************************************************************************/
// Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
+if (!defined('__SECURITY')) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
-// Admin has added an URL with given user id
-function SURFBAR_ADMIN_ADD_URL ($url, $uid, $reward, $costs, $paymentId) {
+// -----------------------------------------------------------------------------
+// Admin functions
+// -----------------------------------------------------------------------------
+
+// Admin has added an URL with given user id and so on
+function SURFBAR_ADMIN_ADD_URL ($url) {
// Do some pre-checks
if (!IS_ADMIN()) {
// Not an admin
} elseif (!VALIDATE_URL($url)) {
// URL invalid
return false;
- } elseif (SURFBAR_LOOKUP_BY_URL($url, $uid)) {
+ } elseif (SURFBAR_LOOKUP_BY_URL($url, "0")) {
// URL already found in surfbar!
return false;
- } elseif (!SURFBAR_IF_USER_BOOK_MORE_URLS($uid)) {
+ } elseif (!SURFBAR_IF_USER_BOOK_MORE_URLS("0")) {
// No more allowed!
return false;
}
+ // Do we have fixed or dynamic payment model?
+ $reward = SURFBAR_DETERMINE_REWARD();
+ $costs = SURFBAR_DETERMINE_COSTS();
+
// Register the new URL
- return SURFBAR_REGISTER_URL($url, $uid, $reward, $costs, $paymentId, "CONFIRMED", "unlock");
+ return SURFBAR_REGISTER_URL($url, "0", $reward, $costs, "0", "CONFIRMED", "unlock");
}
+// Admin function for unlocking URLs
+function SURFBAR_ADMIN_UNLOCK_URL_IDS ($IDs) {
+ // Is this an admin or invalid array?
+ if (!IS_ADMIN()) {
+ // Not admin or invalid IDs array
+ return false;
+ } elseif (!is_array($IDs)) {
+ // No array
+ return false;
+ } elseif (count($IDs) == 0) {
+ // Empty array
+ return false;
+ }
+
+ // Set to true to make AND expression valid if first URL got unlocked
+ $done = true;
+
+ // Update the status for all ids
+ foreach ($IDs as $id => $dummy) {
+ // Test all ids through (ignores failed)
+ $done = (($done) && (SURFBAR_CHANGE_STATUS($id, "PENDING", "CONFIRMED")));
+ } // END - if
+
+ // Return total status
+ return $done;
+}
+
+// -----------------------------------------------------------------------------
+// Member functions
+// -----------------------------------------------------------------------------
+
// Member has added an URL
function SURFBAR_MEMBER_ADD_URL ($url) {
global $_CONFIG;
// Do some pre-checks
- if (!IS_LOGGED_IN()) {
+ if (!IS_MEMBER()) {
// Not a member
return false;
} elseif (!VALIDATE_URL($url)) {
// Register the new URL
return SURFBAR_REGISTER_URL($url, $GLOBALS['userid'], $reward, $costs);
}
+// -----------------------------------------------------------------------------
+// Generic functions
+// -----------------------------------------------------------------------------
+
// Looks up by an URL
function SURFBAR_LOOKUP_BY_URL ($url) {
// Now lookup that given URL by itself
$searchTerm = bigintval($searchTerm);
} // END - if
+ // If the column is "id" there can be only one entry
+ $limit = "";
+ if ($column == "id") {
+ $limit = "LIMIT 1";
+ } // END - if
+
// Look up the record
$result = SQL_QUERY_ESC("SELECT id, userid, url, reward, costs, views_total, status, registered, last_locked, lock_reason
FROM "._MYSQL_PREFIX."_surfbar_urls
WHERE %s='%s'
-ORDER BY %s %s",
- array($column, $searchTerm, $order, $sort), __FILE__, __LINE__);
+ORDER BY %s %s
+%s",
+ array($column, $searchTerm, $order, $sort, $limit), __FILE__, __LINE__);
// Is there at least one record?
if (SQL_NUMROWS($result) > 0) {
'uid' => $uid,
'reward' => $reward,
'costs' => $costs,
- 'payment_id' => $paymentId,
'status' => $status
);
}
// Inserts an url by given data array and return the insert id
function SURFBAR_INSERT_URL_BY_ARRAY ($urlData) {
+ // Get userid
+ $uid = bigintval($urlData['uid']);
+
+ // Is the id set?
