mailid.php

   1 <?php
   2 /************************************************************************
   3  * MXChange v0.2.1                                    Start: 11/14/2003 *
   4  * ===============                              Last change: 11/25/2004 *
   5  *                                                                      *
   6  * -------------------------------------------------------------------- *
   7  * File              : mailid.php                                       *
   8  * -------------------------------------------------------------------- *
   9  * Short description : Confirmation file for emails                     *
  10  * -------------------------------------------------------------------- *
  11  * Kurzbeschreibung  : Bestaetigung von Mails                           *
  12  * -------------------------------------------------------------------- *
  13  * $Revision::                                                        $ *
  14  * $Date::                                                            $ *
  15  * $Tag:: 0.2.1-FINAL                                                 $ *
  16  * $Author::                                                          $ *
  17  * Needs to be in all Files and every File needs "svn propset           *
  18  * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  19  * -------------------------------------------------------------------- *
  20  * Copyright (c) 2003 - 2009 by Roland Haeder                           *
  21  * For more information visit: http://www.mxchange.org                  *
  22  *                                                                      *
  23  * This program is free software; you can redistribute it and/or modify *
  24  * it under the terms of the GNU General Public License as published by *
  25  * the Free Software Foundation; either version 2 of the License, or    *
  26  * (at your option) any later version.                                  *
  27  *                                                                      *
  28  * This program is distributed in the hope that it will be useful,      *
  29  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
  30  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
  31  * GNU General Public License for more details.                         *
  32  *                                                                      *
  33  * You should have received a copy of the GNU General Public License    *
  34  * along with this program; if not, write to the Free Software          *
  35  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
  36  * MA  02110-1301  USA                                                  *
  37  ************************************************************************/
  38
  39 // Load security stuff here
  40 require('inc/libs/security_functions.php');
  41
  42 // Init start time
  43 $GLOBALS['startTime'] = microtime(true);
  44
  45 // Tell everyone we are in this module
  46 $GLOBALS['module'] = 'mailid';
  47 $GLOBALS['output_mode'] = -1;
  48 $errorCode = '';
  49
  50 // Load the required file(s)
  51 require('inc/config-global.php');
  52
  53 // Set content type
  54 setContentType('text/html');
  55
  56 // Is the extension active?
  57 redirectOnUninstalledExtension('mailid');
  58
  59 // Init
  60 $url_userid = 0;
  61 $url_bid = 0;
  62 $url_mid = 0;
  63
  64 // Secure all data
  65 if (isGetRequestElementSet('userid'))     $url_userid = bigintval(getRequestElement('userid'));
  66 if (isGetRequestElementSet('mailid'))  $url_mid = bigintval(getRequestElement('mailid'));
  67 if (isGetRequestElementSet('bonusid')) $url_bid = bigintval(getRequestElement('bonusid'));
  68
  69 // 01        1        12            3    32           21    1                   22     10
  70 if (($url_userid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (getTotalFatalErrors() == 0)) {
  71         // Maybe he wants to confirm an email?
  72         if ($url_mid > 0) {
  73                 // Normal-Mails
  74                 $result = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `stats_id`=%s AND `userid`=%s LIMIT 1",
  75                         array($url_mid, $url_userid), __FILE__, __LINE__);
  76                 $type = 'mailid'; $urlId = $url_mid;
  77         } elseif ($url_bid > 0) {
  78                 // Bonus-Mail
  79                 $result = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `bonus_id`=%s AND `userid`=%s LIMIT 1",
  80                         array($url_bid, $url_userid), __FILE__, __LINE__);
  81                 $type = 'bonusid'; $urlId = $url_bid;
  82         } else {
  83                 // Problem: No ID entered
  84                 redirectToUrl('index.php');
  85         }
  86
  87         if (SQL_NUMROWS($result) == 1) {
  88                 // Load the entry
  89                 list($ltype) = SQL_FETCHROW($result);
  90
  91                 // Clean result
  92                 SQL_FREERESULT($result);
  93
  94                 // @TODO Rewrite this to a filter
  95                 switch ($ltype)
  96                 {
  97                         case 'NORMAL':
  98                                 // Is the stats ID valid?
  99                                 $result = SQL_QUERY_ESC("SELECT pool_id, url, subject FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `id`=%s LIMIT 1",
 100                                         array($url_mid), __FILE__, __LINE__);
 101                                 break;
 102
 103                         case 'BONUS':
 104                                 // Is the bonus extension active?
 105                                 redirectOnUninstalledExtension('bonus');
 106
 107                                 // Bonus-Mails
 108                                 $result = SQL_QUERY_ESC("SELECT id, url, subject FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1",
 109                                         array($url_bid), __FILE__, __LINE__);
 110                                 break;
 111
 112                         default: // Invalid mail type
 113                                 debug_report_bug('Invalid mail type ' . $ltype . ' detected.');
 114                                 break;
 115                 }
 116
 117                 if (SQL_NUMROWS($result) == 1) {
 118                         // Load data
 119                         list($pool, $URL, $title) = SQL_FETCHROW($result);
 120
 121                         // Free result
 122                         SQL_FREERESULT($result);
 123
 124                         // Set it
 125                         setExtraTitle($title);
 126
 127                         // Is the user's ID unlocked?
