a233f5b7ebdf196ec193c83718d59b5f4fdd7ccd
[mailer.git] / inc / mysql-manager.php
1 <?php
2 /************************************************************************
3  * MXChange v0.2.1                                    Start: 08/26/2003 *
4  * ===============                              Last change: 11/29/2004 *
5  *                                                                      *
6  * -------------------------------------------------------------------- *
7  * File              : mysql-manager.php                                *
8  * -------------------------------------------------------------------- *
9  * Short description : All MySQL-related functions                      *
10  * -------------------------------------------------------------------- *
11  * Kurzbeschreibung  : Alle MySQL-Relevanten Funktionen                 *
12  * -------------------------------------------------------------------- *
13  *                                                                      *
14  * -------------------------------------------------------------------- *
15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
16  * For more information visit: http://www.mxchange.org                  *
17  *                                                                      *
18  * This program is free software; you can redistribute it and/or modify *
19  * it under the terms of the GNU General Public License as published by *
20  * the Free Software Foundation; either version 2 of the License, or    *
21  * (at your option) any later version.                                  *
22  *                                                                      *
23  * This program is distributed in the hope that it will be useful,      *
24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
26  * GNU General Public License for more details.                         *
27  *                                                                      *
28  * You should have received a copy of the GNU General Public License    *
29  * along with this program; if not, write to the Free Software          *
30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
31  * MA  02110-1301  USA                                                  *
32  ************************************************************************/
33
34 // Some security stuff...
35 if (!defined('__SECURITY')) {
36         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
37         require($INC);
38 }
39
40 // Returns the title for given module
41 function ADD_MODULE_TITLE ($mod) {
42         global $cacheArray;
43
44         // Init variables
45         $name = "";
46         $result = false;
47
48         // Is the script installed?
49         if (isBooleanConstantAndTrue('mxchange_installed')) {
50                 // Check if cache is valid
51                 if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) {
52                         // Load from cache
53                         $name = $cacheArray['modules']['title'][$mod];
54
55                         // Update cache hits
56                         incrementConfigEntry('cache_hits');
57                 } elseif (!EXT_IS_ACTIVE("cache")) {
58                         // Load from database
59                         $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE module='%s' LIMIT 1", array($mod), __FILE__, __LINE__);
60                         list($name) = SQL_FETCHROW($result);
61                         SQL_FREERESULT($result);
62                 }
63         } // END - if
64
65         // Trim name
66         $name = trim($name);
67
68         // Still no luck or empty title?
69         if (empty($name)) {
70                 // No name found
71                 $name = sprintf("%s (%s)", getMessage('LANG_UNKNOWN_MODULE'), $mod);
72                 if (SQL_NUMROWS($result) == 0) {
73                         // Add module to database
74                         $dummy = CHECK_MODULE($mod);
75                 } // END - if
76         } // END - if
77
78         // Return name
79         return $name;
80 }
81
82 // Check validity of a given module name (no file extension)
83 function CHECK_MODULE ($mod) {
84         // We need them now here...
85         global $cacheArray, $cacheInstance;
86
87         // Filter module name (names with low chars and underlines are fine!)
88         $mod = preg_replace("/[^a-z_]/", "", $mod);
89
90         // Check for prefix is a extension...
91         $modSplit = explode("_", $mod);
92         $extension = ""; $mod_chk = $mod;
93         //* DEBUG: */ echo __LINE__."*".count($modSplit)."*/".$mod."*<br />";
94         if (count($modSplit) == 2) {
95                 // Okay, there is a seperator (_) in the name so is the first part a module?
96                 //* DEBUG: */ echo __LINE__."*".$modSplit[0]."*<br />";
97                 if (EXT_IS_ACTIVE($modSplit[0])) {
98                         // The prefix is an extension's name, so let's set it
99                         $extension = $modSplit[0]; $mod = $modSplit[1];
100                 }
101         }
102
103         // Major error in module registry is the default
104         $ret = "major";
105
106         // Check if script is installed if not return a "done" to prevent some errors
107         if ((!isBooleanConstantAndTrue('mxchange_installed')) || (isBooleanConstantAndTrue('mxchange_installing')) || (!isBooleanConstantAndTrue('admin_registered'))) return "done";
108
109         // Check if cache is latest version
110         $locked = "Y"; $hidden = "N"; $admin = "N"; $mem = "N"; $found = false;
111         if (GET_EXT_VERSION("cache") >= "0.1.2") {
112                 // Is the module cached?
113                 if (isset($cacheArray['modules']['locked'][$mod_chk])) {
114                         // Check cache
115                         $locked = $cacheArray['modules']['locked'][$mod_chk];
116                         $hidden = $cacheArray['modules']['hidden'][$mod_chk];
117                         $admin  = $cacheArray['modules']['admin_only'][$mod_chk];
118                         $mem    = $cacheArray['modules']['mem_only'][$mod_chk];
119
120                         // Update cache hits
121                         incrementConfigEntry('cache_hits');
122                         $found = true;
123                 } else {
124                         // No, then we have to update it!
125                         $ret = "cache_miss";
126                 }
127         } elseif (!EXT_IS_ACTIVE("cache")) {
128                 // Check for module in database
129                 $result = SQL_QUERY_ESC("SELECT locked, hidden, admin_only, mem_only FROM `{!_MYSQL_PREFIX!}_mod_reg` WHERE module='%s' LIMIT 1", array($mod_chk), __FILE__, __LINE__);
130                 if (SQL_NUMROWS($result) == 1) {
131                         // Read data
132                         list($locked, $hidden, $admin, $mem) = SQL_FETCHROW($result);
133                         SQL_FREERESULT($result);
134                         $found = true;
135                 }
136         }
137
138         // Is the module found?
139         if ($found === true) {
140                 // Check returned values against current access permissions
141                 //
142                 //  Admin access            ----- Guest access -----           --- Guest   or   member? ---
143                 if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_MEMBER())))) {
144                         // If you are admin you are welcome for everything!
145                         $ret = "done";
146                 } elseif ($locked == "Y") {
147                         // Module is locked
148                         $ret = "locked";
149                 } elseif (($mem == "Y") && (!IS_MEMBER())) {
150                         // You have to login first!
151                         $ret = "mem_only";
152                 } elseif (($admin == "Y") && (!IS_ADMIN())) {
153                         // Only the Admin is allowed to enter this module!
154                         $ret = "admin_only";
155                 }
156         } // END - if
157
158         // Still no luck or not found?
159         if (($ret == "cache_miss") || (!$found)) {
160                 //              ----- Legacy module -----                                   ---- Module in base folder  ----                       --- Module with extension's name ---
161                 if ((FILE_READABLE(sprintf("%sinc/modules/%s.php", constant('PATH'), $mod))) || (FILE_READABLE(sprintf("%s%s.php", constant('PATH'), $mod))) || (FILE_READABLE(sprintf("%s%s/%s.php", constant('PATH'), $extension, $mod)))) {
162                         // Data is missing so we add it
163                         if (GET_EXT_VERSION("sql_patches") >= "0.3.6") {
164                                 // Since 0.3.6 we have a has_menu column, this took me a half hour
165                                 // to find a loop here... *sigh*
166                                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
167 (module, locked, hidden, mem_only, admin_only, has_menu) VALUES
168 ('%s','Y','N','N','N','N')", array($mod_chk), __FILE__, __LINE__);
169                         } else {
170                                 // Wrong/missing sql_patches!
171                                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_mod_reg`
172 (module, locked, hidden, mem_only, admin_only) VALUES
173 ('%s','Y','N','N','N')", array($mod_chk), __FILE__, __LINE__);
174                         }
175
176                         // Everthing is fine?
177                         if (SQL_AFFECTEDROWS() < 1) {
178                                 // Something bad happend!
179                                 return "major";
180                         } // END - if
181
182                         // Destroy cache here
183                         REBUILD_CACHE("mod_reg", "modreg");
184
185                         // And reload data
186                         $ret = CHECK_MODULE($mod_chk);
187                 } else {
188                         // Module not found we don't add it to the database
189                         $ret = "404";
190                 }
191         } elseif (!$found) {
192                 // Problem with module detected
193                 DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Problem in module %s detected. ret=%s, locked=%s, hidden=%s, mem=%s, admin=%s",
194                         $mod,
195                         $ret,
196                         $locked,
197                         $hidden,
198                         $mem,
199                         $admin
200                 ));
201         }
202
203         // Return the value
204         return $ret;
205 }
206
207 // Add menu description pending on given file name (without path!)
208 function ADD_DESCR ($ACC_LVL, $file, $return = false, $output = true) {
209         global $NAV_DEPTH;
210
211         // Use only filename of the file ;)
212         $file = basename($file);
213
214         // Init variables
215         $LINK_ADD = ""; $OUT = ""; $AND = "";
216
217         // First we have to do some analysis...
218         if (substr($file, 0, 7) == "action-") {
219                 // This is an action file!
220                 $type = "action";
221                 $search = substr($file, 7);
222                 switch ($ACC_LVL)
223                 {
224                 case "admin":
225                         $modCheck = "admin";
226                         break;
227
228                 case "sponsor":
229                 case "guest":
230                 case "member":
231                         $modCheck = $GLOBALS['module'];
232                         break;
233                 }
234                 $AND = " AND (what='' OR `what` IS NULL)";
235         } elseif (substr($file, 0, 5) == "what-") {
236                 // This is an admin what file!
237                 $type = "what";
238                 $search = substr($file, 5);
239                 $AND = "";
240                 switch ($ACC_LVL)
241                 {
242                 case "admin":
243                         $modCheck = "admin";
244                         break;
245
246                 case "guest":
247                 case "member":
248                         $modCheck = $GLOBALS['module'];
249                         if (!IS_ADMIN()) {
250                                 $AND = " AND `visible`='Y' AND `locked`='N'";
251                         }
252                         break;
253                 }
254                 $dummy = substr($search, 0, -4);
255                 $AND .= " AND action='".GET_ACTION($ACC_LVL, $dummy)."'";
256         } elseif (($ACC_LVL == "sponsor") || ($ACC_LVL == "engine")) {
257                 // Sponsor / engine menu
258                 $type = "what";
259                 $search = $file;
260                 $modCheck = $GLOBALS['module'];
261                 $AND = "";
262         } else {
263                 // Other
264                 $type = "menu";
265                 $search = $file;
266                 $modCheck = $GLOBALS['module'];
267                 $AND = "";
268         }
269         if ((!isset($NAV_DEPTH)) && (!$return)) {
270                 $NAV_DEPTH = 0;
271                 $prefix = "<div class=\"you_are_here\">{--YOU_ARE_HERE--}&nbsp;<strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=".$GLOBALS['module'].$LINK_ADD."\">Home</a></strong>";
272         } else {
273                 if (!$return) $NAV_DEPTH++;
274                 $prefix = "";
275         }
276
277         $prefix .= "&nbsp;-&gt;&nbsp;";
278
279         // We need to remove .php and the end
280         if (substr($search, -4, 4) == ".php") {
281                 // Remove the .php
282                 $search = substr($search, 0, -4);
283         } // END - i
284
285         // Get the title from menu
286         $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' ".$AND." LIMIT 1",
287                 array($ACC_LVL, $type, $search), __FILE__, __LINE__);
288
289         // Menu found?
