<?php
/************************************************************************
 * MXChange v0.2.1                                    Start: 04/12/2004 *
 * ================                             Last change: 12/01/2008 *
 *                                                                      *
 * -------------------------------------------------------------------- *
 * File              : what-payout.php                                  *
 * -------------------------------------------------------------------- *
 * Short description : Payout requests                                  *
 * -------------------------------------------------------------------- *
 * Kurzbeschreibung  : Auszahlungsanfragen                              *
 * -------------------------------------------------------------------- *
 *                                                                      *
 * -------------------------------------------------------------------- *
 * Copyright (c) 2003 - 2008 by Roland Haeder                           *
 * For more information visit: http://www.mxchange.org                  *
 *                                                                      *
 * This program is free software; you can redistribute it and/or modify *
 * it under the terms of the GNU General Public License as published by *
 * the Free Software Foundation; either version 2 of the License, or    *
 * (at your option) any later version.                                  *
 *                                                                      *
 * This program is distributed in the hope that it will be useful,      *
 * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
 * GNU General Public License for more details.                         *
 *                                                                      *
 * You should have received a copy of the GNU General Public License    *
 * along with this program; if not, write to the Free Software          *
 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
 * MA  02110-1301  USA                                                  *
 ************************************************************************/

// Some security stuff...
if (!defined('__SECURITY')) {
	// Don't call this directly!
	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
	require($INC);
} elseif (!IS_MEMBER()) {
	// Not logged in
	LOAD_URL("modules.php?module=index");
} elseif ((!EXT_IS_ACTIVE("payout")) && (!IS_ADMIN())) {
	// Extension "payout" is not active
	ADD_FATAL(EXTENSION_PROBLEM_EXT_INACTIVE, "payout");
	return;
}

// Add description as navigation point
ADD_DESCR("member", basename(__FILE__));

$result_depths = SQL_QUERY("SELECT level, percents FROM "._MYSQL_PREFIX."_refdepths ORDER BY level", __FILE__, __LINE__);
$TPTS = 0;
while (list($lvl, $per) = SQL_FETCHROW($result_depths))
{
	// Load referral points
	$result_points = SQL_QUERY_ESC("SELECT points FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s AND ref_depth=%d LIMIT 1",
	 array($GLOBALS['userid'], bigintval($lvl)), __FILE__, __LINE__);
	if (SQL_NUMROWS($result_points) == 1)
	{
		list($points) = SQL_FETCHROW($result_points);
		SQL_FREERESULT($result_points);
		$TPTS += $points;
	}
}

// Free memory
SQL_FREERESULT($result_depths);

// Get used points
$USED = GET_TOTAL_DATA($GLOBALS['userid'], "user_data", "used_points");

// Translate point into comma
$TPTS = TRANSLATE_COMMA($TPTS - $USED);

// Sanity check...
if (empty($TPTS)) $TPTS = "0.00000";

if (empty($_GET['payout']))
{
	// Load payout types
	$result = SQL_QUERY_ESC("SELECT id, type, rate, min_points, allow_url
FROM "._MYSQL_PREFIX."_payout_types
WHERE %s >= min_points
ORDER BY type", array(str_replace(",", ".", $TPTS)), __FILE__, __LINE__);
	if (SQL_NUMROWS($result) > 0)
	{
		// Free memory
		SQL_FREERESULT($result);

		// Check for his payouts
		$result_payouts = SQL_QUERY_ESC("SELECT DISTINCT p.id, p.payout_total, p.target_account, p.target_bank, t.type, p.payout_timestamp, p.status, t.allow_url AS allow, p.target_url AS url, p.link_text AS alt, p.banner_url AS bannerm
FROM "._MYSQL_PREFIX."_user_payouts AS p
LEFT JOIN "._MYSQL_PREFIX."_payout_types AS t
ON p.payout_id = t.id
WHERE p.userid = %s
ORDER BY p.payout_timestamp DESC",
		 array($GLOBALS['userid']), __FILE__, __LINE__);
		if (SQL_NUMROWS($result_payouts) > 0)
		{
			// List all his requests
			$SW = 2; $OUT = "";
			while (list($pid, $total, $account, $bank, $type, $tstamp, $status, $allow, $url, $alt, $banner) = SQL_FETCHROW($result_payouts))
			{
				// Translate status
				$evl = "\$status = PAYOUT_MEMBER_STATUS_".strtoupper($status).";";
				eval($evl);
				$status = "<FONT class=\"member_failed\">".$status."</FONT>";

				// Nothing entered must be secured in member/what-payputs.php !
				if ($allow == "Y")
				{
					// Banner/Textlink views/clicks request
					if (!empty($banner))
					{
						// Banner
						$account = "<IMG src=\"".$banner."\" alt=\"".$alt."\" title=\"".$alt."\" border=\"0\">";
					}
					 else
					{
						// Textlink
						$account = $alt;
					}
					$bank = "<A href=\"".DEREFERER($url)."\" target=\"_blank\">".CLICK_HERE."</A>";
				}
				 else
				{
					// e-currency payout request
					if (empty($account)) $account = "---";
					if (empty($bank))    $bank    = "---";
				}