+ if (empty($uid)) $uid = 0;
+
// Just run the insert query for now
- SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_surfbar_urls (userid, url, reward, costs, payment_id, status) VALUES(%s, '%s', %s, %s, %d, '%s')",
+ SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_surfbar_urls (userid, url, reward, costs, status) VALUES('%s', '%s', %s, %s, '%s')",
array(
- bigintval($urlData['uid']),
+ $uid,
$urlData['url'],
(float)$urlData['reward'],
(float)$urlData['costs'],
- bigintval($urlData['payment_id']),
$urlData['status']
), __FILE__, __LINE__
);
eval($eval);
// Send the notification out
- SEND_ADMIN_NOTIFICATION($subject, $templateName, $content, $content['uid']);
+ return SEND_ADMIN_NOTIFICATION($subject, $templateName, $content, $content['uid']);
}
// Notify the user about the performed action
function SURFBAR_NOTIFY_USER ($messageType, $content) {
+ // Skip notification if userid is zero
+ if ($content['uid'] == 0) {
+ return false;
+ } // END - if
+
// Prepare template name
$templateName = sprintf("member_surfbar_%s", $messageType);
$mailText = LOAD_EMAIL_TEMPLATE($templateName, $content);
// Send the email
- SEND_EMAIL($content['uid'], $subject, $mailText);
+ return SEND_EMAIL($content['uid'], $subject, $mailText);
}
// Translate the URL status
function SURFBAR_TRANSLATE_STATUS ($status) {
global $_CONFIG;
// Is the user 0 and user is logged in?
- if (($uid == 0) && (IS_LOGGED_IN())) {
+ if (($uid == 0) && (IS_MEMBER())) {
// Then use this userid
$uid = $GLOBALS['userid'];
} elseif ($uid == 0) {
function SURFBAR_GENERATE_VALIDATION_CODE ($id, $salt="") {
global $_CONFIG, $SURFBAR_CACHE;
+ // @TODO Invalid salt should be refused
+ $SURFBAR_CACHE['salt'] = "INVALID";
+
+ // Get code length from config
+ $length = $_CONFIG['code_length'];
+
+ // Fix length to 10
+ if ($length == 0) $length = 10;
+
// Generate a code until the length matches
$valCode = "";
- while (strlen($valCode) != $_CONFIG['code_length']) {
+ while (strlen($valCode) != $length) {
// Is the salt set?
if (empty($salt)) {
// Generate random hashed string
}
// ... and now the validation code
- $valCode = GEN_RANDOM_CODE($_CONFIG['code_length'], sha1(SURFBAR_GET_SALT().":".$id), $GLOBALS['userid']);
+ $valCode = GEN_RANDOM_CODE($length, sha1(SURFBAR_GET_SALT().":".$id), $GLOBALS['userid']);
//DEBUG_LOG(__FUNCTION__.":valCode={$valCode}");
} // END - while
}
// Lockdown the userid/id combination (reload lock)
function SURFBAR_LOCKDOWN_ID ($id) {
- //* DEBUG: */ print "LOCK!");
- ///* DEBUG: */ return;
+ //* //DEBUG: */ print "LOCK!");
+ ///* //DEBUG: */ return;
// Just add it to the database
SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_surfbar_locks (userid, url_id) VALUES(%s, %s)",
array($GLOBALS['userid'], bigintval($id)), __FILE__, __LINE__);
}
// Pay points to the user and remove it from the sender
function SURFBAR_PAY_POINTS ($id) {
- global $SURFBAR_CACHE, $_CONFIG;
-
- // Re-configure ref-system to surfbar levels
- $_CONFIG['db_percents'] = "percent";
- $_CONFIG['db_table'] = "surfbar_reflevels";
-
// Remove it from the URL owner
//DEBUG_LOG(__FUNCTION__.":uid=".SURFBAR_GET_USERID().",costs=".SURFBAR_GET_COSTS()."");
- SUB_POINTS(SURFBAR_GET_USERID(), SURFBAR_GET_COSTS());
+ if (SURFBAR_GET_USERID() > 0) {
+ SUB_POINTS(SURFBAR_GET_USERID(), SURFBAR_GET_COSTS());
+ } // END - if
// Book it to the user
//DEBUG_LOG(__FUNCTION__.":uid=".$GLOBALS['userid'].",reward=".SURFBAR_GET_REWARD()."");
$UIDs = array();
// Do we have a current user id?