290         if (SQL_NUMROWS($result) == 1) {
291                 // Load title
292                 list($ret) = SQL_FETCHROW($result);
293
294                 // Shall we return it?
295                 if ($return) {
296                         // Return title
297                         return $ret;
298                 } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && (getConfig('youre_here') == "Y")) || ((IS_ADMIN()) && ($modCheck == "admin"))) {
299                         // Output HTML code
300                         $OUT = $prefix."<strong><a class=\"you_are_here\" href=\"{!URL!}/modules.php?module=".$modCheck."&amp;".$type."=".$search.$LINK_ADD."\">".$ret."</a></strong>\n";
301
302                         // Can we close the you-are-here navigation?
303                         //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*<br />\n";
304                         if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) {
305                                 //* DEBUG: */ echo __LINE__."+".$type."+<br />\n";
306                                 // Add closing div and br-tag
307                                 $OUT .= "</div><br />\n";
308                                 $NAV_DEPTH = "0";
309
310                                 // Run the filter chain
311                                 $ret = RUN_FILTER('post_youhere_line', array('access_level' => $ACC_LVL, 'type' => $type, 'content' => ""));
312                                 $OUT .= $ret['content'];
313                         } // END - if
314                 }
315         } // END - if
316
317         // Free result
318         SQL_FREERESULT($result);
319
320         // Return or output HTML code?
321         if ($output) {
322                 // Output HTML code here
323                 OUTPUT_HTML($OUT);
324         } else {
325                 // Return HTML code
326                 return $OUT;
327         }
328 }
329
330 //
331 function ADD_MENU ($MODE, $act, $wht) {
332         // Init some variables
333         $main_cnt = 0;
334         $AND = "";
335         $main_action = "";
336         $sub_what = "";
337
338         if (!VALIDATE_MENU_ACTION($MODE, $act, $wht, true)) return getMessage('CODE_MENU_NOT_VALID');
339
340         // Non-admin shall not see all menus
341         if (!IS_ADMIN()) {
342                 $AND = " AND `visible`='Y' AND `locked`='N'";
343         }
344
345         // Load SQL data and add the menu to the output stream...
346         $result_main = SQL_QUERY_ESC("SELECT title, action FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE (what='' OR `what` IS NULL)".$AND." ORDER BY `sort`",
347                 array($MODE), __FILE__, __LINE__);
348         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
349         if (SQL_NUMROWS($result_main) > 0) {
350                 OUTPUT_HTML("<table border=\"0\" cellspacing=\"0\" cellpadding=\"0\" class=\"".$MODE."_menu\">");
351                 // There are menus available, so we simply display them... :)
352                 while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) {
353                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
354                         // Init variables
355                         $BLOCK_MODE = false; $act = $main_action;
356
357                         // Prepare content
358                         $content = array(
359                                 'action' => $main_action,
360                                 'title'  => $main_title
361                         );
362
363                         // Load menu header template
364                         LOAD_TEMPLATE($MODE."_menu_title", false, $content);
365
366                         $result_sub = SQL_QUERY_ESC("SELECT title, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE action='%s' AND `what` != '' AND `what` IS NOT NULL ".$AND." ORDER BY `sort`",
367                          array($MODE, $main_action), __FILE__, __LINE__);
368                         $ctl = SQL_NUMROWS($result_sub);
369                         if ($ctl > 0) {
370                                 $cnt=0;
371                                 while (list($sub_title, $sub_what) = SQL_FETCHROW($result_sub)) {
372                                         // Init content
373                                         $content = "";
374
375                                         // Full file name for checking menu
376                                         //* DEBUG: */ echo __LINE__.":!!!!".$sub_what."!!!<br />\n";
377                                         $FQFN = sprintf("%sinc/modules/%s/what-%s.php", constant('PATH'), $MODE, $sub_what);
378                                         if (FILE_READABLE($FQFN)) {
379                                                 if ((!empty($wht)) && (($wht == $sub_what))) {
380                                                         $content = "<strong>";
381                                                 }
382
383                                                 // Navigation link
384                                                 $content .= "<a name=\"menu\" class=\"menu_blur\" href=\"{!URL!}/modules.php?module=".$GLOBALS['module']."&amp;what=".$sub_what.ADD_URL_DATA("")."\" target=\"_self\">";
385                                         } else {
386                                                 $content .= "<em>";
387                                         }
388
389                                         // Menu title
390                                         $content .= getConfig('menu_blur_spacer') . $sub_title;
391
392                                         if (FILE_READABLE($FQFN)) {
393                                                 $content .= "</a>";
394                                         } else {
395                                                 $content .= "</em>";
396                                         }
397
398                                         if ((!empty($wht)) && (($wht == $sub_what))) {
399                                                 $content .= "</strong>";
400                                         }
401                                         $wht = $sub_what; $cnt++;
402                                         // Prepare array
403                                         $content =  array(
404                                                 'menu' => $content,
405                                                 'what' => $sub_what
406                                         );
407
408                                         // Add regular menu row or bottom row?
409                                         if ($cnt < $ctl) {
410                                                 LOAD_TEMPLATE($MODE."_menu_row", false, $content);
411                                         } else {
412                                                 LOAD_TEMPLATE($MODE."_menu_bottom", false, $content);
413                                         }
414                                 }
415                         } else {
416                                 // This is a menu block... ;-)
417                                 $BLOCK_MODE = true;
418                                 $INC_BLOCK = sprintf("inc/modules/%s/action-%s.php", $MODE, $main_action);
419                                 if (FILE_READABLE($INC_BLOCK)) {
420                                         // Load include file
421                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("<tr>
422
423   <td class=\"".$MODE."_menu_whats\">");
424                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
425                                         LOAD_INC($INC_BLOCK);
426                                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
427                                         if ((!EXT_IS_ACTIVE($main_action)) || ($main_action == "online")) OUTPUT_HTML("  </td>
428 </tr>");
429                                 }
430                                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
431                         }
432                         $main_cnt++;
433                         //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
434                         if (SQL_NUMROWS($result_main) > $main_cnt)      OUTPUT_HTML("<tr><td class=\"".$MODE."_menu_seperator\"></td></tr>");
435                 }
436
437                 // Free memory
438                 SQL_FREERESULT($result_main);
439
440                 // Close table
441                 //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*<br />\n";
442                 OUTPUT_HTML("</table>");
443         }
444 }
445
446 // This patched function will reduce many SELECT queries for the specified or current admin login
447 function IS_ADMIN ($admin="") {
448         global $cacheArray;
449
450         // Init variables
451         $ret = false; $passCookie = ""; $valPass = "";
452         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."<br />";
453
454         // If admin login is not given take current from cookies...
455         if ((empty($admin)) && (isSessionVariableSet('admin_login')) && (isSessionVariableSet('admin_md5'))) {
456                 // Get admin login and password from session/cookies
457                 $admin = get_session('admin_login');
458                 $passCookie = get_session('admin_md5');
459         }
460         //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."<br />";
461
462         // Search in array for entry
463         if (isset($cacheArray['admin_hash'])) {
464                 // Use cached string
465                 $valPass = $cacheArray['admin_hash'];
466         } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) {
467                 // Login data is valid or not?
468                 $valPass = generatePassString($cacheArray['admins']['password'][$admin]);
469
470                 // Cache it away
471                 $cacheArray['admin_hash'] = $valPass;
472
473                 // Count cache hits
474                 incrementConfigEntry('cache_hits');
475         } elseif ((!empty($admin)) && ((!EXT_IS_ACTIVE("cache"))) || (!isset($cacheArray['admins']['password'][$admin]))) {
476                 // Search for admin
477                 $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
478                         array($admin), __FILE__, __LINE__);
479
480                 // Is he admin?
481                 $passDB = "";
482                 if (SQL_NUMROWS($result) == 1) {
483                         // Admin login was found so let's load password from DB
484                         list($passDB) = SQL_FETCHROW($result);
485
486                         // Temporary cache it
487                         $cacheArray['admins']['password'][$admin] = $passDB;
488
489                         // Generate password hash
490                         $valPass = generatePassString($passDB);
491                 } // END - if
492
493                 // Free memory
494                 SQL_FREERESULT($result);
495         }
496
497         if (!empty($valPass)) {
498                 // Check if password is valid
499                 //* DEBUG: */ print __FUNCTION__."*".$valPass."/".$passCookie."*<br />\n";
500                 $ret = (($valPass == $passCookie) || ((strlen($valPass) == 32) && ($valPass == md5($passCookie))) || (($valPass == "*FAILED*") && (!EXT_IS_ACTIVE("cache"))));
501         }
502
503         // Return result of comparision
504         //* DEBUG: */ if (!$ret) echo __LINE__."OK!<br />";
505         return $ret;
506 }
507
508 // Generates a list of "max receiveable emails per day"
509 function ADD_MAX_RECEIVE_LIST ($MODE, $default = "", $return = false) {
510         global $_POST;
511         $OUT = "";
512         switch ($MODE) {
513         case "guest":
514                 // Guests (in the registration form) are not allowed to select 0 mails per day.
515                 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` WHERE value > 0 ORDER BY value", __FILE__, __LINE__);
516                 if (SQL_NUMROWS($result) > 0) {
517                         $OUT = "";
518                         while (list($value, $comment) = SQL_FETCHROW($result)) {
519                                 $OUT .= "      <option value=\"".$value."\"";
520                                 if ($_POST['max_mails'] == $value) $OUT .= " selected=\"selected\"";
521                                 $OUT .= ">".$value." ".PER_DAY;
522                                 if (!empty($comment)) $OUT .= " (".$comment.")";
523                                 $OUT .= "</option>\n";
524                         }
525                         define('__MAX_RECEIVE_OPTIONS', $OUT);
526
527                         // Free memory
528                         SQL_FREERESULT($result);
529                         $OUT = LOAD_TEMPLATE("guest_receive_table", true);
530                 } else {
531                         // Maybe the admin has to setup some maximum values?
532                         debug_report_bug("Nothing is being done here?");
533                 }
534                 break;
535
536         case "member":
537                 // Members are allowed to set to zero mails per day (we will change this soon!)
