIN_NOTIFICATION($sub_adm, $msg_admin, $content, $GLOBALS['userid']);
858                 } elseif (getConfig('admin_notify') == "Y") {
859                         // Cannot send mails to admin!
860                         $content = CANNOT_SEND_ADMIN_MAILS;
861                 } else {
862                         // No mail to admin
863                         $content = "<SPAN class=\"member_done\">".MYDATA_MAIL_SENT."</SPAN>";
864                 }
865         } // END - if
866
867         // Load template
868         LOAD_TEMPLATE("admin_settings_saved", false, $content);
869 }
870 // Update module counter
871 function COUNT_MODULE($mod) {
872         if ($mod != "css") {
873                 // Do count all other modules but not accesses on CSS file css.php!
874                 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_mod_reg SET clicks=clicks+1 WHERE module='%s' LIMIT 1",
875                         array($mod), __FILE__, __LINE__);
876         } // END - if
877 }
878 // Get action value from mode (admin/guest/member) and what-value
879 function GET_ACTION ($MODE, &$wht)
880 {
881         global $ret, $_CONFIG;
882         // @DEPRECATED Init status
883         $ret = "";
884
885         //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=<br />";
886         if ((empty($wht)) && ($MODE != "admin")) {
887                 $wht = "welcome";
888                 if (getConfig('index_home') != "") $wht = getConfig('index_home');
889         } // END - if
890
891         if ($MODE == "admin") {
892                 // Action value for admin area
893                 if (!empty($GLOBALS['action'])) {
894                         // Get it directly from URL
895                         return $GLOBALS['action'];
896                 } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
897                         // Default value for admin area
898                         $ret = "login";
899                 }
900         } elseif (!empty($GLOBALS['action'])) {
901                 // Get it directly from URL
902                 return $GLOBALS['action'];
903         }
904         //* DEBUG: */ echo __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ret=".$ret."<br />\n";
905
906         if (MODULE_HAS_MENU($MODE)) {
907                 // Rewriting modules to menu
908                 switch ($MODE) {
909                         case "index": $MODE = "guest";  break;
910                         case "login": $MODE = "member"; break;
911                 } // END - switch
912
913                 // Guest and member menu is "main" as the default
914                 if (empty($ret)) $ret = "main";
915
916                 // Load from database
917                 $result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1",
918                         array($MODE, $wht), __FILE__, __LINE__);
919                 if (SQL_NUMROWS($result) == 1) {
920                         // Load action value and pray that this one is the right you want... ;-)
921                         list($ret) = SQL_FETCHROW($result);
922                 } // END - if
923
924                 // Free memory
925                 SQL_FREERESULT($result);
926         } // END - if
927
928         // Return action value
929         return $ret;
930 }
931
932 // Get category name back
933 function GET_CATEGORY ($cid) {
934         // Default is not found
935         $ret = _CATEGORY_404;
936
937         // Is the category id set?
938         if ($cid == "0") {
939                 // No category
940                 $ret = _CATEGORY_NONE;
941         } elseif ($cid > 0) {
942                 // Lookup the category in database
943                 $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1",
944                         array(bigintval($cid)), __FILE__, __LINE__);
945                 if (SQL_NUMROWS($result) == 1) {
946                         // Category found... :-)
947                         list($ret) = SQL_FETCHROW($result);
948                 } // END - if
949
950                 // Free result
951                 SQL_FREERESULT($result);
952         } // END - if
953
954         // Return result
955         return $ret;
956 }
957
958 // Get a string of "mail title" and price back
959 function GET_PAYMENT ($pid, $full=false) {
960         // Default is not found
961         $ret = _PAYMENT_404;
962
963         // Load payment data
964         $result = SQL_QUERY_ESC("SELECT mail_title, price FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
965                 array(bigintval($pid)), __FILE__, __LINE__);
966         if (SQL_NUMROWS($result) == 1) {
967                 // Payment type found... :-)
968                 if (!$full) {
969                         // Return only title
970                         list($ret) = SQL_FETCHROW($result);
971                 } else {
972                         // Return title and price
973                         list($t, $p) = SQL_FETCHROW($result);
974                         $ret = $t." / ".TRANSLATE_COMMA($p)." ".POINTS;
975                 }
976         }
977
978         // Free result
979         SQL_FREERESULT($result);
980
981         // Return result
982         return $ret;
983 }
984
985 // Get (basicly) the price of given payment id
986 function GET_PAY_POINTS($pid, $lookFor="price")
987 {
988         $ret = "-1";
989         $result = SQL_QUERY_ESC("SELECT %s FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
990                 array($lookFor, $pid), __FILE__, __LINE__);
991         if (SQL_NUMROWS($result) == 1)
992         {
993                 // Payment type found... :-)
994                 list($ret) = SQL_FETCHROW($result);
995                 SQL_FREERESULT($result);
996         }
997         return $ret;
998 }
999
1000 // Remove a receiver's ID from $ARRAY and add a link for him to confirm
1001 function REMOVE_RECEIVER (&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=false)
1002 {
1003         $ret = "failed";
1004         if ($uid > 0)
1005         {
1006                 // Remove entry from array
1007                 unset($ARRAY[$key]);
1008
1009                 // Is there already a line for this user available?
1010                 if ($stats_id > 0)
1011                 {
1012                         // Only when we got a real stats ID continue searching for the entry
1013                         $type = "NORMAL"; $rowName = "stats_id";
1014                         if ($bonus) { $type = "BONUS"; $rowName = "bonus_id"; }
1015                         $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_links WHERE %s='%s' AND userid=%s AND link_type='%s' LIMIT 1",
1016                          array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1017                         if (SQL_NUMROWS($result) == 0)
1018                         {
1019                                 // No, so we add one!