- if (IS_LOGGED_IN()) {
+ if (IS_MEMBER()) {
// Then add this as well
$UIDs[] = $GLOBALS['userid'];
// Get all userid except logged in one
$result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_surfbar_urls
-WHERE userid != %s AND status='CONFIRMED'
+WHERE userid NOT IN (%s,0) AND status='CONFIRMED'
GROUP BY userid
ORDER BY userid ASC",
array($GLOBALS['userid']), __FILE__, __LINE__);
global $_CONFIG;
// Count all users in surfbar modue and return the value
- $result = SQL_QUERY_ESC("SELECT COUNT(id) FROM "._MYSQL_PREFIX."_surfbar_stats WHERE (UNIX_TIMESTAMP() - UNIX_TIMESTAMP(last_online)) >= %s",
+ $result = SQL_QUERY_ESC("SELECT id
+FROM "._MYSQL_PREFIX."_surfbar_stats
+WHERE (UNIX_TIMESTAMP() - UNIX_TIMESTAMP(last_online)) <= %s
+GROUP BY userid",
array($_CONFIG['online_timeout']), __FILE__, __LINE__);
// Fetch count
- list($cnt) = SQL_FETCHROW($result);
+ $cnt = SQL_NUMROWS($result);
// Free result
SQL_FREERESULT($result);
// Return result
return $cnt;
}
-// Determine next id for surfbar view, always call this before you call other
-// getters below this function!!!
-function SURFBAR_GET_NEXT_ID ($id = 0) {
- global $SURFBAR_CACHE, $_CONFIG;
+// Determine waiting time for one URL
+function SURFBAR_DETERMINE_WAIT_TIME () {
+ global $_CONFIG;
- // Default is no id!
- $nextId = 0; $randNum = 0;
+ // Init time
+ $time = 0;
- // Is the ID set?
- if ($id == 0) {
- // Prepare some arrays
- $IDs = array();
- $USE = array();
- $ignored = array();
+ // Which payment model do we have?
+ if ($_CONFIG['surfbar_pay_model'] == "STATIC") {
+ // Static model
+ $time = $_CONFIG['surfbar_static_time'];
+ } else {
+ // Dynamic
+ die("DYNAMIC payment model not yet finished!");
+ }
+
+ // Return value
+ return $time;
+}
+// Changes the status of an URL from given to other
+function SURFBAR_CHANGE_STATUS ($id, $prevStatus, $newStatus) {
+ // Get URL data for status comparison
+ $data = SURFBAR_GET_URL_DATA($id);
+
+ // Is the status like prevStatus is saying?
+ if ($data[$id]['status'] != $prevStatus) {
+ // No, then abort here
+ return false;
+ } // END - if
+
+ // Update the status now
+ SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_surfbar_urls SET status='%s' WHERE id=%s LIMIT 1",
+ array($newStatus, bigintval($id)), __FILE__, __LINE__);
+
+ // Was that fine?