538                 $result = SQL_QUERY("SELECT value, comment FROM `{!_MYSQL_PREFIX!}_max_receive` ORDER BY value", __FILE__, __LINE__);
539                 if (SQL_NUMROWS($result) > 0) {
540                         $OUT = "";
541                         while (list($value, $comment) = SQL_FETCHROW($result)) {
542                                 $OUT .= "      <option value=\"".$value."\"";
543                                 if ($default == $value) $OUT .= " selected=\"selected\"";
544                                 $OUT .= ">".$value." ".PER_DAY;
545                                 if (!empty($comment)) $OUT .= " (".$comment.")";
546                                 $OUT .= "</option>\n";
547                         }
548                         define('__MAX_RECEIVE_OPTIONS', $OUT);
549                         SQL_FREERESULT($result);
550                         $OUT = LOAD_TEMPLATE("member_receive_table", true);
551                 } else {
552                         // Maybe the admin has to setup some maximum values?
553                         $OUT = LOAD_TEMPLATE("admin_settings_saved", true, NO_MAX_VALUES);
554                 }
555                 break;
556         }
557
558         if ($return) {
559                 // Return generated HTML code
560                 return $OUT;
561         } else {
562                 // Output directly (default)
563                 OUTPUT_HTML($OUT);
564         }
565 }
566
567 // Checks wether the given email address is used.
568 function SEARCH_EMAIL_USERTAB ($email) {
569         // Query the database
570         $result = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE email LIKE '{PER}%s{PER}' LIMIT 1",
571                 array($email), __FILE__, __LINE__);
572
573         // Is the email there?
574         $ret = (SQL_NUMROWS($result) == 1);
575
576         // Free the result
577         SQL_FREERESULT($result);
578
579         // Return result
580         return $ret;
581 }
582
583 // Checks wether 'what' is valid
584 // @TODO This cache can be flushed to hard drive
585 function WHAT_IS_VALID ($act, $wht, $type="guest") {
586         global $cacheArray;
587
588         // Is admin or cache entry is there?
589         if (IS_ADMIN()) {
590                 // Everything is valid to the admin :-)
591                 $ret = true;
592         } elseif (isset($cacheArray['what_valid'][$type][$act][$what])) {
593                 // Use the cache
594                 $ret = $cacheArray['what_valid'][$type][$act][$what];
595
596                 // Count the cache hit
597                 incrementConfigEntry('cache_hits');
598         } else {
599                 // By default is nothing valid
600                 $ret = false;
601
602                 // Look in database
603                 $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE action='%s' AND what='%s' AND `locked`='N' LIMIT 1", array($type, $act, $wht), __FILE__, __LINE__);
604
605                 // Is "what" valid?
606                 $ret = (SQL_NUMROWS($result) == 1);
607
608                 // Free the result
609                 SQL_FREERESULT($result);
610         }
611
612         // Cache the entry
613         $cacheArray['what_valid'][$type][$act][$what] = $ret;
614
615         // Return the result
616         return $ret;
617 }
618
619 // Checks wether the current user is a member
620 function IS_MEMBER () {
621         global $status, $LAST, $cacheArray;
622         if (!is_array($LAST)) $LAST = array();
623         $ret = false;
624
625         // is the cache entry there?
626         if (isset($cacheArray['is_member'])) {
627                 // Then return it
628                 return $cacheArray['is_member'];
629         } // END - if
630
631         // Fix "deleted" cookies first
632         FIX_DELETED_COOKIES(array('userid', 'u_hash'));
633
634         // Are cookies set?
635         if ((!empty($GLOBALS['userid'])) && (isSessionVariableSet('u_hash'))) {
636                 // Cookies are set with values, but are they valid?
637                 $result = SQL_QUERY_ESC("SELECT password, status, last_module, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
638                         array($GLOBALS['userid']), __FILE__, __LINE__);
639                 if (SQL_NUMROWS($result) == 1) {
640                         // Load data from cookies
641                         list($password, $status, $mod, $onl) = SQL_FETCHROW($result);
642
643                         // Validate password by created the difference of it and the secret key
644                         $valPass = generatePassString($password);
645
646                         // Transfer last module and online time
647                         if ((!empty($mod)) && (empty($LAST['module']))) {
648                                 $LAST['module'] = $mod;
649                                 $LAST['online'] = $onl;
650                         } // END - if
651
652                         // So did we now have valid data and an unlocked user?
653                         //* DEBUG: */ echo $valPass."<br />".get_session('u_hash')."<br />";
654                         if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) {
655                                 // Account is confirmed and all cookie data is valid so he is definely logged in! :-)
656                                 $ret = true;
657                         } else {
658                                 // Maybe got locked etc.
659                                 //* DEBUG: */ echo __LINE__."!!!<br />";
660                                 destroy_user_session();
661                         }
662                 } else {
663                         // Cookie data is invalid!
664                         //* DEBUG: */ echo __LINE__."***<br />";
665                         destroy_user_session();
666                 }
667
668                 // Free memory
669                 SQL_FREERESULT($result);
670         } else {
671                 // Cookie data is invalid!
672                 //* DEBUG: */ echo __LINE__."///<br />";
673                 destroy_user_session();
674         }
675
676         // Cache status
677         $cacheArray['is_member'] = $ret;
678
679         // Return status
680         return $ret;
681 }
682
683 // Validate the given menu action
684 function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false) {
685         // By default nothing is valid
686         $ret = false;
687
688         // Look in all menus or only unlocked
689         $ADD = "";
690         if ((!IS_ADMIN()) && ($MODE != "admin")) $ADD = " AND `locked`='N'";
691
692         //* DEBUG: */ echo __LINE__.":".$MODE."/".$act."/".$wht."*<br />\n";
693         if (($MODE != "admin") && ($UPDATE)) {
694                 // Update guest or member menu
695                 $SQL = SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_%s_menu` SET counter=counter+1 WHERE action='%s' AND what='%s'".$ADD." LIMIT 1",
696                         array($MODE, $act, $wht), __FILE__, __LINE__, false);
697         } elseif ($wht != "overview") {
698                 // Other actions
699                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE action='%s'".$ADD." ORDER BY action DESC LIMIT 1",
700                         array($MODE, $act), __FILE__, __LINE__, false);
701         } else {
702                 // Admin login overview
703                 $SQL = SQL_QUERY_ESC("SELECT id, what FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE action='%s' AND (what='' OR `what` IS NULL)".$ADD." ORDER BY action DESC LIMIT 1",
704                         array($MODE, $act), __FILE__, __LINE__, false);
705         }
706
707         // Run SQL command
708         $result = SQL_QUERY($SQL, __FILE__, __LINE__);
709         if ($UPDATE) {
710                 // Check updated/affected rows
711                 $ret = (SQL_AFFECTEDROWS() == 1);
712         } else {
713                 // Check found rows
714                 $ret = (SQL_NUMROWS($result) == 1);
715         }
716
717         // Free memory
718         SQL_FREERESULT($result);
719
720         // Return result
721         return $ret;
722 }
723 //
724 function GET_MOD_DESCR($MODE, $wht, $column="what")
725 {
726         // Fix empty "what"
727         if (empty($wht)) {
728                 $wht = "welcome";
729                 if (getConfig('index_home') != "") $wht = getConfig('index_home');
730         } // END - if
731
732         // Default is not found
733         $ret = "??? (".$wht.")";
734
735         // Look for title
736         $result = SQL_QUERY_ESC("SELECT title FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE %s='%s' LIMIT 1",
737                 array($MODE, $column, $wht), __FILE__, __LINE__);
738
739         // Is there an entry?
740         if (SQL_NUMROWS($result) == 1) {
741                 // Fetch the title
742                 list($ret) = SQL_FETCHROW($result);
743         } // END - if
744
745         // Free result
746         SQL_FREERESULT($result);
747         return $ret;
748 }
749 //
750 function SEND_MODE_MAILS($mod, $modes) {
751         global $DATA;
752
753         // Load hash
754         $result_main = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
755                 array($GLOBALS['userid']), __FILE__, __LINE__);
756         if (SQL_NUMROWS($result_main) == 1) {
757                 // Load hash from database
758                 list($hashDB) = SQL_FETCHROW($result_main);
759
760                 // Extract salt from cookie
761                 $salt = substr(get_session('u_hash'), 0, -40);
762
763                 // Now let's compare passwords
764                 $hash = generatePassString($hashDB);
765                 if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) {
766                         // Load user's data
767                         $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND password='%s' LIMIT 1",
768                                 array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__);
769                         if (SQL_NUMROWS($result) == 1) {
770                                 // Load the data
771                                 $DATA = SQL_FETCHROW($result);
772
773                                 // Free result
774                                 SQL_FREERESULT($result);
775
776                                 // Translate gender
777                                 $DATA[0] = TRANSLATE_GENDER($DATA[0]);
778
779                                 // Clear/init the content variable
780                                 $content = "";
781                                 $DATA['info'] = "";
782
783                                 switch ($mod)
784                                 {
785                                 case "mydata":
786                                         foreach ($modes as $mode) {
787                                                 switch ($mode)
788                                                 {
789                                                 case "normal": break; // Do not add any special lines
790
791                                                 case "email": // Email was changed!
792                                                         $content = MEMBER_CHANGED_EMAIL.": ".$_POST['old_addy']."\n";
793                                                         break;
794
795                                                 case "pass": // Password was changed
796                                                         $content = MEMBER_CHANGED_PASS."\n";
797                                                         break;
798
799                                                 default:
800                                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unknown mode %s detected.", $mode));
801                                                         $content = MEMBER_UNKNOWN_MODE.": ".$mode."\n\n";
802                                                         break;
803                                                 } // END - switch
804                                         } // END - if
805
806                                         if (EXT_IS_ACTIVE("country")) {
807                                                 // Replace code with description
808                                                 $DATA[4] = COUNTRY_GENERATE_INFO($_POST['country_code']);
809                                         } // END - if
810
811                                         // Load template
812                                         $msg = LOAD_EMAIL_TEMPLATE("member_mydata_notify", $content, $GLOBALS['userid']);
813
814                                         if (getConfig('admin_notify') == "Y") {
815                                                 // The admin needs to be notified about a profile change
816                                                 $msg_admin = "admin_mydata_notify";
817                                                 $sub_adm   = ADMIN_CHANGED_DATA;
818                                         } else {
819                                                 // No mail to admin
820                                                 $msg_admin = "";
821                                                 $sub_adm   = "";
822                                         }
823
824                                         // Set subject lines
825                                         $sub_mem = MEMBER_CHANGED_DATA;
826
827                                         // Output success message
828                                         $content = "<span class=\"member_done\">".MYDATA_MAIL_SENT."</span>";
829                                         break;
830
831                                 default:
832                                         DEBUG_LOG(__FUNCTION__, __LINE__, sprintf("Unsupported module %s detected.", $mod));
833                                         $content = "<span class=\"member_failed\">".UNKNOWN_MODULE."</span>";
834                                         break;
835                                 } // END - switch
836                         } else {
837                                 // Could not load profile data
838                                 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
839                         }
840                 } else {
841                         // Passwords mismatch
842                         $content = "<span class=\"member_failed\">{--MEMBER_PASSWORD_ERROR--}</span>";
843                 }
844         } else {
845                 // Could not load profile
846                 $content = "<span class=\"member_failed\">{--MEMBER_CANNOT_LOAD_PROFILE--}</span>";
847         }
848
849         // Send email to user if required
850         if ((!empty($sub_mem)) && (!empty($msg))) {
851                 // Send member mail
852                 SEND_EMAIL($DATA[7], $sub_mem, $msg);
853         } // END - if
854
855         // Send only if no other error has occured
856         if (empty($content)) {
857                 if ((!empty($sub_adm)) && (!empty($msg_admin))) {
858                         // Send admin mail
859                         SEND_ADMIN_NOTIFICATION($sub_adm, $msg_admin, $content, $GLOBALS['userid']);
860                 } elseif (getConfig('admin_notify') == "Y") {
861                         // Cannot send mails to admin!