1020                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_links (%s, userid, link_type) VALUES ('%s','%s','%s')",
1021                                  array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1022                                 $ret = "done";
1023                         }
1024                          else
1025                         {
1026                                 // Already found
1027                                 $ret = "already";
1028                         }
1029
1030                         // Free memory
1031                         SQL_FREERESULT($result);
1032                 }
1033         }
1034         // Return status for sending routine
1035         return $ret;
1036 }
1037
1038 // Calculate sum (default) or count records of given criteria
1039 function GET_TOTAL_DATA ($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false, $add="") {
1040         $ret = 0;
1041         //* DEBUG: */ echo $search."/".$tableName."/".$lookFor."/".$whereStatement."/".$add."<br />\n";
1042         if (($onlyRows) || ($lookFor == "userid")) {
1043                 // Count rows
1044                 //* DEBUG: */ echo "COUNT!<br />\n";
1045                 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1046                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1047         } else {
1048                 // Add all rows
1049                 //* DEBUG: */ echo "SUM!<br />\n";
1050                 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `"._MYSQL_PREFIX."_%s` WHERE `%s`='%s'".$add,
1051                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1052         }
1053
1054         // Load row
1055         list($ret) = SQL_FETCHROW($result);
1056
1057         // Free result
1058         SQL_FREERESULT($result);
1059
1060         // Fix empty values
1061         if ((empty($ret)) && ($lookFor != "counter") && ($lookFor != "id") && ($lookFor != "userid")) {
1062                 // Float number
1063                 $ret = "0.00000";
1064         } elseif ("".$ret."" == "") {
1065                 // Fix empty result
1066                 $ret = "0";
1067         }
1068
1069         // Return value
1070         return $ret;
1071 }
1072 // "Getter fro ref level percents
1073 function GET_REF_LEVEL_PERCENTS ($level) {
1074         global $cacheInstance, $_CONFIG, $cacheArray;
1075
1076         // Default is zero
1077         $per = 0;
1078
1079         // Do we have cache?
1080         if ((isset($cacheArray['ref_depths']['level'])) && (EXT_IS_ACTIVE("cache"))) {
1081                 // First look for level
1082                 $key = array_search($level, $cacheArray['ref_depths']['level']);
1083                 if ($key !== false) {
1084                         // Entry found!
1085                         $per = $cacheArray['ref_depths']['percents'][$key];
1086
1087                         // Count cache hit
1088                         if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1089                 }
1090         } elseif (!EXT_IS_ACTIVE("cache")) {
1091                 // Get referal data
1092                 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM "._MYSQL_PREFIX."_refdepths WHERE level='%s' LIMIT 1",
1093                         array(bigintval($level)), __FILE__, __LINE__);
1094
1095                 // Entry found?
1096                 if (SQL_NUMROWS($result_lvl) == 1) {
1097                         // Get percents
1098                         list($per) = SQL_FETCHROW($result_lvl);
1099                 } // END - if
1100
1101                 // Free result
1102                 SQL_FREERESULT($result_lvl);
1103         }
1104
1105         // Return percent
1106         return $per;
1107 }
1108 /**
1109  *
1110  * Dynamic referal system, can also send mails!
1111  *
1112  * subject     = Subject line, write in lower-case letters and underscore is allowed
1113  * uid         = Referal ID wich should receive...
1114  * points      = ... xxx points
1115  * send_notify = shall I send the referal an email or not?
1116  * rid         = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1117  * locked      = Shall I pay it to normal (false) or locked (true) points ammount?
1118  * add_mode    = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
1119  *               for default value will cause no referal will get points ever!!!)
1120  */
1121 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") {
1122         //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
1123         global $_CONFIG, $DATA, $cacheArray;
1124
1125         // Convert mode to lower-case
1126         $add_mode = strtolower($add_mode);
1127
1128         // When $uid = 0 add points to jackpot
1129         if ($uid == "0") {
1130                 // Add points to jackpot
1131                 ADD_JACKPOT($points);
1132                 return;
1133         } // END - if
1134
1135         // Add booking record if extension is installed
1136         if (EXT_IS_ACTIVE("booking")) {
1137                 // Add record
1138                 ADD_BOOKING_RECORD($subject, $uid, $points, "add");
1139         } // END - if
1140
1141         // Count up referal depth
1142         if (!isset($GLOBALS['ref_level'])) {
1143                 // Initialialize referal system
1144                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />\n";
1145                 $GLOBALS['ref_level'] = 0;
1146         } else {
1147                 // Increase referal level
1148                 $GLOBALS['ref_level']++;
1149                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$GLOBALS['ref_level']}<br />\n";
1150         }
1151
1152         // Default is "normal" points
1153         $data = "points";
1154
1155         // Which points, locked or normal?
1156         if ($locked) $data = "locked_points";
1157
1158         // Check user account
1159         $result_user = SQL_QUERY_ESC("SELECT refid, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
1160                 array(bigintval($uid)), __FILE__, __LINE__);
1161
1162         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
1163         if (SQL_NUMROWS($result_user) == 1) {
1164                 // This is the user and his ref
1165                 list($ref, $email) = SQL_FETCHROW($result_user);
1166                 $cacheArray['add_uid'][$ref] = $uid;
1167
1168                 // Get percents
1169                 $per = GET_REF_LEVEL_PERCENTS($GLOBALS['ref_level']);
1170                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$GLOBALS['ref_level']},per={$per},mode={$add_mode}<br />\n";
1171
1172                 // Some percents found?
1173                 if ($per > 0) {
1174                         // Calculate new points
1175                         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$GLOBALS['ref_level']}<br />\n";
1176                         $ref_points = $points * $per / 100;
1177
1178                         // Pay refback here if level > 0 and in ref-mode
1179                         if ((EXT_IS_ACTIVE("refback")) && ($GLOBALS['ref_level'] > 0) && ($per < 100) && ($add_mode == "ref") && (isset($cacheArray['add_uid'][$uid]))) {
1180                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - BEFORE!<br />\n";
1181                                 $ref_points = ADD_REFBACK_POINTS($cacheArray['add_uid'][$uid], $uid, $points, $ref_points);
1182                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - AFTER!<br />\n";
1183                         } // END - if
1184
1185                         // Update points...