+ if (SQL_AFFECTEDROWS() != 1) {
+ // No, something went wrong
+ return false;
+ } // END - if
- // Get all id from locks within the timestamp
- $result = SQL_QUERY_ESC("SELECT id, url_id, UNIX_TIMESTAMP(last_surfed)
+ // Prepare content for notification routines
+ $data[$id]['uid'] = $data[$id]['userid'];
+ $data[$id]['frametester'] = FRAMETESTER($data[$id]['url']);
+ $data[$id]['reward'] = TRANSLATE_COMMA($data[$id]['reward']);
+ $data[$id]['costs'] = TRANSLATE_COMMA($data[$id]['costs']);
+ $data[$id]['status'] = SURFBAR_TRANSLATE_STATUS($newStatus);
+ $data[$id]['registered'] = MAKE_DATETIME($data[$id]['registered'], "2");
+ $newStatus = strtolower($newStatus);
+
+ // Send admin notification
+ SURFBAR_NOTIFY_ADMIN("url_{$newStatus}", $data[$id]);
+
+ // Send user notification
+ SURFBAR_NOTIFY_USER("url_{$newStatus}", $data[$id]);
+
+ // All done!
+ return true;
+}
+// "Getter" for lock ids array
+function SURFBAR_GET_LOCK_IDS () {
+ // Prepare some arrays
+ $IDs = array();
+ $USE = array();
+ $ignored = array();
+
+ // Get all id from locks within the timestamp
+ $result = SQL_QUERY_ESC("SELECT id, url_id, UNIX_TIMESTAMP(last_surfed) AS last
FROM
"._MYSQL_PREFIX."_surfbar_locks
WHERE
userid=%s
ORDER BY
id ASC", array($GLOBALS['userid']),
- __FILE__, __LINE__);
-
- // Load all entries
- while (list($id, $url, $last) = SQL_FETCHROW($result)) {
- //DEBUG_LOG(__FUNCTION__.":next - id={$id},url={$url},last={$last}");
- // Skip entries that are too old
- if (($last < (time() - SURFBAR_GET_DATA('surf_lock'))) && (!in_array($url, $ignored))) {
- //DEBUG_LOG(__FUNCTION__.":okay - id={$id},url={$url},last={$last}");
- // Add only if missing or bigger
- if ((!isset($IDs[$url])) || ($IDs[$url] <= $last)) {
- // Add this ID
- //DEBUG_LOG(__FUNCTION__.":ADD - id={$id},url={$url},last={$last}");
- $IDs[$url] = $last;
- $USE[$url] = $id;
- } // END - if
- } else {
- // Ignore these old entries!
- //DEBUG_LOG(__FUNCTION__.":ignore - id={$id},url={$url},last={$last}");
- $ignored[] = $url;
- unset($IDs[$url]);
- unset($USE[$url]);
- }
- } // END - while
-
- // Free result
- SQL_FREERESULT($result);
+ __FILE__, __LINE__);
+
+ // Load all entries
+ while (list($lid, $url, $last) = SQL_FETCHROW($result)) {
+ // Debug message
+ //DEBUG_LOG(__FUNCTION__.":next - lid={$lid},url={$url},rest=".(time() - $last)."/".SURFBAR_GET_DATA('surf_lock')."");
+
+ // Skip entries that are too old
+ if (($last > (time() - SURFBAR_GET_DATA('surf_lock'))) && (!in_array($url, $ignored))) {
+ // Debug message
+ //DEBUG_LOG(__FUNCTION__.":okay - lid={$lid},url={$url},last={$last}");
+
+ // Add only if missing or bigger
+ if ((!isset($IDs[$url])) || ($IDs[$url] > $last)) {
+ // Debug message
+ //DEBUG_LOG(__FUNCTION__.":ADD - lid={$lid},url={$url},last={$last}");
+
+ // Add this ID
+ $IDs[$url] = $last;
+ $USE[$url] = $lid;
+ } // END - if
+ } else {
+ // Debug message
+ //DEBUG_LOG(__FUNCTION__.":ignore - lid={$lid},url={$url},last={$last}");
- // Shall we add some ids?
- $ADD = "";
- if (count($USE) > 0) {
- $ADD = " AND l.id IN (".implode(",", $USE).")";
- } // END - if
+ // Ignore these old entries!