862                         $content = getMessage('CANNOT_SEND_ADMIN_MAILS');
863                 } else {
864                         // No mail to admin
865                         $content = "<span class=\"member_done\">{--MYDATA_MAIL_SENT--}</span>";
866                 }
867         } // END - if
868
869         // Load template
870         LOAD_TEMPLATE("admin_settings_saved", false, $content);
871 }
872 // Update module counter
873 function COUNT_MODULE($mod) {
874         if ($mod != "css") {
875                 // Do count all other modules but not accesses on CSS file css.php!
876                 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET clicks=clicks+1 WHERE module='%s' LIMIT 1",
877                         array($mod), __FILE__, __LINE__);
878         } // END - if
879 }
880 // Get action value from mode (admin/guest/member) and what-value
881 function GET_ACTION ($MODE, &$wht) {
882         global $ret;
883
884         // @DEPRECATED Init status
885         $ret = "";
886
887         //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=<br />";
888         if ((empty($wht)) && ($MODE != "admin")) {
889                 $wht = "welcome";
890                 if (getConfig('index_home') != "") $wht = getConfig('index_home');
891         } // END - if
892
893         if ($MODE == "admin") {
894                 // Action value for admin area
895                 if (!empty($GLOBALS['action'])) {
896                         // Get it directly from URL
897                         return $GLOBALS['action'];
898                 } elseif (($wht == "overview") || (empty($GLOBALS['what']))) {
899                         // Default value for admin area
900                         $ret = "login";
901                 }
902         } elseif (!empty($GLOBALS['action'])) {
903                 // Get it directly from URL
904                 return $GLOBALS['action'];
905         }
906         //* DEBUG: */ echo __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ret=".$ret."<br />\n";
907
908         // Does the module have a menu?
909         if (MODULE_HAS_MENU($MODE)) {
910                 // Rewriting modules to menu
911                 switch ($MODE) {
912                         case "index": $MODE = "guest";  break;
913                         case "login": $MODE = "member"; break;
914                 } // END - switch
915
916                 // Guest and member menu is "main" as the default
917                 if (empty($ret)) $ret = "main";
918
919                 // Load from database
920                 $result = SQL_QUERY_ESC("SELECT action FROM `{!_MYSQL_PREFIX!}_%s_menu` WHERE what='%s' LIMIT 1",
921                         array($MODE, $wht), __FILE__, __LINE__);
922                 if (SQL_NUMROWS($result) == 1) {
923                         // Load action value and pray that this one is the right you want... ;-)
924                         list($ret) = SQL_FETCHROW($result);
925                 } // END - if
926
927                 // Free memory
928                 SQL_FREERESULT($result);
929         } elseif ((GET_EXT_VERSION("sql_patches") == "") && ($MODE != "admin")) {
930                 // No sql_patches installed!
931                 LOAD_URL("admin.php");
932         }
933
934         // Return action value
935         return $ret;
936 }
937
938 // Get category name back
939 function GET_CATEGORY ($cid) {
940         // Default is not found
941         $ret = _CATEGORY_404;
942
943         // Is the category id set?
944         if ($cid == "0") {
945                 // No category
946                 $ret = _CATEGORY_NONE;
947         } elseif ($cid > 0) {
948                 // Lookup the category in database
949                 $result = SQL_QUERY_ESC("SELECT cat FROM `{!_MYSQL_PREFIX!}_cats` WHERE id=%s LIMIT 1",
950                         array(bigintval($cid)), __FILE__, __LINE__);
951                 if (SQL_NUMROWS($result) == 1) {
952                         // Category found... :-)
953                         list($ret) = SQL_FETCHROW($result);
954                 } // END - if
955
956                 // Free result
957                 SQL_FREERESULT($result);
958         } // END - if
959
960         // Return result
961         return $ret;
962 }
963
964 // Get a string of "mail title" and price back
965 function GET_PAYMENT ($pid, $full=false) {
966         // Default is not found
967         $ret = _PAYMENT_404;
968
969         // Load payment data
970         $result = SQL_QUERY_ESC("SELECT mail_title, price FROM `{!_MYSQL_PREFIX!}_payments` WHERE id=%s LIMIT 1",
971                 array(bigintval($pid)), __FILE__, __LINE__);
972         if (SQL_NUMROWS($result) == 1) {
973                 // Payment type found... :-)
974                 if (!$full) {
975                         // Return only title
976                         list($ret) = SQL_FETCHROW($result);
977                 } else {
978                         // Return title and price
979                         list($t, $p) = SQL_FETCHROW($result);
980                         $ret = $t." / ".TRANSLATE_COMMA($p)." ".POINTS;
981                 }
982         }
983
984         // Free result
985         SQL_FREERESULT($result);
986
987         // Return result
988         return $ret;
989 }
990
991 // Get (basicly) the price of given payment id
992 function GET_PAY_POINTS($pid, $lookFor="price")
993 {
994         $ret = "-1";
995         $result = SQL_QUERY_ESC("SELECT %s FROM `{!_MYSQL_PREFIX!}_payments` WHERE id=%s LIMIT 1",
996                 array($lookFor, $pid), __FILE__, __LINE__);
997         if (SQL_NUMROWS($result) == 1)
998         {
999                 // Payment type found... :-)
1000                 list($ret) = SQL_FETCHROW($result);
1001                 SQL_FREERESULT($result);
1002         }
1003         return $ret;
1004 }
1005
1006 // Remove a receiver's ID from $ARRAY and add a link for him to confirm
1007 function REMOVE_RECEIVER (&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=false)
1008 {
1009         $ret = "failed";
1010         if ($uid > 0)
1011         {
1012                 // Remove entry from array
1013                 unset($ARRAY[$key]);
1014
1015                 // Is there already a line for this user available?
1016                 if ($stats_id > 0)
1017                 {
1018                         // Only when we got a real stats ID continue searching for the entry
1019                         $type = "NORMAL"; $rowName = "stats_id";
1020                         if ($bonus) { $type = "BONUS"; $rowName = "bonus_id"; }
1021                         $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_user_links` WHERE %s='%s' AND userid=%s AND link_type='%s' LIMIT 1",
1022                          array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1023                         if (SQL_NUMROWS($result) == 0)
1024                         {
1025                                 // No, so we add one!
1026                                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_links` (%s, userid, link_type) VALUES ('%s','%s','%s')",
1027                                  array($rowName, $stats_id, bigintval($uid), $type), __FILE__, __LINE__);
1028                                 $ret = "done";
1029                         }
1030                          else
1031                         {
1032                                 // Already found
1033                                 $ret = "already";
1034                         }
1035
1036                         // Free memory
1037                         SQL_FREERESULT($result);
1038                 }
1039         }
1040         // Return status for sending routine
1041         return $ret;
1042 }
1043
1044 // Calculate sum (default) or count records of given criteria
1045 function GET_TOTAL_DATA ($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false, $add="") {
1046         $ret = 0;
1047         //* DEBUG: */ echo $search."/".$tableName."/".$lookFor."/".$whereStatement."/".$add."<br />\n";
1048         if (($onlyRows) || ($lookFor == "userid")) {
1049                 // Count rows
1050                 //* DEBUG: */ echo "COUNT!<br />\n";
1051                 $result = SQL_QUERY_ESC("SELECT COUNT(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1052                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1053         } else {
1054                 // Add all rows
1055                 //* DEBUG: */ echo "SUM!<br />\n";
1056                 $result = SQL_QUERY_ESC("SELECT SUM(`%s`) FROM `{!_MYSQL_PREFIX!}_%s` WHERE `%s`='%s'".$add,
1057                         array($lookFor, $tableName, $whereStatement, $search), __FILE__, __LINE__);
1058         }
1059
1060         // Load row
1061         list($ret) = SQL_FETCHROW($result);
1062
1063         // Free result
1064         SQL_FREERESULT($result);
1065
1066         // Fix empty values
1067         if ((empty($ret)) && ($lookFor != "counter") && ($lookFor != "id") && ($lookFor != "userid")) {
1068                 // Float number
1069                 $ret = "0.00000";
1070         } elseif ("".$ret."" == "") {
1071                 // Fix empty result
1072                 $ret = "0";
1073         }
1074
1075         // Return value
1076         return $ret;
1077 }
1078 // "Getter fro ref level percents
1079 function GET_REF_LEVEL_PERCENTS ($level) {
1080         global $cacheInstance, $cacheArray;
1081
1082         // Default is zero
1083         $per = 0;
1084
1085         // Do we have cache?
1086         if ((isset($cacheArray['ref_depths']['level'])) && (EXT_IS_ACTIVE("cache"))) {
1087                 // First look for level
1088                 $key = array_search($level, $cacheArray['ref_depths']['level']);
1089                 if ($key !== false) {
1090                         // Entry found!
1091                         $per = $cacheArray['ref_depths']['percents'][$key];
1092
1093                         // Count cache hit
1094                         incrementConfigEntry('cache_hits');
1095                 }
1096         } elseif (!EXT_IS_ACTIVE("cache")) {
1097                 // Get referal data
1098                 $result_lvl = SQL_QUERY_ESC("SELECT percents FROM `{!_MYSQL_PREFIX!}_refdepths` WHERE level='%s' LIMIT 1",
1099                         array(bigintval($level)), __FILE__, __LINE__);
1100
1101                 // Entry found?
1102                 if (SQL_NUMROWS($result_lvl) == 1) {
1103                         // Get percents
1104                         list($per) = SQL_FETCHROW($result_lvl);
1105                 } // END - if
1106
1107                 // Free result
1108                 SQL_FREERESULT($result_lvl);
1109         }
1110
1111         // Return percent
1112         return $per;
1113 }
1114 /**
1115  *
1116  * Dynamic referal system, can also send mails!
1117  *
1118  * subject     = Subject line, write in lower-case letters and underscore is allowed
1119  * uid         = Referal ID wich should receive...
1120  * points      = ... xxx points
1121  * send_notify = shall I send the referal an email or not?
1122  * rid         = inc/modules/guest/what-confirm.php need this (DEPRECATED???)