1186                         SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
1187                                 array($data, $data, $ref_points, bigintval($uid), bigintval($GLOBALS['ref_level'])), __FILE__, __LINE__);
1188                         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
1189
1190                         // No entry updated?
1191                         if (SQL_AFFECTEDROWS() < 1) {
1192                                 // First ref in this level! :-)
1193                                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_points (userid,ref_depth,%s) VALUES (%s,'%s',%s)",
1194                                         array($data, bigintval($uid), bigintval($GLOBALS['ref_level']), $ref_points), __FILE__, __LINE__);
1195                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - INSERTED! (".SQL_AFFECTEDROWS().")<br />\n";
1196                         } // END - if
1197
1198                         // Update mediadata as well
1199                         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1200                                 // Update database
1201                                 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $ref_points);
1202                         } // END - if
1203
1204                         // Points updated, maybe I shall send him an email?
1205                         if (($send_notify) && ($ref > 0) && (!$locked)) {
1206                                 // Prepare content
1207                                 $content = array(
1208                                         'percent' => $per,
1209                                         'level'   => bigintval($GLOBALS['ref_level']),
1210                                         'points'  => $ref_points,
1211                                         'refid'   => bigintval($ref)
1212                                 );
1213
1214                                 // Load email template
1215                                 $msg = LOAD_EMAIL_TEMPLATE("confirm-referal", $content, bigintval($uid));
1216
1217                                 SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg);
1218                         } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) {
1219                                 // Direct payment shall be notified about
1220                                 define('__POINTS_VALUE', $ref_points);
1221
1222                                 // Prepare content
1223                                 $content = array(
1224                                         'text'   => REASON_DIRECT_PAYMENT,
1225                                         'points' => TRANSLATE_COMMA($ref_points)
1226                                 );
1227
1228                                 // Load message
1229                                 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, $uid);
1230
1231                                 // And sent it away
1232                                 SEND_EMAIL($email, SUBJECT_DIRECT_PAYMENT, $msg);
1233                                 if (!isset($_GET['mid'])) LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
1234                         }
1235
1236                         // Maybe there's another ref?
1237                         if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == "ref")) {
1238                                 // Then let's credit him here...
1239                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />\n";
1240                                 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $GLOBALS['ref_level']), $ref, $points, $send_notify, $ref, $locked);
1241                         } // END - if
1242                 } // END - if
1243         } // END - if
1244
1245         // Free result
1246         SQL_FREERESULT($result_user);
1247         //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
1248 }
1249 //
1250 function UPDATE_REF_COUNTER ($uid) {
1251         global $cacheArray, $cacheInstance;
1252
1253         // Make it sure referal level zero (member him-/herself) is at least selected
1254         if (empty($cacheArray['ref_level'][$uid])) $cacheArray['ref_level'][$uid] = 1;
1255         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$cacheArray['ref_level'][$uid]}<br />\n";
1256
1257         // Update counter
1258         $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refsystem SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1259                 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1260
1261         // When no entry was updated then we have to create it here
1262         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />\n";
1263         if (SQL_AFFECTEDROWS() < 1) {
1264                 // First count!
1265                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES (%s,%s,1)",
1266                         array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1267                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />\n";
1268         } // END - if
1269
1270         // Check for his referal
1271         $result = SQL_QUERY_ESC("SELECT refid FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1",
1272                 array(bigintval($uid)), __FILE__, __LINE__);
1273
1274         // Load refid
1275         list($ref) = SQL_FETCHROW($result);
1276
1277         // Free memory
1278         SQL_FREERESULT($result);
1279         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />\n";
1280
1281         // When he has a referal...
1282         if (($ref > 0) && ($ref != $uid)) {
1283                 // Move to next referal level and count his counter one up!
1284                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />\n";
1285                 $cacheArray['ref_level'][$uid]++; UPDATE_REF_COUNTER($ref);
1286         } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION("cache") >= "0.1.2")) {
1287                 // Remove cache here
1288                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />\n";
1289                 REBUILD_CACHE("refsystem", "refsystem");
1290         }
1291
1292         // "Walk" back here
1293         $cacheArray['ref_level'][$uid]--;
1294
1295         // Handle refback here if extension is installed
1296         if (EXT_IS_ACTIVE("refback")) {
1297                 UPDATE_REFBACK_TABLE($uid);
1298         } // END - if
1299 }
1300
1301 // OBSOLETE: Sends out mail to all administrators
1302 function SEND_ADMIN_EMAILS ($subj, $msg) {
1303         // Load all admin email addresses
1304         $result = SQL_QUERY("SELECT email FROM "._MYSQL_PREFIX."_admins ORDER BY id ASC", __FILE__, __LINE__);
1305         while (list($email) = SQL_FETCHROW($result)) {
1306                 // Send the email out
1307                 SEND_EMAIL($email, $subj, $msg);
1308         } // END - if
1309
1310         // Free result
1311         SQL_FREERESULT($result);
1312
1313         // Really simple... ;-)
1314 }
1315
1316 // Get ID number from administrator's login name
1317 function GET_ADMIN_ID ($login) {
1318         global $cacheArray, $_CONFIG;
1319         $ret = "-1";
1320         if (isset($cacheArray['admins']['aid'][$login])) {
1321                 // Check cache
1322                 $ret = $cacheArray['admins']['aid'][$login];
1323
1324                 // Update cache hits
1325                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1326         } elseif (!EXT_IS_ACTIVE("cache")) {
1327                 // Load from database
1328                 $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
1329                  array($login), __FILE__, __LINE__);