				// Prepare data for the template
				$content = array(
					'sw'     => $SW,
					'acc'    => $account,
					'points' => TRANSLATE_COMMA($total)." ".COMPILE_CODE($type),
					'bank'   => $bank,
					'stamp'  => MAKE_DATETIME($tstamp, "2"),
					'status' => $status
				);
				// Load row template and switch colors
				$OUT .= LOAD_TEMPLATE("member_payout_row", true, $content);
				$SW = 3 - $SW;
			}

			// Remember rows in constant
			define('__PAYOUT_ROWS', $OUT);

			// Load template
			LOAD_TEMPLATE("member_payout");
		}

		// Free memory
		SQL_FREERESULT($result_payouts);

		// Output payout list
		PAYOUT_OUTPUT_PAYOUT_LIST($TPTS);
	}
}
 else
{
	// Chedk if he can get paid by selected type
	$result = SQL_QUERY_ESC("SELECT type, rate, min_points, allow_url FROM "._MYSQL_PREFIX."_payout_types WHERE id=%s LIMIT 1",
	 array(bigintval($_GET['payout'])), __FILE__, __LINE__);

	if (SQL_NUMROWS($result) == 1)
	{
		// ID is valid
		list($type, $rate, $min, $allow) = SQL_FETCHROW($result);
		SQL_FREERESULT($result);

		// Calculate maximum value
		$max = round($TPTS * $rate - 0.5);

		// Calulcate points from submitted amount
		$PAYOUT = 0;
		if (!empty($_POST['payout']))
		{
			$PAYOUT  = bigintval($_POST['payout']) / $rate;
			$PAY_MAX = $max / $rate;
		}

		// Move variables into constants for templates
		define('PAYOUT_MAX_VALUE' , $max);
		define('PAYOUT_TYPE_VALUE', COMPILE_CODE($type));

		if (str_replace(",", ".", $TPTS) >= $min)
		{
			// Ok, he can get be paid
			if ((isset($_POST['ok'])) && ($PAYOUT <= $PAY_MAX) && ($PAYOUT >= $min))
			{
				// Calculate exact value
				define('PAYOUT_POINTS_VALUE', $PAYOUT);

				// Subtract points from member's account
				SUB_POINTS($GLOBALS['userid'], $PAYOUT);

				// Add entry to his tranfer history
				if ($allow == "Y")
				{
					// Banner/textlink ordered
					$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_payouts (userid, payout_total, payout_id, payout_timestamp, status, target_url, link_text, banner_url)
VALUES (%s,%s,%s, UNIX_TIMESTAMP(), 'NEW','%s','%s','%s')",
 array(
	$GLOBALS['userid'],
	bigintval($_POST['payout']),
	bigintval($_GET['payout']),
	$_POST['turl'],
	$_POST['alt'],
	$_POST['banner']
), __FILE__, __LINE__);

					// Load templates
					$msg_mem = LOAD_EMAIL_TEMPLATE("member_payout_request_banner", array(), $GLOBALS['userid']);
					if (GET_EXT_VERSION("admins") >= "0.4.1")
					{
						$adm_tpl = "admin_payout_request_banner";
					}
					 else
					{
						$msg_adm = addslashes(LOAD_EMAIL_TEMPLATE("admin_payout_request_banner", array(), $GLOBALS['userid']));
					}
				}
				 else
				{
					// e-currency payout requested
					$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_payouts (userid, payout_total, target_account, target_bank, payout_id, payout_timestamp, status, password)
VALUES (%s,%s,%s,'%s',%s, UNIX_TIMESTAMP(), 'NEW','%s')",
 array(
	$GLOBALS['userid'],
	bigintval($_POST['payout']),
	bigintval($_POST['account']),
	$_POST['bank'],
	bigintval($_GET['payout']),
	$_POST['pass']
), __FILE__, __LINE__);

					// Load templates
					$msg_mem = LOAD_EMAIL_TEMPLATE("member_payout_request", array(), $GLOBALS['userid']);
					$msg_adm = addslashes(LOAD_EMAIL_TEMPLATE("admin_payout_request", array(), $GLOBALS['userid']));
					$admin_tpl = "";
					if (GET_EXT_VERSION("admins") >= "0.4.1")
					{
						$admin_tpl = "admin_payout_request";
					}
				}

				// Generate task
				$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, status, task_type, subject, text, task_created, userid)
VALUES (0, 'NEW','PAYOUT_REQUEST','[payout:] ".PAYOUT_REQUEST_ADMIN."','%s', UNIX_TIMESTAMP(), %s)",
 array(
	$msg_adm,
	$GLOBALS['userid']
), __FILE__, __LINE__);

				// Send out mails
				SEND_EMAIL($GLOBALS['userid'], PAYOUT_REQUEST_MEMBER, $msg_mem);

				// To admin(s)
				SEND_ADMIN_NOTIFICATION(PAYOUT_REQUEST_ADMIN, $admin_tpl, array(), $GLOBALS['userid']);

				// Load template and output it
				LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_REQUEST_SENT);
			}
			 elseif ($allow == "Y")
			{
				// Generate banner order form
				LOAD_TEMPLATE("member_payout_form_banner");
			}
			 else
			{
				// Generate normal form
				LOAD_TEMPLATE("member_payout_form");
			}
		}
		 else
		{
			// Not enougth points
			LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_POINTS_NOT_ENOUGTH);
		}
	}
	 else
	{
		// ID is invalid
		LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_ID_INVALID);
	}
}
//
?>