1123  * locked      = Shall I pay it to normal (false) or locked (true) points ammount?
1124  * add_mode    = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct"
1125  *               for default value will cause no referal will get points ever!!!)
1126  */
1127 function ADD_POINTS_REFSYSTEM ($subject, $uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") {
1128         //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
1129         global $DATA, $cacheArray;
1130
1131         // Convert mode to lower-case
1132         $add_mode = strtolower($add_mode);
1133
1134         // When $uid = 0 add points to jackpot
1135         if ($uid == "0") {
1136                 // Add points to jackpot
1137                 ADD_JACKPOT($points);
1138                 return;
1139         } // END - if
1140
1141         // Add booking record if extension is installed
1142         if (EXT_IS_ACTIVE("booking")) {
1143                 // Add record
1144                 ADD_BOOKING_RECORD($subject, $uid, $points, "add");
1145         } // END - if
1146
1147         // Count up referal depth
1148         if (!isset($GLOBALS['ref_level'])) {
1149                 // Initialialize referal system
1150                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal system initialized!<br />\n";
1151                 $GLOBALS['ref_level'] = 0;
1152         } else {
1153                 // Increase referal level
1154                 $GLOBALS['ref_level']++;
1155                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): Referal level increased. DEPTH={$GLOBALS['ref_level']}<br />\n";
1156         }
1157
1158         // Default is "normal" points
1159         $data = "points";
1160
1161         // Which points, locked or normal?
1162         if ($locked) $data = "locked_points";
1163
1164         // Check user account
1165         $result_user = SQL_QUERY_ESC("SELECT refid, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
1166                 array(bigintval($uid)), __FILE__, __LINE__);
1167
1168         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},numRows=".SQL_NUMROWS($result_user).",points={$points}<br />\n";
1169         if (SQL_NUMROWS($result_user) == 1) {
1170                 // This is the user and his ref
1171                 list($ref, $email) = SQL_FETCHROW($result_user);
1172                 $cacheArray['add_uid'][$ref] = $uid;
1173
1174                 // Get percents
1175                 $per = GET_REF_LEVEL_PERCENTS($GLOBALS['ref_level']);
1176                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},depth={$GLOBALS['ref_level']},per={$per},mode={$add_mode}<br />\n";
1177
1178                 // Some percents found?
1179                 if ($per > 0) {
1180                         // Calculate new points
1181                         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},points={$points},per={$per},depth={$GLOBALS['ref_level']}<br />\n";
1182                         $ref_points = $points * $per / 100;
1183
1184                         // Pay refback here if level > 0 and in ref-mode
1185                         if ((EXT_IS_ACTIVE("refback")) && ($GLOBALS['ref_level'] > 0) && ($per < 100) && ($add_mode == "ref") && (isset($cacheArray['add_uid'][$uid]))) {
1186                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - BEFORE!<br />\n";
1187                                 $ref_points = ADD_REFBACK_POINTS($cacheArray['add_uid'][$uid], $uid, $points, $ref_points);
1188                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},data={$cacheArray['add_uid'][$uid]},ref_points={$ref_points},depth={$GLOBALS['ref_level']} - AFTER!<br />\n";
1189                         } // END - if
1190
1191                         // Update points...
1192                         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_points` SET %s=%s+%s WHERE userid=%s AND ref_depth='%s' LIMIT 1",
1193                                 array($data, $data, $ref_points, bigintval($uid), bigintval($GLOBALS['ref_level'])), __FILE__, __LINE__);
1194                         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - UPDATE! (".SQL_AFFECTEDROWS().")<br />\n";
1195
1196                         // No entry updated?
1197                         if (SQL_AFFECTEDROWS() < 1) {
1198                                 // First ref in this level! :-)
1199                                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_points` (userid,ref_depth,%s) VALUES (%s,'%s',%s)",
1200                                         array($data, bigintval($uid), bigintval($GLOBALS['ref_level']), $ref_points), __FILE__, __LINE__);
1201                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):data={$data},ref_points={$ref_points},uid={$uid},depth={$GLOBALS['ref_level']},mode={$add_mode} - INSERTED! (".SQL_AFFECTEDROWS().")<br />\n";
1202                         } // END - if
1203
1204                         // Update mediadata as well
1205                         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1206                                 // Update database
1207                                 MEDIA_UPDATE_ENTRY(array("total_points"), "add", $ref_points);
1208                         } // END - if
1209
1210                         // Points updated, maybe I shall send him an email?
1211                         if (($send_notify) && ($ref > 0) && (!$locked)) {
1212                                 // Prepare content
1213                                 $content = array(
1214                                         'percent' => $per,
1215                                         'level'   => bigintval($GLOBALS['ref_level']),
1216                                         'points'  => $ref_points,
1217                                         'refid'   => bigintval($ref)
1218                                 );
1219
1220                                 // Load email template
1221                                 $msg = LOAD_EMAIL_TEMPLATE("confirm-referal", $content, bigintval($uid));
1222
1223                                 SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg);
1224                         } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) {
1225                                 // Direct payment shall be notified about
1226                                 define('__POINTS_VALUE', $ref_points);
1227
1228                                 // Prepare content
1229                                 $content = array(
1230                                         'text'   => REASON_DIRECT_PAYMENT,
1231                                         'points' => TRANSLATE_COMMA($ref_points)
1232                                 );
1233
1234                                 // Load message
1235                                 $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, $uid);
1236
1237                                 // And sent it away
1238                                 SEND_EMAIL($email, SUBJECT_DIRECT_PAYMENT, $msg);
1239                                 if (!isset($_GET['mid'])) LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_POINTS_ADDED'));
1240                         }
1241
1242                         // Maybe there's another ref?
1243                         if (($ref > 0) && ($points > 0) && ($ref != $uid) && ($add_mode == "ref")) {
1244                                 // Then let's credit him here...
1245                                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref},points={$points} - ADVANCE!<br />\n";
1246                                 ADD_POINTS_REFSYSTEM(sprintf("%s_ref:%s", $subject, $GLOBALS['ref_level']), $ref, $points, $send_notify, $ref, $locked);
1247                         } // END - if
1248                 } // END - if
1249         } // END - if
1250
1251         // Free result
1252         SQL_FREERESULT($result_user);
1253         //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
1254 }
1255 //
1256 function UPDATE_REF_COUNTER ($uid) {
1257         global $cacheArray, $cacheInstance;
1258
1259         // Make it sure referal level zero (member him-/herself) is at least selected
1260         if (empty($cacheArray['ref_level'][$uid])) $cacheArray['ref_level'][$uid] = 1;
1261         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},level={$cacheArray['ref_level'][$uid]}<br />\n";
1262
1263         // Update counter
1264         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_refsystem` SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1",
1265                 array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1266
1267         // When no entry was updated then we have to create it here
1268         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):updated=".SQL_AFFECTEDROWS()."<br />\n";
1269         if (SQL_AFFECTEDROWS() < 1) {
1270                 // First count!
1271                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_refsystem` (userid, level, counter) VALUES (%s,%s,1)",
1272                         array(bigintval($uid), $cacheArray['ref_level'][$uid]), __FILE__, __LINE__);
1273                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid}<br />\n";
1274         } // END - if
1275
1276         // Check for his referal
1277         $result = SQL_QUERY_ESC("SELECT refid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
1278                 array(bigintval($uid)), __FILE__, __LINE__);
1279
1280         // Load refid
1281         list($ref) = SQL_FETCHROW($result);
1282
1283         // Free memory
1284         SQL_FREERESULT($result);
1285         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):uid={$uid},ref={$ref}<br />\n";
1286
1287         // When he has a referal...
1288         if (($ref > 0) && ($ref != $uid)) {
1289                 // Move to next referal level and count his counter one up!