1330                 if (SQL_NUMROWS($result) == 1) {
1331                         list($ret) = SQL_FETCHROW($result);
1332                 } // END - if
1333
1334                 // Free result
1335                 SQL_FREERESULT($result);
1336         }
1337         return $ret;
1338 }
1339
1340 // "Getter" for current admin id
1341 function GET_CURRENT_ADMIN_ID () {
1342         // Get the admin login from session
1343         $adminLogin = get_session('admin_login');
1344
1345         // "Solve" it into an id
1346         $adminId = GET_ADMIN_ID($adminLogin);
1347
1348         // Secure and return it
1349         return bigintval($adminId);
1350 }
1351
1352 // Get password hash from administrator's login name
1353 function GET_ADMIN_HASH ($aid)
1354 {
1355         global $cacheArray, $_CONFIG;
1356         $ret = "-1";
1357         if (isset($cacheArray['admins']['password'][$aid])) {
1358                 // Check cache
1359                 $ret = $cacheArray['admins']['password'][$aid];
1360
1361                 // Update cache hits
1362                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1363         } elseif (!EXT_IS_ACTIVE("cache")) {
1364                 // Load from database
1365                 $result = SQL_QUERY_ESC("SELECT password FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1366                  array($aid), __FILE__, __LINE__);
1367                 if (SQL_NUMROWS($result) == 1) {
1368                         // Fetch data
1369                         list($ret) = SQL_FETCHROW($result);
1370
1371                         // Set cache
1372                         $cacheArray['admins']['password'][$aid] = $ret;
1373                 }
1374
1375                 // Free result
1376                 SQL_FREERESULT($result);
1377         }
1378         return $ret;
1379 }
1380 //
1381 function GET_ADMIN_LOGIN ($aid) {
1382         global $cacheArray, $_CONFIG;
1383         $ret = "***";
1384         if (isset($cacheArray['admins']['login'][$aid])) {
1385                 // Get cache
1386                 $ret = $cacheArray['admins']['login'][$aid];
1387
1388                 // Update cache hits
1389                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1390         } elseif (!EXT_IS_ACTIVE("cache")) {
1391                 // Load from database
1392                 $result = SQL_QUERY_ESC("SELECT login FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1393                         array(bigintval($aid)), __FILE__, __LINE__);
1394                 if (SQL_NUMROWS($result) == 1) {
1395                         // Fetch data
1396                         list($ret) = SQL_FETCHROW($result);
1397
1398                         // Set cache
1399                         $cacheArray['admins']['login'][$aid] = $ret;
1400                 } // END - if
1401
1402                 // Free memory
1403                 SQL_FREERESULT($result);
1404         }
1405         return $ret;
1406 }
1407 // Get email address of admin id
1408 function GET_ADMIN_EMAIL ($aid) {
1409         global $cacheArray, $_CONFIG;
1410
1411         $ret = "***";
1412         if (isset($cacheArray['admins']['email'][$aid])) {
1413                 // Get cache
1414                 $ret = $cacheArray['admins']['email'][$aid];
1415
1416                 // Update cache hits
1417                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1418         } elseif (!EXT_IS_ACTIVE("cache")) {
1419                 // Load from database
1420                 $result_aid = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1421                         array(bigintval($aid)), __FILE__, __LINE__);
1422                 if (SQL_NUMROWS($result_aid) == 1) {
1423                         // Get data
1424                         list($ret) = SQL_FETCHROW($result_aid);
1425
1426                         // Set cache
1427                         $cacheArray['admins']['email'][$aid] = $ret;
1428                         } // END - if
1429
1430                 // Free result
1431                 SQL_FREERESULT($result_aid);
1432         }
1433
1434         // Return email
1435         return $ret;
1436 }
1437 // Get default ACL  of admin id
1438 function GET_ADMIN_DEFAULT_ACL ($aid) {
1439         global $cacheArray, $_CONFIG;
1440
1441         $ret = "***";
1442         if (isset($cacheArray['admins']['def_acl'][$aid])) {
1443                 // Use cache
1444                 $ret = $cacheArray['admins']['def_acl'][$aid];
1445
1446                 // Update cache hits
1447                 if (getConfig('cache_hits') > 0) { $_CONFIG['cache_hits']++; } else { $_CONFIG['cache_hits'] = 1; }
1448         } elseif (!EXT_IS_ACTIVE("cache")) {
1449                 // Load from database
1450                 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM "._MYSQL_PREFIX."_admins WHERE id=%s LIMIT 1",
1451                         array(bigintval($aid)), __FILE__, __LINE__);
1452                 if (SQL_NUMROWS($result_aid) == 1) {
1453                         // Fetch data
1454                         list($ret) = SQL_FETCHROW($result_aid);
1455
1456                         // Set cache
1457                         $cacheArray['admins']['def_acl'][$aid] = $ret;
1458                 }
1459
1460                 // Free result
1461                 SQL_FREERESULT($result_aid);
1462         }
1463
1464         // Return email
1465         return $ret;
1466 }
1467 //
1468 function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="") {
1469         $ret = "";
1470         if ($table == "/ARRAY/") {
1471                 // Selection from array
1472                 if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) {
1473                         // Both are arrays
1474                         foreach ($id as $idx => $value) {
1475                                 $ret .= "<OPTION value=\"".$value."\"";
1476                                 if ($default == $value) $ret .= " selected checked";
1477                                 $ret .= ">".$name[$idx]."</OPTION>\n";
1478                         } // END - foreach
1479                 } // END - if
1480         } else {
1481                 // Data from database
1482                 $SPEC = ", ".$id;
1483                 if (!empty($special)) $SPEC = ", ".$special;
1484                 $ORDER = $name.$SPEC;
1485                 if ($table == "country") $ORDER = $special;
1486                 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM "._MYSQL_PREFIX."_%s ".$where." ORDER BY %s",
1487                  array($id, $ORDER, $table, $name), __FILE__, __LINE__);
1488                 if (SQL_NUMROWS($result) > 0) {
1489                         // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1490                         while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1491                                 if (empty($special)) $add = "";
1492                                 $ret .= "<OPTION value=\"".$value."\"";
1493                                 if ($default == $value) $ret .= " selected checked";
1494                                 if (!empty($add)) $add = " (".$add.")";
1495                                 $ret .= ">".$title.$add."</OPTION>\n";
1496                         } // END - while
1497
1498                         // Free memory
1499                         SQL_FREERESULT($result);
1500                 } else {
1501                         // No data found
1502                         $ret = "<OPTION value=\"x\">".SELECT_NONE."</OPTION>\n";
1503                 }
1504         }
1505
1506         // Return - hopefully - the requested data
1507         return $ret;
1508 }
1509 // Activate exchange (DEPERECATED???)
