************************************************************************/
// Some security stuff...
-if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN()))
-{
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
+
// Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+ADD_DESCR("admin", __FILE__);
// Fix a notice
if (!isset($_GET['u_id'])) $_GET['u_id'] = "";
if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
// Ok, add points and send an email to him...
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
- array($_POST['points'], bigintval($uid)), __FILE__, __LINE__);
+ ADD_POINTS_REFSYSTEM($uid, bigintval($_POST['points']), false, "0", false, "direct");
- // Update mediadata as well
- if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
- // Update database
- MEDIA_UPDATE_ENTRY(array("total_points"), "add", $_POST['points']);
- }
+ // Prepare content
+ $content = array(
+ 'text' => SQL_ESCAPE($_POST['reason']),
+ 'points' => bigintval($_POST['points'])
+ );
// Load email template and send email away
- $msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $uid);
- SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg);
+ $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($uid));
+ SEND_EMAIL(bigintval($uid), ADMIN_ADD_SUBJ, $msg);
}
}
}
if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
// Ok, add points and send an email to him...
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
- array($_POST['points'], bigintval($_GET['u_id'])), __FILE__, __LINE__);
+ ADD_POINTS_REFSYSTEM(bigintval($_GET['u_id']), bigintval($_POST['points']), false, "0", false, "direct");
- // Remember points in constant
- define('__POINTS_VALUE', $_POST['points']);
+ // Prepare content
+ $content = array(
+ 'text' => SQL_ESCAPE($_POST['reason']),
+ 'points' => bigintval($_POST['points'])
+ );
// Message laden
- $msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $_GET['u_id']);
+ $msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($_GET['u_id']));
- SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg);
+ SEND_EMAIL(bigintval($_GET['u_id']), ADMIN_ADD_SUBJ, $msg);
LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
} else {
// Opps, missing form here
define('__USER_VALUE', "<A href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</A>");
- define('__UID_VALUE', $_GET['u_id']);
+ define('__UID' , bigintval($_GET['u_id']));
LOAD_TEMPLATE("admin_add_points");
}
} else {
projects / mailer.git / blobdiff