 128                         $result = SQL_QUERY_ESC("SELECT `status`, `gender`, `surname`, `family` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1",
 129                                 array($url_userid), __FILE__, __LINE__);
 130                         if (SQL_NUMROWS($result) == 1) {
 131                                 list($status, $gender, $surname, $family) = SQL_FETCHROW($result);
 132                                 SQL_FREERESULT($result);
 133                                 if ($status == 'CONFIRMED') {
 134                                         // User has confirmed his account so we can procede...
 135                                         // @TODO Rewrite this to a filter
 136                                         switch ($ltype) {
 137                                                 case 'NORMAL':
 138                                                         $result = SQL_QUERY_ESC("SELECT payment_id FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `pool_id`=%s LIMIT 1",
 139                                                                 array(bigintval($pool)), __FILE__, __LINE__);
 140                                                         if (SQL_NUMROWS($result) == 1) {
 141                                                                 list($pay) = SQL_FETCHROW($result);
 142                                                                 $time      = getPaymentPoints($pay, 'time');
 143                                                                 $payment   = getPaymentPoints($pay, 'payment');
 144                                                                 $isValid   = true;
 145                                                         } // END - if
 146
 147                                                         // Free memory
 148                                                         SQL_FREERESULT($result);
 149                                                         break;
 150
 151                                                 case 'BONUS':
 152                                                         $result = SQL_QUERY_ESC("SELECT points, time FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1",
 153                                                                 array($url_bid), __FILE__, __LINE__);
 154                                                         if (SQL_NUMROWS($result) == 1) {
 155                                                                 list($points, $time) = SQL_FETCHROW($result);
 156                                                                 $payment = '0.00000';
 157                                                                 $isValid = true;
 158                                                         }
 159
 160                                                         // Free memory
 161                                                         SQL_FREERESULT($result);
 162                                                         break;
 163
 164                                                 default: // Invalid mail type
 165                                                         debug_report_bug('Invalid mail type ' . $ltype . ' detected.');
 166                                                         break;
 167                                         }
 168
 169                                         // Add header
 170                                         loadIncludeOnce('inc/header.php');
 171
 172                                         // Was that mail a valid one?
 173                                         if ($isValid === true) {
 174                                                 // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems
 175                                                 if (($time == 0) && ($payment > 0)) { $URL = getConfig('URL'); $time = 1; }
 176                                                 if (($time > 0) && (($payment > 0) || ($points > 0))) {
 177                                                         // Export data into constants for the template
 178                                                         $content = array(
 179                                                                 'userid'  => $url_userid,
 180                                                                 'type' => $type,
 181                                                                 'data' => $urlId,
 182                                                                 'url'  => generateDerefererUrl($URL)
 183                                                         );
 184
 185                                                         // Load template
 186                                                         loadTemplate('mailid_frames', false, $content);
 187                                                 } else {
 188                                                         $errorCode = getCode('DATA_INVALID');
 189                                                 }
 190                                         } else {
 191                                                 $errorCode = getCode('POSSIBLE_INVALID');
 192                                         }
 193                                 } else {
 194                                         $errorCode = getCode('ACCOUNT_' . $status);
 195                                 }
 196                         } else {
 197                                 SQL_FREERESULT($result);
 198                                 $errorCode = getCode('USER_404');
 199                         }
 200                 } else {
 201                         SQL_FREERESULT($result);
 202                         $errorCode = getCode('STATS_404');
 203                 }
 204         } else {
 205                 SQL_FREERESULT($result);
 206                 $errorCode = getCode('ALREADY_CONFIRMED');
 207         }
 208 } else {
 209         // Nothing entered
 210         $errorCode = getCode('ERROR_MAILID');
 211 }
 212
 213 // Error code is set?
 214 if (!empty($errorCode)) {
 215         // @TODO Rewrite this to a dynamic include or so
 216         switch (getConfig('mailid_error_redirect')) {
 217                 case 'INDEX': // Redirect to index page
 218                         redirectToUrl('modules.php?module=index&amp;code=' . $errorCode . '&amp;ext=mailid');
 219                         break;
 220
 221                 case 'REJECT': // Redirect to rejection page
 222                         if (isExtensionActive('other')) {
 223                                 // Redirect to configured URL
 224                                 redirectToConfiguredUrl('reject_url');
 225                         } else {
 226                                 // Redirect to index
 227                                 redirectToUrl('index.php');
 228                         }
 229                         break;
 230
 231                 default:
 232                         logDebugMessage(__FILE__, __LINE__, sprintf("Unknown status %s detected in mailid_error_redirect.", getConfig('mailid_error_redirect')));
 233                         redirectToUrl('modules.php?module=index&amp;code=' . getCode('UNKNOWN_STATUS') . '&amp;ext=mailid');
 234                         break;
 235         } // END - switch
 236 } // END - if
 237
 238 // Include footer
 239 loadIncludeOnce('inc/footer.php');
 240
 241 // [EOF]
 242 ?>