************************************************************************/
// Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
+if (!defined('__SECURITY')) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4)."/security.php";
require($INC);
}
// Add description as navigation point
-ADD_DESCR("guest", basename(__FILE__));
+ADD_DESCR("guest", __FILE__);
$MODE = "";
if (!empty($_GET['mode']))
if (!empty($_GET['hash']))
{
// Lookup sponsor
- $result = SQL_QUERY_ESC("SELECT id, status, salut, surname, family,
+ $result = SQL_QUERY_ESC("SELECT id, status, gender, surname, family,
company, position, tax_ident,
street_nr1, street_nr2, country, zip, city, email, phone, fax, cell,
points_amount AS points, last_pay AS pay, last_curr AS curr
// Sponsor found, load his data...
$SPONSOR = SQL_FETCHARRAY($result);
- // Translate salut and comma
- $SPONSOR['salut'] = TRANSLATE_SEX($SPONSOR['salut']);
+ // Translate gender and comma
+ $SPONSOR['gender'] = TRANSLATE_GENDER($SPONSOR['gender']);
$SPONSOR['points'] = TRANSLATE_COMMA($SPONSOR['points']);
$SPONSOR['pay'] = TRANSLATE_COMMA($SPONSOR['pay']);
if (isset($_POST['ok']))
{
// Check email
- $result = SQL_QUERY_ESC("SELECT id, hash, status, remote_addr, salut, surname, family, sponsor_created
+ $result = SQL_QUERY_ESC("SELECT id, hash, status, remote_addr, gender, surname, family, sponsor_created
FROM "._MYSQL_PREFIX."_sponsor_data
WHERE email='%s' AND (status='UNCONFIRMED' OR status='EMAIL') LIMIT 1",
array($_POST['email']), __FILE__, __LINE__);
$SPONSOR = SQL_FETCHARRAY($result);
// Translate some data
- $SPONSOR['salut'] = TRANSLATE_SEX($SPONSOR['salut']);
+ $SPONSOR['gender'] = TRANSLATE_GENDER($SPONSOR['gender']);
$SPONSOR['sponsor_created'] = MAKE_DATETIME($SPONSOR['sponsor_created']);
// Prepare email and send it to the sponsor
if (isset($_POST['ok']))
{
// Check email
- $result = SQL_QUERY_ESC("SELECT id, hash, remote_addr, salut, surname, family, sponsor_created
+ $result = SQL_QUERY_ESC("SELECT id, hash, remote_addr, gender, surname, family, sponsor_created
FROM "._MYSQL_PREFIX."_sponsor_data
WHERE email='%s' AND id='%s' AND status='CONFIRMED' LIMIT 1",
array($_POST['email'], bigintval($_POST['id'])), __FILE__, __LINE__);
$SPONSOR = SQL_FETCHARRAY($result);
// Translate some data
- $SPONSOR['salut'] = TRANSLATE_SEX($SPONSOR['salut']);
+ $SPONSOR['gender'] = TRANSLATE_GENDER($SPONSOR['gender']);
$SPONSOR['sponsor_created'] = MAKE_DATETIME($SPONSOR['sponsor_created']);
// Generate password
{
// Calculate cookie lifetime, maybe we have to change this so the admin can setup a
// seperate timeout for these two cookies?
- $life = (time() + $CONFIG['online_timeout']);
+ $life = (time() + $_CONFIG['online_timeout']);
// Is confirmed so both is fine and we can continue with login procedure
$login = ((setcookie("sponsorid" , bigintval($_POST['sponsorid']), $life, COOKIE_PATH)) &&
{
// Cookie setup failed!
LOAD_TEMPLATE("admin_settings_saved", false, SPONSPOR_COOKIE_SETUP_FAILED);
- OUTPUT_HTML("<BR>");
+ OUTPUT_HTML("<br />");
// Login formular and other links
LOAD_TEMPLATE("guest_sponsor_login");
$eval = "\$content = SPONSOR_LOGIN_FAILED_".strtoupper($status).";";
eval($eval);
LOAD_TEMPLATE("admin_settings_saved", false, $content);
- OUTPUT_HTML("<BR>");
+ OUTPUT_HTML("<br />");
// Login formular and other links
LOAD_TEMPLATE("guest_sponsor_login");
{
// Account missing or wrong pass! We shall not find this out for the "hacker folks"...
LOAD_TEMPLATE("admin_settings_saved", false, SPONSOR_LOGIN_FAILED_404_WRONG_PASS);
- OUTPUT_HTML("<BR>");
+ OUTPUT_HTML("<br />");
// Login formular and other links
LOAD_TEMPLATE("guest_sponsor_login");
projects / mailer.git / blobdiff