0)) { // @TODO Rewrite this constant define('__POINTS_VALUE', REQUEST_POST('points')); // Select all users $result_main = SQL_QUERY("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `status`='CONFIRMED' ORDER BY `userid` ASC", __FILE__, __LINE__); // Process all entries while ($content = SQL_FETCHARRAY($result_main)) { // Remove depth to prevent booking errors. This is a bad coding // practice, thats also why we need to write this project from // scratch... $GLOBALS['ref_level'] = -1; // Ok, add points and send an email to him... ADD_POINTS_REFSYSTEM_DIRECT('admin_all', $content['userid'], bigintval(REQUEST_POST('points'))); // Prepare content $content['text'] = SQL_ESCAPE(REQUEST_POST('reason')); $content['points'] = bigintval(REQUEST_POST('points')); // Load email template and send email away $message = LOAD_EMAIL_TEMPLATE('add-points', $content, bigintval($content['userid'])); sendEmail(bigintval($content['userid']), getMessage('ADMIN_ADD_SUBJ'), $message); } // END - while // Free memory SQL_FREERESULT($result_main); // Output message LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_ALL_POINTS_ADDED')); } else { // Display form add points LOAD_TEMPLATE('admin_add_points_all'); } } elseif (REQUEST_ISSET_GET('uid')) { // User ID found in URL so we use this give him some credits $result = SQL_QUERY_ESC("SELECT `surname`, `family`, `email` FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `userid`=%s AND `status`='CONFIRMED' LIMIT 1", array(bigintval(REQUEST_GET('uid'))), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { // Selected user does exist list($sname, $fname, $email) = SQL_FETCHROW($result); if ((isFormSent()) && (REQUEST_ISSET_POST(('points')))) { // Remove depth to prevent booking errors. This is a bad coding // practice, thats also why we need to write this project from // scratch... unset($GLOBALS['ref_level']); // Ok, add points and send an email to him... ADD_POINTS_REFSYSTEM_DIRECT('admin_single', bigintval(REQUEST_GET('uid')), bigintval(REQUEST_POST('points'))); // Prepare content $content = array( 'text' => SQL_ESCAPE(REQUEST_POST('reason')), 'points' => bigintval(REQUEST_POST('points')) ); // Message laden $message = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval(REQUEST_GET('uid'))); sendEmail(bigintval(REQUEST_GET('uid')), getMessage('ADMIN_ADD_SUBJ'), $message); LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_POINTS_ADDED')); } else { // Opps, missing form here // @TODO Rewrite these both constants define('__USER_VALUE', "".$sname." ".$fname.""); define('__UID' , bigintval(REQUEST_GET('uid'))); LOAD_TEMPLATE('admin_add_points'); } } else { // User not found! LOAD_TEMPLATE('admin_settings_saved', false, "
".sprintf(getMessage('ADMIN_MEMBER_404'), REQUEST_GET('uid'))."
"); } // Free result SQL_FREERESULT($result); } else { // Output selection form with all confirmed user accounts listed ADD_MEMBER_SELECTION_BOX('0', true); } // ?>