1290                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - ADVANCE!<br />\n";
1291                 $cacheArray['ref_level'][$uid]++; UPDATE_REF_COUNTER($ref);
1292         } elseif ((($ref == $uid) || ($ref == 0)) && (GET_EXT_VERSION("cache") >= "0.1.2")) {
1293                 // Remove cache here
1294                 //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):ref={$ref} - CACHE!<br />\n";
1295                 REBUILD_CACHE("refsystem", "refsystem");
1296         }
1297
1298         // "Walk" back here
1299         $cacheArray['ref_level'][$uid]--;
1300
1301         // Handle refback here if extension is installed
1302         if (EXT_IS_ACTIVE("refback")) {
1303                 UPDATE_REFBACK_table($uid);
1304         } // END - if
1305 }
1306
1307 // OBSOLETE: Sends out mail to all administrators
1308 function SEND_ADMIN_EMAILS ($subj, $msg) {
1309         // Load all admin email addresses
1310         $result = SQL_QUERY("SELECT email FROM `{!_MYSQL_PREFIX!}_admins` ORDER BY `id` ASC", __FILE__, __LINE__);
1311         while (list($email) = SQL_FETCHROW($result)) {
1312                 // Send the email out
1313                 SEND_EMAIL($email, $subj, $msg);
1314         } // END - if
1315
1316         // Free result
1317         SQL_FREERESULT($result);
1318
1319         // Really simple... ;-)
1320 }
1321
1322 // Get ID number from administrator's login name
1323 function GET_ADMIN_ID ($login) {
1324         global $cacheArray;
1325         $ret = "-1";
1326         if (isset($cacheArray['admins']['aid'][$login])) {
1327                 // Check cache
1328                 $ret = $cacheArray['admins']['aid'][$login];
1329
1330                 // Update cache hits
1331                 incrementConfigEntry('cache_hits');
1332         } elseif (!EXT_IS_ACTIVE("cache")) {
1333                 // Load from database
1334                 $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_admins` WHERE login='%s' LIMIT 1",
1335                  array($login), __FILE__, __LINE__);
1336                 if (SQL_NUMROWS($result) == 1) {
1337                         list($ret) = SQL_FETCHROW($result);
1338                 } // END - if
1339
1340                 // Free result
1341                 SQL_FREERESULT($result);
1342         }
1343         return $ret;
1344 }
1345
1346 // "Getter" for current admin id
1347 function GET_CURRENT_ADMIN_ID () {
1348         // Get the admin login from session
1349         $adminLogin = get_session('admin_login');
1350
1351         // "Solve" it into an id
1352         $adminId = GET_ADMIN_ID($adminLogin);
1353
1354         // Secure and return it
1355         return bigintval($adminId);
1356 }
1357
1358 // Get password hash from administrator's login name
1359 function GET_ADMIN_HASH ($aid)
1360 {
1361         global $cacheArray;
1362         $ret = "-1";
1363         if (isset($cacheArray['admins']['password'][$aid])) {
1364                 // Check cache
1365                 $ret = $cacheArray['admins']['password'][$aid];
1366
1367                 // Update cache hits
1368                 incrementConfigEntry('cache_hits');
1369         } elseif (!EXT_IS_ACTIVE("cache")) {
1370                 // Load from database
1371                 $result = SQL_QUERY_ESC("SELECT password FROM `{!_MYSQL_PREFIX!}_admins` WHERE id=%s LIMIT 1",
1372                  array($aid), __FILE__, __LINE__);
1373                 if (SQL_NUMROWS($result) == 1) {
1374                         // Fetch data
1375                         list($ret) = SQL_FETCHROW($result);
1376
1377                         // Set cache
1378                         $cacheArray['admins']['password'][$aid] = $ret;
1379                 }
1380
1381                 // Free result
1382                 SQL_FREERESULT($result);
1383         }
1384         return $ret;
1385 }
1386 //
1387 function GET_ADMIN_LOGIN ($aid) {
1388         global $cacheArray;
1389         $ret = "***";
1390         if (isset($cacheArray['admins']['login'][$aid])) {
1391                 // Get cache
1392                 $ret = $cacheArray['admins']['login'][$aid];
1393
1394                 // Update cache hits
1395                 incrementConfigEntry('cache_hits');
1396         } elseif (!EXT_IS_ACTIVE("cache")) {
1397                 // Load from database
1398                 $result = SQL_QUERY_ESC("SELECT login FROM `{!_MYSQL_PREFIX!}_admins` WHERE id=%s LIMIT 1",
1399                         array(bigintval($aid)), __FILE__, __LINE__);
1400                 if (SQL_NUMROWS($result) == 1) {
1401                         // Fetch data
1402                         list($ret) = SQL_FETCHROW($result);
1403
1404                         // Set cache
1405                         $cacheArray['admins']['login'][$aid] = $ret;
1406                 } // END - if
1407
1408                 // Free memory
1409                 SQL_FREERESULT($result);
1410         }
1411         return $ret;
1412 }
1413 // Get email address of admin id
1414 function GET_ADMIN_EMAIL ($aid) {
1415         global $cacheArray;
1416
1417         $ret = "***";
1418         if (isset($cacheArray['admins']['email'][$aid])) {
1419                 // Get cache
1420                 $ret = $cacheArray['admins']['email'][$aid];
1421
1422                 // Update cache hits
1423                 incrementConfigEntry('cache_hits');
1424         } elseif (!EXT_IS_ACTIVE("cache")) {
1425                 // Load from database
1426                 $result_aid = SQL_QUERY_ESC("SELECT email FROM `{!_MYSQL_PREFIX!}_admins` WHERE id=%s LIMIT 1",
1427                         array(bigintval($aid)), __FILE__, __LINE__);
1428                 if (SQL_NUMROWS($result_aid) == 1) {
1429                         // Get data
1430                         list($ret) = SQL_FETCHROW($result_aid);
1431
1432                         // Set cache
1433                         $cacheArray['admins']['email'][$aid] = $ret;
1434                         } // END - if
1435
1436                 // Free result
1437                 SQL_FREERESULT($result_aid);
1438         }
1439
1440         // Return email
1441         return $ret;
1442 }
1443 // Get default ACL  of admin id
1444 function GET_ADMIN_DEFAULT_ACL ($aid) {
1445         global $cacheArray;
1446
1447         $ret = "***";
1448         if (isset($cacheArray['admins']['def_acl'][$aid])) {
1449                 // Use cache
1450                 $ret = $cacheArray['admins']['def_acl'][$aid];
1451
1452                 // Update cache hits
1453                 incrementConfigEntry('cache_hits');
1454         } elseif (!EXT_IS_ACTIVE("cache")) {
1455                 // Load from database
1456                 $result_aid = SQL_QUERY_ESC("SELECT default_acl FROM `{!_MYSQL_PREFIX!}_admins` WHERE id=%s LIMIT 1",
1457                         array(bigintval($aid)), __FILE__, __LINE__);
1458                 if (SQL_NUMROWS($result_aid) == 1) {
1459                         // Fetch data
1460                         list($ret) = SQL_FETCHROW($result_aid);
1461
1462                         // Set cache
1463                         $cacheArray['admins']['def_acl'][$aid] = $ret;
1464                 }
1465
1466                 // Free result
1467                 SQL_FREERESULT($result_aid);
1468         }
1469
1470         // Return email
1471         return $ret;
1472 }
1473 //
1474 function ADD_OPTION_LINES ($table, $id, $name, $default="", $special="", $where="") {
1475         $ret = "";
1476         if ($table == "/ARRAY/") {
1477                 // Selection from array
1478                 if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) {
1479                         // Both are arrays
1480                         foreach ($id as $idx => $value) {
1481                                 $ret .= "<option value=\"".$value."\"";
1482                                 if ($default == $value) $ret .= " selected checked";
1483                                 $ret .= ">".$name[$idx]."</option>\n";
1484                         } // END - foreach
1485                 } // END - if
1486         } else {
1487                 // Data from database
1488                 $SPEC = ", ".$id;
1489                 if (!empty($special)) $SPEC = ", ".$special;
1490                 $ORDER = $name.$SPEC;
1491                 if ($table == "country") $ORDER = $special;
1492                 $result = SQL_QUERY_ESC("SELECT %s, %s".$SPEC." FROM `{!_MYSQL_PREFIX!}_%s` ".$where." ORDER BY %s",
1493                         array($id, $ORDER, $table, $name), __FILE__, __LINE__);
1494                 if (SQL_NUMROWS($result) > 0) {
1495                         // Found data so add them as OPTION lines: $id is the value and $name is the "name" of the option
1496                         while (list($value, $title, $add) = SQL_FETCHROW($result)) {
1497                                 if (empty($special)) $add = "";
1498                                 $ret .= "<option value=\"".$value."\"";
1499                                 if ($default == $value) $ret .= " selected checked";
1500                                 if (!empty($add)) $add = " (".$add.")";
1501                                 $ret .= ">".$title.$add."</option>\n";
1502                         } // END - while
1503
1504                         // Free memory
1505                         SQL_FREERESULT($result);
1506                 } else {
1507                         // No data found
1508                         $ret = "<option value=\"x\">".SELECT_NONE."</option>\n";
1509                 }
1510         }
1511
1512         // Return - hopefully - the requested data
1513         return $ret;
1514 }
1515 // Activate exchange (DEPERECATED???)
1516 function activateExchange() {
1517         // Check total amount of users
1518         $totalUsers = GET_TOTAL_DATA("CONFIRMED", "user_data", "userid", "status", true, " AND max_mails > 0");
1519
1520         if ($totalUsers >= getConfig('activate_xchange')) {
1521                 // Activate System
1522                 $SQLs = array(
1523                         "UPDATE `{!_MYSQL_PREFIX!}_mod_reg` SET `locked`='N', hidden='N', mem_only='Y' WHERE module='order' LIMIT 1",
1524                         "UPDATE `{!_MYSQL_PREFIX!}_member_menu` SET `visible`='Y', `locked`='N' WHERE what='order' OR what='unconfirmed' LIMIT 2",
1525                         "UPDATE `{!_MYSQL_PREFIX!}_config` SET activate_xchange='0' WHERE config=0 LIMIT 1"
1526                 );
1527
1528                 // Run SQLs
1529                 RUN_FILTER('run_sqls', array('dry_run' => false, 'sqls' => $SQLs));
1530
1531                 // Rebuild cache
1532                 REBUILD_CACHE("config", "config");
1533         } // END - if
1534 }
1535 //
1536 function DELETE_USER_ACCOUNT($uid, $reason)
1537 {
1538         $points = 0;
1539         $result = SQL_QUERY_ESC("SELECT (SUM(p.points) - d.used_points) AS points
1540 FROM `{!_MYSQL_PREFIX!}_user_points` AS p
1541 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS d
1542 ON p.userid=d.userid
1543 WHERE p.userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1544         if (SQL_NUMROWS($result) == 1) {
1545                 // Save his points to add them to the jackpot
1546                 list($points) = SQL_FETCHROW($result);
1547                 SQL_FREERESULT($result);
1548
1549                 // Delete points entries as well
1550                 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_points` WHERE userid=%s", array(bigintval($uid)), __FILE__, __LINE__);
1551
1552                 // Update mediadata as well
1553                 if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1554                         // Update database
1555                         MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1556                 } // END - if
1557
1558                 // Now, when we have all his points adds them do the jackpot!
1559                 ADD_JACKPOT($points);
1560         }
1561
1562         // Delete category selections as well...
1563         SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE userid=%s",
1564                 array(bigintval($uid)), __FILE__, __LINE__);
1565
1566         // Remove from rallye if found
1567         if (EXT_IS_ACTIVE("rallye")) {
1568                 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_rallye_users` WHERE userid=%s",
1569                         array(bigintval($uid)), __FILE__, __LINE__);
1570         }
1571
1572         // Now a mail to the user and that's all...
1573         $msg = LOAD_EMAIL_TEMPLATE("del-user", array('text' => $reason), $uid);
1574         SEND_EMAIL($uid, getMessage('ADMIN_DEL_ACCOUNT'), $msg);
1575
1576         // Ok, delete the account!