1510 function activateExchange() {
1511         global $_CONFIG;
1512         $result = SQL_QUERY("SELECT userid FROM `"._MYSQL_PREFIX."_user_data` WHERE status='CONFIRMED' AND max_mails > 0", __FILE__, __LINE__);
1513         if (SQL_NUMROWS($result) >= getConfig('activate_xchange'))
1514         {
1515                 // Free memory
1516                 SQL_FREERESULT($result);
1517
1518                 // Activate System
1519                 $SQLs = array(
1520                         "UPDATE "._MYSQL_PREFIX."_mod_reg SET locked='N', hidden='N', mem_only='Y' WHERE module='order' LIMIT 1",
1521                         "UPDATE `"._MYSQL_PREFIX."_member_menu` SET visible='Y', locked='N' WHERE what='order' OR what='unconfirmed' LIMIT 2",
1522                         "UPDATE `"._MYSQL_PREFIX."_config` SET activate_xchange='0' WHERE config=0 LIMIT 1"
1523                 );
1524
1525                 // Run SQLs
1526                 foreach ($SQLs as $sql) {
1527                         $result = SQL_QUERY($sql, __FILE__, __LINE__);
1528                 }
1529
1530                 // @TODO Destroy cache
1531         }
1532 }
1533 //
1534 function DELETE_USER_ACCOUNT($uid, $reason)
1535 {
1536         $points = 0;
1537         $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1538 FROM "._MYSQL_PREFIX."_user_points AS p
1539 LEFT JOIN `"._MYSQL_PREFIX."_user_data` AS d
1540 ON p.userid=d.userid
1541 WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1542         if (SQL_NUMROWS($result) == 1) {
1543                 // Save his points to add them to the jackpot
1544                 list($points) = SQL_FETCHROW($result);
1545                 SQL_FREERESULT($result);
1546
1547                 // Delete points entries as well
1548                 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1549
1550                 // Update mediadata as well
1551                 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1552                         // Update database
1553                         MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1554                 } // END - if
1555
1556                 // Now, when we have all his points adds them do the jackpot!
1557                 ADD_JACKPOT($points);
1558         }
1559
1560         // Delete category selections as well...
1561         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s",
1562          array(bigintval($uid)), __FILE__, __LINE__);
1563
1564         // Remove from rallye if found
1565         if (EXT_IS_ACTIVE("rallye")) {
1566                 $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_rallye_users WHERE userid=%s",
1567                  array(bigintval($uid)), __FILE__, __LINE__);
1568         }
1569
1570         // Now a mail to the user and that's all...
1571         $msg = LOAD_EMAIL_TEMPLATE("del-user", array('text' => $reason), $uid);
1572         SEND_EMAIL($uid, ADMIN_DEL_ACCOUNT, $msg);
1573
1574         // Ok, delete the account!
1575         $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__);
1576 }
1577 //
1578 function META_DESCRIPTION ($mod, $wht) {
1579         global $_CONFIG;
1580
1581         // Exclude admin and member's area
1582         if (($mod != "admin") && ($mod != "login")) {
1583                 // Construct dynamic description
1584                 $DESCR = MAIN_TITLE." ".trim(getConfig('title_middle'))." ".ADD_DESCR("guest", "what-".$wht, true);
1585
1586                 // Output it directly
1587                 OUTPUT_HTML("<meta name=\"description\" content=\"".$DESCR."\" />");
1588         } // END - if
1589
1590         // Remove depth
1591         unset($GLOBALS['ref_level']);
1592 }
1593 //
1594 function ADD_JACKPOT($points) {
1595         $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1596         if (SQL_NUMROWS($result) == 0) {
1597                 // Create line
1598                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok','%s')", array($points), __FILE__, __LINE__);
1599         } else {
1600                 // Free memory
1601                 SQL_FREERESULT($result);
1602
1603                 // Update points
1604                 $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points+%s WHERE ok='ok' LIMIT 1",
1605                         array($points), __FILE__, __LINE__);
1606         }
1607 }
1608 //
1609 function SUB_JACKPOT($points) {
1610         // First failed
1611         $ret = "-1";
1612
1613         // Get current points
1614         $result = SQL_QUERY("SELECT points FROM "._MYSQL_PREFIX."_jackpot WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1615         if (SQL_NUMROWS($result) == 0) {
1616                 // Create line
1617                 SQL_QUERY("INSERT INTO "._MYSQL_PREFIX."_jackpot (ok, points) VALUES ('ok', 0.00000)", __FILE__, __LINE__);
1618         } else {
1619                 // Read points
1620                 list($jackpot) = SQL_FETCHROW($result);
1621                 if ($jackpot >= $points) {
1622                         // Update points when there are enougth points in jackpot
1623                         SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_jackpot SET points=points-%s WHERE ok='ok' LIMIT 1",
1624                                 array($points), __FILE__, __LINE__);
1625                         $ret = $jackpot - $points;
1626                 } // END - if
1627         }
1628
1629         // Free memory
1630         SQL_FREERESULT($result);
1631 }
1632 //
1633 function IS_DEMO() {
1634         return ((EXT_IS_ACTIVE("demo")) && (get_session('admin_login') == "demo"));
1635 }
1636 //
1637 function LOAD_CONFIG ($no="0") {
1638         global $cacheArray;
1639         $CFG_DUMMY = array();
1640
1641         // Check for cache extension, cache-array and if the requested configuration is in cache
1642         if ((is_array($cacheArray)) && (isset($cacheArray['config'][$no])) && (is_array($cacheArray['config'][$no]))) {
1643                 // Load config from cache
1644                 //* DEBUG: */ echo gettype($cacheArray['config'][$no])."<br />\n";
1645                 foreach ($cacheArray['config'][$no] as $key => $value) {
1646                         $CFG_DUMMY[$key] = $value;
1647                 } // END - foreach
1648
1649                 // Count cache hits if exists
1650                 if ((isset($CFG_DUMMY['cache_hits'])) && (EXT_IS_ACTIVE("cache"))) {