+ $ignored[] = $url;
+ unset($IDs[$url]);
+ unset($USE[$url]);
+ }
+ } // END - while
- // Determine depleted user account
- $UIDs = SURFBAR_DETERMINE_DEPLETED_USERIDS();
+ // Free result
+ SQL_FREERESULT($result);
- // Count max availabe entries
- $result = SQL_QUERY("SELECT sbu.id AS cnt
+ // Return array
+ return $USE;
+}
+// "Getter" for maximum random number
+function SURFBAR_GET_MAX_RANDOM ($UIDs, $ADD) {
+ global $_CONFIG;
+ // Count max availabe entries
+ $result = SQL_QUERY("SELECT sbu.id AS cnt
FROM "._MYSQL_PREFIX."_surfbar_urls AS sbu
-LEFT JOIN "._MYSQL_PREFIX."_payments AS p
-ON sbu.payment_id=p.id
LEFT JOIN "._MYSQL_PREFIX."_surfbar_salts AS sbs
ON sbu.id=sbs.url_id
LEFT JOIN "._MYSQL_PREFIX."_surfbar_locks AS l
WHERE sbu.userid NOT IN (".implode(",", $UIDs).") AND sbu.status='CONFIRMED'".$ADD."
GROUP BY sbu.id", __FILE__, __LINE__);
- // Log last query
- //DEBUG_LOG(__FUNCTION__.":lastQuery=".$_CONFIG['db_last_query']."|numRows=".SQL_NUMROWS($result)."|Affected=".SQL_AFFECTEDROWS($result)."");
+ // Log last query
+ //DEBUG_LOG(__FUNCTION__.":lastQuery=".$_CONFIG['db_last_query']."|numRows=".SQL_NUMROWS($result)."|Affected=".SQL_AFFECTEDROWS()."");
- // Fetch max rand
- $maxRand = SQL_NUMROWS($result);
+ // Fetch max rand
+ $maxRand = SQL_NUMROWS($result);
- // Free result
- SQL_FREERESULT($result);
+ // Free result
+ SQL_FREERESULT($result);
+
+ // Return value
+ return $maxRand;
+}
+// Determine next id for surfbar or get data for given id, always call this before you call other
+// getters below this function!!!
+function SURFBAR_DETERMINE_NEXT_ID ($id = 0) {
+ global $SURFBAR_CACHE, $_CONFIG;
+
+ // Default is no id and no random number
+ $nextId = 0;
+ $randNum = 0;
+
+ // Is the ID set?
+ if ($id == 0) {
+ // Get array with lock ids
+ $USE = SURFBAR_GET_LOCK_IDS();
+
+ // Shall we add some URL ids to ignore?
+ $ADD = "";
+ if (count($USE) > 0) {
+ // Ignore some!
+ $ADD = " AND sbu.id NOT IN (";
+ foreach ($USE as $url_id => $lid) {
+ // Add URL id
+ $ADD .= $url_id.",";
+ } // END - foreach
+
+ // Add closing bracket
+ $ADD = substr($ADD, 0, -1) . ")";
+ } // END - if
+
+ // Determine depleted user account
+ $UIDs = SURFBAR_DETERMINE_DEPLETED_USERIDS();
+
+ // Get maximum randomness factor
+ $maxRand = SURFBAR_GET_MAX_RANDOM($UIDs, $ADD);
// If more than one URL can be called generate the random number!