1577         SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__);
1578 }
1579
1580 //
1581 function META_DESCRIPTION ($mod, $wht) {
1582         // Exclude admin and member's area
1583         if (($mod != "admin") && ($mod != "login")) {
1584                 // Construct dynamic description
1585                 $DESCR = "{!MAIN_TITLE!} ".trim(getConfig('title_middle'))." ".ADD_DESCR("guest", "what-".$wht, true);
1586
1587                 // Output it directly
1588                 OUTPUT_HTML("<meta name=\"description\" content=\"".$DESCR."\" />");
1589         } // END - if
1590
1591         // Remove depth
1592         unset($GLOBALS['ref_level']);
1593 }
1594 //
1595 function ADD_JACKPOT($points) {
1596         $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1597         if (SQL_NUMROWS($result) == 0) {
1598                 // Create line
1599                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok','%s')", array($points), __FILE__, __LINE__);
1600         } else {
1601                 // Free memory
1602                 SQL_FREERESULT($result);
1603
1604                 // Update points
1605                 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points+%s WHERE ok='ok' LIMIT 1",
1606                         array($points), __FILE__, __LINE__);
1607         }
1608 }
1609 //
1610 function SUB_JACKPOT($points) {
1611         // First failed
1612         $ret = "-1";
1613
1614         // Get current points
1615         $result = SQL_QUERY("SELECT points FROM `{!_MYSQL_PREFIX!}_jackpot` WHERE ok='ok' LIMIT 1", __FILE__, __LINE__);
1616         if (SQL_NUMROWS($result) == 0) {
1617                 // Create line
1618                 SQL_QUERY("INSERT INTO `{!_MYSQL_PREFIX!}_jackpot` (ok, points) VALUES ('ok', 0.00000)", __FILE__, __LINE__);
1619         } else {
1620                 // Read points
1621                 list($jackpot) = SQL_FETCHROW($result);
1622                 if ($jackpot >= $points) {
1623                         // Update points when there are enougth points in jackpot
1624                         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_jackpot` SET points=points-%s WHERE ok='ok' LIMIT 1",
1625                                 array($points), __FILE__, __LINE__);
1626                         $ret = $jackpot - $points;
1627                 } // END - if
1628         }
1629
1630         // Free memory
1631         SQL_FREERESULT($result);
1632 }
1633 //
1634 function IS_DEMO () {
1635         return ((EXT_IS_ACTIVE("demo")) && (get_session('admin_login') == "demo"));
1636 }
1637 //
1638 function LOAD_CONFIG ($no="0") {
1639         global $cacheArray;
1640         $CFG_DUMMY = array();
1641
1642         // Check for cache extension, cache-array and if the requested configuration is in cache
1643         if ((is_array($cacheArray)) && (isset($cacheArray['config'][$no])) && (is_array($cacheArray['config'][$no]))) {
1644                 // Load config from cache
1645                 //* DEBUG: */ echo gettype($cacheArray['config'][$no])."<br />\n";
1646                 foreach ($cacheArray['config'][$no] as $key => $value) {
1647                         $CFG_DUMMY[$key] = $value;
1648                 } // END - foreach
1649
1650                 // Count cache hits if exists
1651                 if ((isset($CFG_DUMMY['cache_hits'])) && (EXT_IS_ACTIVE("cache"))) {
1652                         $CFG_DUMMY['cache_hits']++;
1653                 } // END - if
1654         } elseif ((!EXT_IS_ACTIVE("cache")) || (!isset($cacheArray['config'][$no]))) {
1655                 // Load config from DB
1656                 $result_config = SQL_QUERY_ESC("SELECT * FROM `{!_MYSQL_PREFIX!}_config` WHERE config=%d LIMIT 1",
1657                         array(bigintval($no)), __FILE__, __LINE__);
1658
1659                 // Get config from database
1660                 $CFG_DUMMY = SQL_FETCHARRAY($result_config);
1661
1662                 // Free result
1663                 SQL_FREERESULT($result_config);
1664
1665                 // Remember this config in the array
1666                 $cacheArray['config'][$no] = $CFG_DUMMY;
1667         }
1668
1669         // Return config array
1670         return $CFG_DUMMY;
1671 }
1672 // Gets the matching what name from module
1673 function GET_WHAT($modCheck) {
1674         $wht = "";
1675         //* DEBUG: */ echo __LINE__."!".$modCheck."!<br />\n";
1676         switch ($modCheck)
1677         {
1678         case "admin":
1679                 $wht = "overview";
1680                 break;
1681
1682         case "login":
1683         case "index":
1684                 $wht = "welcome";
1685                 if (($modCheck == "index") && (getConfig('index_home') != "")) $wht = getConfig('index_home');
1686                 break;
1687
1688         default:
1689                 $wht = "";
1690                 break;
1691         }
1692
1693         // Return what value
1694         return $wht;
1695 }
1696
1697 // Subtract points from database and mediadata cache
1698 function SUB_POINTS ($subject, $uid, $points) {
1699         // Add points to used points
1700         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `used_points`=`used_points`+%s WHERE userid=%s LIMIT 1",
1701          array($points, bigintval($uid)), __FILE__, __LINE__);
1702
1703         // Insert booking record
1704         if (EXT_IS_ACTIVE("booking")) {
1705                 // Add record
1706                 ADD_BOOKING_RECORD($subject, $uid, $points, "sub");
1707         } // END - if
1708
1709         // Update mediadata as well
1710         if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
1711                 // Update database
1712                 MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points);
1713         } // END - if
1714 }
1715
1716 // Update config entries
1717 function UPDATE_CONFIG ($entries, $values, $updateMode="") {
1718         global $CSS;
1719
1720         // Do not update config in CSS mode
1721         if (($CSS == "1") || ($CSS == -1)) {
1722                 return;
1723         } // END - if
1724
1725         // Do we have multiple entries?
1726         if (is_array($entries)) {
1727                 // Walk through all
1728                 $all = "";
1729                 foreach ($entries as $idx => $entry) {
1730                         // Update mode set?
1731                         if (!empty($updateMode)) {
1732                                 // Update entry
1733                                 // @TODO Find a way for updating $_CONFIG here
1734                                 $all .= sprintf("%s=%s%s%s,", $entry, $entry, $updateMode, (float)$values[$idx]);
1735                         } else {
1736                                 // Check if string or number
1737                                 if (($values[$idx] + 0) === $values[$idx]) {
1738                                         // Number detected
1739                                         $all .= sprintf("%s=%s,", $entry, (float)$values[$idx]);
1740                                 } elseif ($values[$idx] == "UNIX_TIMESTAMP()") {
1741                                         // Function UNIX_TIMESTAMP() detected
1742                                         $all .= sprintf("%s=%s,", $entry, $values[$idx]);
1743                                 } else {
1744                                         // String detected
1745                                         $all .= sprintf("%s='%s',", $entry, SQL_ESCAPE($values[$idx]));
1746                                 }
1747                         }
1748
1749                         // Set it in $_CONFIG as well
1750                         setConfigEntry($entry, $values[$idx]);
1751                 } // END - foreach
1752
1753                 // Remove last comma
1754                 $entries = substr($all, 0, -1);
1755         } elseif (!empty($updateMode)) {
1756                 // Update mode set
1757                 // @TODO Find a way for updating $_CONFIG here
1758                 $entries .= sprintf("=%s%s%s", $entries, $updateMode, (float)$values);
1759         } else {
1760                 // Set it in $_CONFIG first
1761                 setConfigEntry($entries, $values);
1762
1763                 // Regular entry to update
1764                 $entries .= sprintf("='%s'", SQL_ESCAPE($values));
1765         }
1766
1767         // Run database update
1768         //* DEBUG: */ DEBUG_LOG(__FUNCTION__, __LINE__, "entries={$entries}");
1769         SQL_QUERY("UPDATE `{!_MYSQL_PREFIX!}_config` SET ".$entries." WHERE config=0 LIMIT 1", __FILE__, __LINE__);
1770
1771         // Get affected rows
1772         $affectedRows = SQL_AFFECTEDROWS();
1773         //* DEBUG: */ print __FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):entries={$entries},affectedRows={$affectedRows}<br />\n";
1774
1775         // Rebuild cache
1776         REBUILD_CACHE("config", "config");
1777 }
1778
1779 // Prepares an SQL statement part for HTML mail and/or holiday depency
1780 function PREPARE_SQL_HTML_HOLIDAY ($mode) {
1781         // Exclude no users by default
1782         $MORE = "";
1783
1784         // HTML mail?
1785         if ($mode == "html") $MORE = " AND html='Y'";
1786         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1787                 // Add something for the holiday extension
1788                 $MORE .= " AND holiday_active='N'";
1789         } // END - if
1790
1791         // Return result
1792         return $MORE;
1793 }
1794
1795 // "Getter" for total available receivers
1796 function GET_TOTAL_RECEIVERS ($mode="normal") {
1797         // Query database
1798         $result_all = SQL_QUERY("SELECT userid
1799 FROM `{!_MYSQL_PREFIX!}_user_data`
1800 WHERE `status`='CONFIRMED' AND receive_mails > 0 ".PREPARE_SQL_HTML_HOLIDAY($mode),
1801                 __FILE__, __LINE__);
1802
1803         // Get num rows
1804         $numRows = SQL_NUMROWS($result_all);
1805
1806         // Free result
1807         SQL_FREERESULT($result_all);
1808
1809         // Return value
1810         return $numRows;
1811 }
1812
1813 // Returns HTML code with an "<option> list" of all categories
1814 function ADD_CATEGORY_OPTIONS ($mode) {
1815         // Prepare WHERE statement
1816         $whereStatement = " WHERE `visible`='Y'";
1817         if (IS_ADMIN()) $whereStatement = "";
1818
1819         // Initialize array...
1820         $CATS = array(
1821                 'id'   => array(),
1822                 'name' => array(),
1823                 'uids' => array()
1824         );
1825
1826         // Get categories
1827         $result = SQL_QUERY("SELECT id, cat FROM `{!_MYSQL_PREFIX!}_cats`".$whereStatement." ORDER BY `sort`", __FILE__, __LINE__);
1828         if (SQL_NUMROWS($result) > 0) {
1829                 // ... and begin loading stuff
1830                 while (list($id, $cat) = SQL_FETCHROW($result)) {
1831                         // Transfer some data
1832                         $CATS['id'][]   = $id;
1833                         $CATS['name'][] = $cat;
1834
1835                         // Check which users are in this category
1836                         $result_uids = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_cats` WHERE cat_id=%s",
1837                          array(bigintval($id)), __FILE__, __LINE__);
1838
1839                         // Start adding all
1840                         $uid_cnt = 0;
1841                         while (list($ucat) = SQL_FETCHROW($result_uids)) {
1842                                 $result_ver = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data`
1843 WHERE userid=%s AND `status`='CONFIRMED' AND receive_mails > 0".PREPARE_SQL_HTML_HOLIDAY($mode)." LIMIT 1",
1844  array(bigintval($ucat)), __FILE__, __LINE__);
1845                                 $uid_cnt += SQL_NUMROWS($result_ver);
1846
1847                                 // Free memory
1848                                 SQL_FREERESULT($result_ver);
1849                         } // END - while
1850
1851                         // Free memory
1852                         SQL_FREERESULT($result_uids);
1853
1854                         // Add counter
1855                         $CATS['uids'][] = $uid_cnt;
1856                 }
1857
1858                 // Free memory
1859                 SQL_FREERESULT($result);
1860
1861                 // Generate options
1862                 $OUT = "";
1863                 foreach ($CATS['id'] as $key => $value) {
1864                         if (strlen($CATS['name'][$key]) > 20) $CATS['name'][$key] = substr($CATS['name'][$key], 0, 17)."...";
1865                         $OUT .= "      <option value=\"".$value."\">".$CATS['name'][$key]." (".$CATS['uids'][$key]." ".USER_IN_CAT.")</option>\n";
1866                 }
1867         } else {
1868                 // No cateogries are defined yet
1869                 $OUT = "<option class=\"member_failed\">{!MEMBER_NO_CATS!}</option>\n";
1870         }
1871
1872         // Return HTML code
1873         return $OUT;
1874 }
1875
1876 // Add bonus mail to queue
1877 function ADD_BONUS_MAIL_TO_QUEUE ($subject, $text, $receiverList, $points, $seconds, $url, $cat, $mode="normal", $receiver=0) {
1878         // Is admin or bonus extension there?
1879         if (!IS_ADMIN()) {
1880                 // Abort here
1881                 return false;
1882         } elseif (!EXT_IS_ACTIVE("bonus")) {
1883                 // Abort here
1884                 return false;
1885         }
1886
1887         // Calculcate target sent
1888         $target = SELECTION_COUNT(explode(";", $receiverList));
1889
1890         // Receiver is zero?