1651                         $CFG_DUMMY['cache_hits']++;
1652                 } // END - if
1653         } elseif ((!EXT_IS_ACTIVE("cache")) || (!isset($cacheArray['config'][$no]))) {
1654                 // Load config from DB
1655                 $result_config = SQL_QUERY_ESC("SELECT * FROM `"._MYSQL_PREFIX."_config` WHERE config=%d LIMIT 1",
1656                         array(bigintval($no)), __FILE__, __LINE__);
1657
1658                 // Get config from database
1659                 $CFG_DUMMY = SQL_FETCHARRAY($result_config);
1660
1661                 // Free result
1662                 SQL_FREERESULT($result_config);
1663
1664                 // Remember this config in the array
1665                 $cacheArray['config'][$no] = $CFG_DUMMY;
1666         }
1667
1668         // Return config array
1669         return $CFG_DUMMY;
1670 }
1671 // Gets the matching what name from module
1672 function GET_WHAT($modCheck) {
1673         global $_CONFIG;
1674
1675         $wht = "";
1676         //* DEBUG: */ echo __LINE__."!".$modCheck."!<br />\n";
1677         switch ($modCheck)
1678         {
1679         case "admin":
1680                 $wht = "overview";
1681                 break;
1682
1683         case "login":
1684         case "index":
1685                 $wht = "welcome";
1686                 if (($modCheck == "index") && (getConfig('index_home') != "")) $wht = getConfig('index_home');
1687                 break;
1688
1689         default:
1690                 $wht = "";
1691                 break;
1692         }
1693
1694         // Return what value
1695         return $wht;
1696 }
1697
1698 // Subtract points from database and mediadata cache
1699 function SUB_POINTS ($subject, $uid, $points) {
1700         // Add points to used points
1701         $result = SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
1702          array($points, bigintval($uid)), __FILE__, __LINE__);
1703
1704         // Insert booking record
1705         if (EXT_IS_ACTIVE("booking")) {
1706                 // Add record
1707                 ADD_BOOKING_RECORD($subject, $uid, $points, "sub");
1708         } // END - if
1709
1710         // Update mediadata as well
1711         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1712                 // Update database
1713                 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1714         } // END - if
1715 }
1716
1717 // Update config entries
1718 function UPDATE_CONFIG ($entries, $values, $updateMode="") {
1719         global $CSS;
1720
1721         // Do not update config in CSS mode
1722         if (($CSS == "1") || ($CSS == -1)) {
1723                 return;
1724         } // END - if
1725
1726         // Do we have multiple entries?
1727         if (is_array($entries)) {
1728                 // Walk through all
1729                 $all = "";
1730                 foreach ($entries as $idx => $entry) {
1731                         // Update mode set?
1732                         if (!empty($updateMode)) {
1733                                 // Update entry
1734                                 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1735                         } else {
1736                                 // Check if string or number
1737                                 if (($values[$idx] + 0) === $values[$idx]) {
1738                                         // Number detected
1739                                         $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
1740                                 } elseif ($values[$idx] == "UNIX_TIMESTAMP()") {
1741                                         // Function UNIX_TIMESTAMP() detected
1742                                         $all .= sprintf("%s=%s,", $entry, $values[$idx]);
1743                                 } else {
1744                                         // String detected
1745                                         $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
1746                                 }
1747                         }
1748                 } // END - foreach
1749
1750                 // Remove last comma
1751                 $entries = substr($all, 0, -1);
1752         } elseif (!empty($updateMode)) {
1753                 // Update mode set
1754                 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1755         } else {
1756                 // Regular entry to update
1757                 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1758         }
1759
1760         // Run database update
1761         //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1762         SQL_QUERY("UPDATE `"._MYSQL_PREFIX."_config` SET ".$entries." WHERE config=0 LIMIT 1", __FILE__, __LINE__);
1763
1764         // Get affected rows
1765         $affectedRows = SQL_AFFECTEDROWS();
1766         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />\n";
1767
1768         // Rebuild cache
1769         REBUILD_CACHE("config", "config");
1770 }
1771
1772 // Prepares an SQL statement part for HTML mail and/or holiday depency
1773 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1774         // Exclude no users by default
1775         $MORE = "";
1776
1777         // HTML mail?
1778         if ($mode == "html") $MORE = " AND html='Y'";
1779         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1780                 // Add something for the holiday extension
1781                 $MORE .= " AND holiday_active='N'";
1782         } // END - if
1783
1784         // Return result
1785         return $MORE;
1786 }
1787
1788 // "Getter" for total available receivers
1789 function GET_TOTAL_RECEIVERS ($mode="normal") {
1790         // Query database
1791         $result_all = SQL_QUERY("SELECT userid
1792 FROM "._MYSQL_PREFIX."_user_data
1793 WHERE status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode),
1794                 __FILE__, __LINE__);
1795
1796         // Get num rows
1797         $numRows = SQL_NUMROWS($result_all);
1798
1799         // Free result
1800         SQL_FREERESULT($result_all);
1801
1802         // Return value
1803         return $numRows;
1804 }
1805
1806 // Returns HTML code with an "<option> list" of all categories
1807 function ADD_CATEGORY_OPTIONS ($mode) {
1808         // Prepare WHERE statement
1809         $whereStatement = " WHERE visible='Y'";
1810         if (IS_ADMIN()) $whereStatement = "";
1811
1812         // Initialize array...