if ($maxRand > 1) {
// Generate random number
- $randNum = mt_rand(0, $maxRand);
+ $randNum = mt_rand(0, ($maxRand - 1));
} // END - if
// And query the database
//DEBUG_LOG(__FUNCTION__.":randNum={$randNum},maxRand={$maxRand},surfLock=".SURFBAR_GET_DATA('surf_lock')."");
- $result = SQL_QUERY_ESC("SELECT sbu.id, sbu.userid, sbu.url, sbs.last_salt, sbu.reward, sbu.costs, sbu.views_total, p.time, UNIX_TIMESTAMP(l.last_surfed) AS last_surfed
+ $result = SQL_QUERY_ESC("SELECT sbu.id, sbu.userid, sbu.url, sbs.last_salt, sbu.reward, sbu.costs, sbu.views_total, UNIX_TIMESTAMP(l.last_surfed) AS last_surfed
FROM "._MYSQL_PREFIX."_surfbar_urls AS sbu
-LEFT JOIN "._MYSQL_PREFIX."_payments AS p
-ON sbu.payment_id=p.id
LEFT JOIN "._MYSQL_PREFIX."_surfbar_salts AS sbs
ON sbu.id=sbs.url_id
LEFT JOIN "._MYSQL_PREFIX."_surfbar_locks AS l
);
} else {
// Get data from specified id number
- $result = SQL_QUERY_ESC("SELECT sbu.id, sbu.userid, sbu.url, sbs.last_salt, sbu.reward, sbu.costs, sbu.views_total, p.time, UNIX_TIMESTAMP(l.last_surfed) AS last_surfed
+ $result = SQL_QUERY_ESC("SELECT sbu.id, sbu.userid, sbu.url, sbs.last_salt, sbu.reward, sbu.costs, sbu.views_total, UNIX_TIMESTAMP(l.last_surfed) AS last_surfed
FROM "._MYSQL_PREFIX."_surfbar_urls AS sbu
-LEFT JOIN "._MYSQL_PREFIX."_payments AS p
-ON sbu.payment_id=p.id
LEFT JOIN "._MYSQL_PREFIX."_surfbar_salts AS sbs
ON sbu.id=sbs.url_id
LEFT JOIN "._MYSQL_PREFIX."_surfbar_locks AS l
}
// Is there an id number?
- //DEBUG_LOG(__FUNCTION__.":lastQuery=".$_CONFIG['db_last_query']."|numRows=".SQL_NUMROWS($result)."|Affected=".SQL_AFFECTEDROWS($result)."");
+ //DEBUG_LOG(__FUNCTION__.":lastQuery=".$_CONFIG['db_last_query']."|numRows=".SQL_NUMROWS($result)."|Affected=".SQL_AFFECTEDROWS()."");
if (SQL_NUMROWS($result) == 1) {
// Load/cache data
//DEBUG_LOG(__FUNCTION__.":count(".count($SURFBAR_CACHE).") - BEFORE");
$SURFBAR_CACHE = merge_array($SURFBAR_CACHE, SQL_FETCHARRAY($result));
//DEBUG_LOG(__FUNCTION__.":count(".count($SURFBAR_CACHE).") - AFTER");
- // Is the time there?
- if (is_null($SURFBAR_CACHE['time'])) {
- // Then repair it wit the static!
- //DEBUG_LOG(__FUNCTION__.":time - STATIC!");
- $SURFBAR_CACHE['time'] = $_CONFIG['surfbar_static_time'];
- } // END - if
+ // Determine waiting time
+ $SURFBAR_CACHE['time'] = SURFBAR_DETERMINE_WAIT_TIME();
// Is the last salt there?
if (is_null($SURFBAR_CACHE['last_salt'])) {
if ((!isset($SURFBAR_CACHE['last_surfed'])) || (is_null($SURFBAR_CACHE['last_surfed']))) {
// Fix it here
//DEBUG_LOG(__FUNCTION__.":last_surfed - FIXED!");
- $SURFBAR_CACHE['last_surfed'] = "0";
+ $SURFBAR_CACHE['last_surfed'] = 0;
} // END - if
// Get base/fixed reward and costs
//DEBUG_LOG(__FUNCTION__.":nextId={$nextId}");
return $nextId;
}
-// ----------------------------------------------------------------------------
+// -----------------------------------------------------------------------------
// PLEASE DO NOT ADD ANY OTHER FUNCTIONS BELOW THIS LINE ELSE THEY "WRAP" THE
// $SURFBAR_CACHE ARRAY!
-// ----------------------------------------------------------------------------
+// -----------------------------------------------------------------------------
// Private getter for data elements
function SURFBAR_GET_DATA ($element) {
global $SURFBAR_CACHE;