1891         if ($receiver == 0) {
1892                 // Then auto-fix it
1893                 $receiver = $target;
1894         } // END - if
1895
1896         // HTML extension active?
1897         if (EXT_IS_ACTIVE("html")) {
1898                 // No HTML by default
1899                 $HTML = "N";
1900
1901                 // HTML mode?
1902                 if ($mode == "html") $HTML = "Y";
1903
1904                 // Add HTML mail
1905                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1906 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent, html_msg)
1907 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s','%s')",
1908                         array(
1909                                 $subject,
1910                                 $text,
1911                                 $receiverList,
1912                                 $points,
1913                                 $seconds,
1914                                 $url,
1915                                 $cat,
1916                                 $target,
1917                                 bigintval($receiver),
1918                                 $HTML
1919                         ), __FILE__, __LINE__);
1920         } else {
1921                 // Add regular mail
1922                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_bonus`
1923 (subject, text, receivers, points, time, data_type, timestamp, url, cat_id, target_send, mails_sent)
1924 VALUES ('%s','%s','%s','%s','%s','NEW', UNIX_TIMESTAMP(),'%s','%s','%s','%s')",
1925                         array(
1926                                 $subject,
1927                                 $text,
1928                                 $receiverList,
1929                                 $points,
1930                                 $seconds,
1931                                 $url,
1932                                 $cat,
1933                                 $target,
1934                                 bigintval($receiver),
1935                         ), __FILE__, __LINE__);
1936         }
1937 }
1938
1939 // Generate a receiver list for given category and maximum receivers
1940 function GENERATE_RECEIVER_LIST ($cat, $receiver, $mode="") {
1941         // Init variables
1942         $CAT_TABS     = "%s";
1943         $CAT_WHERE    = "";
1944         $receiverList = "";
1945
1946         // Secure data
1947         $cat      = bigintval($cat);
1948         $receiver = bigintval($receiver);
1949
1950         // Is the receiver zero and mode set?
1951         if (($receiver == 0) && (!empty($mode))) {
1952                 // Auto-fix receiver maximum
1953                 $receiver = GET_TOTAL_RECEIVERS($mode);
1954         } // END - if
1955
1956         // Category given?
1957         if ($cat > 0) {
1958                 // Select category
1959                 $CAT_TABS  = "LEFT JOIN `{!_MYSQL_PREFIX!}_user_cats` AS c ON d.userid=c.userid";
1960                 $CAT_WHERE = " AND c.cat_id=%s";
1961         } // END - if
1962
1963         // Exclude users in holiday?
1964         if (GET_EXT_VERSION("holiday") >= "0.1.3") {
1965                 // Add something for the holiday extension
1966                 $CAT_WHERE .= " AND d.holiday_active='N'";
1967         } // END - if
1968
1969         if ((EXT_IS_ACTIVE("html_mail")) && ($mode == "html")) {
1970                 // Only include HTML receivers
1971                 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED' AND d.html='Y'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
1972                  array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FILE__, __LINE__);
1973         } else {
1974                 // Include all
1975                 $result = SQL_QUERY_ESC("SELECT d.userid FROM `{!_MYSQL_PREFIX!}_user_data` AS d ".$CAT_TABS." WHERE d.`status`='CONFIRMED'".$CAT_WHERE." ORDER BY d.%s %s LIMIT %s",
1976                  array($cat, getConfig('order_select'), getConfig('order_mode'), $receiver), __FILE__, __LINE__);
1977         }
1978
1979         // Entries found?
1980         if ((SQL_NUMROWS($result) >= $receiver) && ($receiver > 0)) {
1981                 // Load all entries
1982                 while (list($REC) = SQL_FETCHROW($result)) {
1983                         // Add receiver when not empty
1984                         if (!empty($REC)) $receiverList .= $REC.";";
1985                 } // END - while
1986
1987                 // Free memory
1988                 SQL_FREERESULT($result);
1989
1990                 // Remove trailing semicolon
1991                 $receiverList = substr($receiverList, 0, -1);
1992         } // END - if
1993
1994         // Return list
1995         return $receiverList;
1996 }
1997
1998 // Get timestamp for given stats type and data
1999 function USER_STATS_GET_TIMESTAMP ($type, $data, $uid = 0) {
2000         // Default timestamp is zero
2001         $stamp = 0;
2002
2003         // User id set?
2004         if ((isset($GLOBALS['userid'])) && ($uid == 0)) {
2005                 $uid = $GLOBALS['userid'];
2006         } // END - if
2007
2008         // Is the extension installed and updated?
2009         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2010                 // Return zero here
2011                 return $stamp;
2012         } // END - if
2013
2014         // Try to find the entry
2015         $result = SQL_QUERY_ESC("SELECT UNIX_TIMESTAMP(`inserted`) AS `stamp`
2016 FROM `{!_MYSQL_PREFIX!}_user_stats_data`
2017 WHERE userid=%s AND stats_type='%s' AND stats_data='%s'
2018 LIMIT 1",
2019                 array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2020
2021         // Is the entry there?
2022         if (SQL_NUMROWS($result) == 1) {
2023                 // Get this stamp
2024                 list($stamp) = SQL_FETCHROW($result);
2025         } // END - if
2026
2027         // Free result
2028         SQL_FREERESULT($result);
2029
2030         // Return stamp
2031         return $stamp;
2032 }
2033
2034 // Inserts user stats
2035 function USER_STATS_INSERT_RECORD ($uid, $type, $data) {
2036         // Is the extension installed and updated?
2037         if ((!EXT_IS_ACTIVE("sql_patches")) || (EXT_VERSION_IS_OLDER("sql_patches", "0.5.6"))) {
2038                 // Return zero here
2039                 return false;
2040         } // END - if
2041
2042         // Does it exist?
2043         if ((!USER_STATS_GET_TIMESTAMP($type, $data, $uid)) && (!is_array($data))) {
2044                 // Then insert it!
2045                 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_user_stats_data` (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
2046                         array(bigintval($uid), $type, $data), __FILE__, __LINE__);
2047         } elseif (is_array($data)) {
2048                 // Invalid data!
2049                 DEBUG_LOG(__FUNCTION__, __LINE__, " uid={$uid},type={$type},data={".gettype($data).": Invalid statistics data type!");
2050         }
2051 }
2052
2053 // "Getter" for array for user refs and points in given level
2054 function GET_USER_REF_POINTS ($uid, $level) {
2055         //* DEBUG: */ print "----------------------- <font color=\"#00aa00\">".__FUNCTION__." - ENTRY</font> ------------------------<ul><li>\n";
2056         // Default is no refs and no nickname
2057         $ADD = "";
2058         $refs = array();
2059
2060         // Do we have nickname extension installed?
2061         if (EXT_IS_ACTIVE("nickname")) {
2062                 $ADD = ", ud.nickname";
2063         } // END - if
2064
2065         // Get refs from database
2066         $result = SQL_QUERY_ESC("SELECT ur.id, ur.refid, ud.status, ud.last_online, ud.mails_confirmed, ud.emails_received".$ADD."
2067 FROM `{!_MYSQL_PREFIX!}_user_refs` AS ur
2068 LEFT JOIN `{!_MYSQL_PREFIX!}_user_points` AS up
2069 ON ur.refid=up.userid AND ur.level=0
2070 LEFT JOIN `{!_MYSQL_PREFIX!}_user_data` AS ud
2071 ON ur.refid=ud.userid
2072 WHERE ur.userid=%s AND ur.level=%s
2073 ORDER BY ur.refid ASC",
2074                 array(bigintval($uid), bigintval($level)), __FILE__, __LINE__);
2075
2076         // Are there some entries?
2077         if (SQL_NUMROWS($result) > 0) {
2078                 // Fetch all entries
2079                 while ($row = SQL_FETCHARRAY($result)) {
2080                         // Get total points of this user
2081                         $row['points'] = GET_TOTAL_DATA($row['refid'], "user_points", "points") - GET_TOTAL_DATA($row['refid'], "user_data", "used_points");
2082
2083                         // Get unconfirmed mails
2084                         $row['unconfirmed']  = GET_TOTAL_DATA($row['refid'], "user_links", "id", "userid", true);
2085
2086                         // Init clickrate with zero
2087                         $row['clickrate'] = 0;
2088
2089                         // Is at least one mail received?
2090                         if ($row['emails_received'] > 0) {
2091                                 // Calculate clickrate
2092                                 $row['clickrate'] = ($row['mails_confirmed'] / $row['emails_received'] * 100);
2093                         } // END - if
2094
2095                         // Activity is "active" by default because if autopurge is not installed
2096                         $row['activity'] = MEMBER_ACTIVITY_ACTIVE;
2097
2098                         // Is autopurge installed and the user inactive?
2099                         if ((EXT_IS_ACTIVE("autopurge")) && ((time() - getConfig('ap_inactive_since')) >= $row['last_online']))  {
2100                                 // Inactive user!
2101                                 $row['activity'] = MEMBER_ACTIVITY_INACTIVE;
2102                         } // END - if
2103
2104                         // Remove some entries
2105                         unset($row['mails_confirmed']);
2106                         unset($row['emails_received']);
2107                         unset($row['last_online']);
2108
2109                         // Add row
2110                         $refs[$row['id']] = $row;
2111                 } // END - while
2112         } // END - if
2113
2114         // Free result
2115         SQL_FREERESULT($result);
2116
2117         // Return result
2118         //* DEBUG: */ print "</li></ul>----------------------- <font color=\"#aa0000\">".__FUNCTION__." - EXIT</font> ------------------------<br />\n";
2119         return $refs;
2120 }
2121
2122 // Recuced the amount of received emails for the receipients for given email
2123 function REDUCT_RECIPIENT_RECEIVED_MAILS ($column, $id, $count) {
2124         // Search for mail in database
2125         $result = SQL_QUERY_ESC("SELECT `userid` FROM `{!_MYSQL_PREFIX!}_user_links` WHERE `%s`=%s ORDER BY `userid` ASC LIMIT %s",
2126                 array($column, bigintval($id), $count), __FILE__, __LINE__);
2127
2128         // Are there entries?
2129         if (SQL_NUMROWS($result) > 0) {
2130                 // Now load all userids for one big query!
2131                 $UIDs = array();
2132                 while (list($uid) = SQL_FETCHROW($result)) {
2133                         $UIDs[$uid] = $uid;
2134                 } // END - while
2135
2136                 // Now update all user accounts
2137                 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET `emails_received`=`emails_received`-1 WHERE `userid` IN (%s) LIMIT %s",
2138                         array(implode(",", $UIDs), count($UIDs)), __FILE__, __LINE__);
2139         } // END - if
2140
2141         // Free result
2142         SQL_FREERESULT($result);
2143 }
2144
2145 // [EOF]
2146 ?>