1813         $CATS = array(
1814                 'id'   => array(),
1815                 'name' => array(),
1816                 'uids' => array()
1817         );
1818
1819         // Get categories
1820         $result = SQL_QUERY("SELECT id, cat FROM "._MYSQL_PREFIX."_cats".$whereStatement." ORDER BY sort", __FILE__, __LINE__);
1821         if (SQL_NUMROWS($result) > 0) {
1822                 // ... and begin loading stuff
1823                 while (list($id, $cat) = SQL_FETCHROW($result)) {
1824                         // Transfer some data
1825                         $CATS['id'][]   = $id;
1826                         $CATS['name'][] = $cat;
1827
1828                         // Check which users are in this category
1829                         $result_uids = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_cats WHERE cat_id=%s",
1830                          array(bigintval($id)), __FILE__, __LINE__);
1831
1832                         // Start adding all
1833                         $uid_cnt = 0;
1834                         while (list($ucat) = SQL_FETCHROW($result_uids)) {
1835                                 $result_ver = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data
1836 WHERE userid=%s AND status='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
1837  array(bigintval($ucat)), __FILE__, __LINE__);
1838                                 $uid_cnt += SQL_NUMROWS($result_ver);
1839
1840                                 // Free memory
1841                                 SQL_FREERESULT($result_ver);
1842                         } // END - while
1843
1844                         // Free memory
1845                         SQL_FREERESULT($result_uids);
1846
1847                         // Add counter
1848                         $CATS['uids'][] = $uid_cnt;
1849                 }
1850
1851                 // Free memory
1852                 SQL_FREERESULT($result);
1853
1854                 // Generate options
1855                 $OUT = "";
1856                 foreach ($CATS['id'] as $key => $value) {
1857                         if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
1858                         $OUT .= "      <OPTION value=\"".$value."\">".$CATS['name'][$key]." (".$CATS['uids'][$key]." ".USER_IN_CAT.")</OPTION>\n";
1859                 }
1860         } else {
1861                 // No cateogries are defined yet
1862                 $OUT = "<option class=\"member_failed\">".MEMBER_NO_CATS."</option>\n";
1863         }
1864
1865         // Return HTML code
1866         return $OUT;
1867 }
1868
1869 // Add bonus mail to queue
1870 function ADD_BONUS_MAIL_TO_QUEUE ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode="normal", $receiver=0) {
1871         // Is admin or bonus extension there?
1872         if (!IS_ADMIN()) {
1873                 // Abort here
1874                 return false;
1875         } elseif (!EXT_IS_ACTIVE("bonus")) {
1876                 // Abort here
1877                 return false;
1878         }
1879
1880         // Calculcate target sent
1881         $target = SELECTION_COUNT(explode(";", $receiverList));
1882
1883         // Receiver is zero?
1884         if ($receiver == 0) {
1885                 // Then auto-fix it
1886                 $receiver = $target;
1887         } // END - if
1888
1889         // HTML extension active?
1890         if (EXT_IS_ACTIVE("html")) {
1891                 // No HTML by default
1892                 $HTML = "N";
1893
1894                 // HTML mode?
1895                 if ($mode == "html") $HTML = "Y";
1896
1897                 // Add HTML mail
1898                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
1899 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
1900 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
1901  array(
1902         $subject,
1903         $text,
1904         $receiverList,
1905         $points,
1906         $seconds,
1907         $url,
1908         $cat,
1909         $target,
1910         bigintval($receiver),
1911         $HTML
1912 ), __FILE__, __LINE__);
1913         } else {
1914                 // Add regular mail
1915                 $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_bonus
1916 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
1917 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
1918  array(
1919         $subject,
1920         $text,
1921         $receiverList,
1922         $points,
1923         $seconds,
1924         $url,
1925         $cat,
1926         $target,
1927         bigintval($receiver),
1928 ), __FILE__, __LINE__);
1929         }
1930 }
1931
1932 // Generate a receiver list for given category and maximum receivers
1933 function GENERATE_RECEIVER_LIST ($cat, $receiver, $mode="") {
1934         global $_CONFIG;
1935
1936         // Init variables
1937         $CAT_TABS     = "%s";
1938         $CAT_WHERE    = "";
1939         $receiverList = "";
1940
1941         // Secure data
1942         $cat      = bigintval($cat);
1943         $receiver = bigintval($receiver);
1944
1945         // Is the receiver zero and mode set?
1946         if (($receiver == 0) && (!empty($mode))) {
1947                 // Auto-fix receiver maximum
1948                 $receiver = GET_TOTAL_RECEIVERS($mode);
1949         } // END - if
1950
1951         // Category given?
1952         if ($cat > 0) {
1953                 // Select category
1954                 $CAT_TABS  = "LEFT JOIN "._MYSQL_PREFIX."_user_cats AS c ON d.userid=c.userid";
1955                 $CAT_WHERE = " AND c.cat_id=%s";
1956         } // END - if
1957
1958         // Exclude users in holiday?
1959         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1960                 // Add something for the holiday extension
1961                 $CAT_WHERE .= " AND d.holiday_active='N'";
1962         } // END - if
1963
1964         if ((EXT_IS_ACTIVE("html_mail")) && ($mode == "html")) {
1965                 // Only include HTML receivers
1966                 $result = SQL_QUERY_ESC("SELECT d.userid FROM `"._MYSQL_PREFIX."_user_data` AS d ".$CAT_TABS." WHERE d.status='CONFIRMED' AND d.html='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
1967                  array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FILE__, __LINE__);
1968         } else {
1969                 // Include all
1970                 $result = SQL_QUERY_ESC("SELECT d.userid FROM `"._MYSQL_PREFIX."_user_data` AS d ".$CAT_TABS." WHERE d.status='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
1971                  array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FILE__, __LINE__);
1972         }
1973
1974         // Entries found?
1975         if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
1976                 // Load all entries
1977                 while (list($REC) = SQL_FETCHROW($result)) {
1978                         // Add receiver when not empty
1979                         if (!empty($REC)) $receiverList .= $REC.";";
1980                 } // END - while
1981
1982                 // Free memory
1983                 SQL_FREERESULT($result);
1984
1985                 // Remove trailing semicolon
1986                 $receiverList = substr($receiverList, 0, -1);
1987         } // END - if
1988
1989         // Return list
1990         return $receiverList;
1991 }
1992
1993 // Get timestamp for given stats type and data
1994 function USER_STATS_GET_TIMESTAMP ($type, $data, $uid = 0) {
1995         // Default timestamp is zero
1996         $stamp = 0;
1997
1998         // User id set?
1999         if ((isset($GLOBALS['userid'])) && ($uid == 0)) {
2000                 $uid = $GLOBALS['userid'];
2001         } // END - if
2002
2003         // Is the extension installed and updated?
2004         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2005                 // Return zero here
2006                 return $stamp;
2007         } // END - if
2008
2009         // Try to find the entry
2010         $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
2011 FROM "._MYSQL_PREFIX."_user_stats_data
2012 WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
2013 LIMIT 1",
2014                 array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2015
2016         // Is the entry there?
2017         if (SQL_NUMROWS($result) == 1) {
2018                 // Get this stamp
2019                 list($stamp) = SQL_FETCHROW($result);
2020         } // END - if
2021
2022         // Free result
2023         SQL_FREERESULT($result);
2024
2025         // Return stamp
2026         return $stamp;
2027 }
2028
2029 // Inserts user stats
2030 function USER_STATS_INSERT_RECORD ($uid, $type, $data) {
2031         // Is the extension installed and updated?
2032         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2033                 // Return zero here
2034                 return false;
2035         } // END - if
2036
2037         // Does it exist?
2038         if ((!USER_STATS_GET_TIMESTAMP($type, $data, $uid)) && (!is_array($data))) {
2039                 // Then insert it!
2040                 SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_stats_data (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2041                         array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2042         } elseif (is_array($data)) {
2043                 // Invalid data!
2044                 DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2045         }
2046 }
2047
2048 // "Getter" for array for user refs and points in given level
2049 function GET_USER_REF_POINTS ($uid, $level) {
2050         global $_CONFIG;
2051
2052         //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
2053         // Default is no refs and no nickname
2054         $ADD = "";
2055         $refs = array();
2056
2057         // Do we have nickname extension installed?
2058         if (EXT_IS_ACTIVE("nickname")) {
2059                 $ADD = ", ud.nickname";
2060         } // END - if
2061
2062         // Get refs from database
2063         $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$ADD."
2064 FROM "._MYSQL_PREFIX."_user_refs AS ur
2065 LEFT JOIN "._MYSQL_PREFIX."_user_points AS up
2066 ON ur.refid=up.userid AND ur.level=0
2067 LEFT JOIN `"._MYSQL_PREFIX."_user_data` AS ud
2068 ON ur.refid=ud.userid
2069 WHERE ur.userid=%s AND ur.level=%s
2070 ORDER BY ur.refid ASC",
2071                 array(bigintval($uid), bigintval($level)), __FILE__, __LINE__);
2072
2073         // Are there some entries?
2074         if (SQL_NUMROWS($result) > 0) {
2075                 // Fetch all entries
2076                 while ($row = SQL_FETCHARRAY($result)) {
2077                         // Get total points of this user
2078                         $row['points'] = GET_TOTAL_DATA($row['refid'], "user_points", "points") - GET_TOTAL_DATA($row['refid'], "user_data", "used_points");
2079
2080                         // Get unconfirmed mails
2081                         $row['unconfirmed']  = GET_TOTAL_DATA($row['refid'], "user_links", "id", "userid", true);
2082
2083                         // Init clickrate with zero
2084                         $row['clickrate'] = 0;
2085
2086                         // Is at least one mail received?
2087                         if ($row['emails_received'] > 0) {
2088                                 // Calculate clickrate
2089                                 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2090                         } // END - if
2091
2092                         // Activity is "active" by default because if autopurge is not installed
2093                         $row['activity'] = MEMBER_ACTIVITY_ACTIVE;
2094
2095                         // Is autopurge installed and the user inactive?
2096                         if ((EXT_IS_ACTIVE("autopurge")) && ((time() - getConfig('ap_inactive_since')) >= $row['last_online']))  {
2097                                 // Inactive user!
2098                                 $row['activity'] = MEMBER_ACTIVITY_INACTIVE;
2099                         } // END - if
2100
2101                         // Remove some entries
2102                         unset($row['mails_confirmed']);
2103                         unset($row['emails_received']);
2104                         unset($row['last_online']);
2105
2106                         // Add row
2107                         $refs[$row['id']] = $row;
2108                 } // END - while
2109         } // END - if
2110
2111         // Free result
2112         SQL_FREERESULT($result);
2113
2114         // Return result
2115         //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
2116         return $refs;
2117 }
2118
2119 // Recuced the amount of received emails for the receipients for given email
2120 function REDUCT_RECIPIENT_RECEIVED_MAILS ($column, $id, $count) {
2121         // Search for mail in database
2122         $result = SQL_QUERY_ESC("SELECT `userid` FROM `"._MYSQL_PREFIX."_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2123                 array($column, bigintval($id), $count), __FILE__, __LINE__);
2124
2125         // Are there entries?
2126         if (SQL_NUMROWS($result) > 0) {
2127                 // Now load all userids for one big query!
2128                 $UIDs = array();
2129                 while (list($uid) = SQL_FETCHROW($result)) {
2130                         $UIDs[$uid] = $uid;
2131                 } // END - while
2132
2133                 // Now update all user accounts
2134                 SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2135                         array(implode(",", $UIDs), count($UIDs)), __FILE__, __LINE__);
2136         } // END - if
2137
2138         // Free result
2139         SQL_FREERESULT($result);
2140 }
2141
2142 // [EOF]
2143 ?>