X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=beg.php;h=2c31d0330e8fd7774765e2ff6c8386e702f36c56;hp=712a362f90fd947fe7cf6f2692355146203d7609;hb=aaeab8d02fbf455df9b60ab0b85c999dd2da9069;hpb=60494e212a67fe360bfbb481eb4928480a6f379b diff --git a/beg.php b/beg.php index 712a362f90..2c31d0330e 100644 --- a/beg.php +++ b/beg.php @@ -48,15 +48,21 @@ $msg = null; // Load the required file(s) require ("inc/config.php"); +// Is the "beg" extension active? +if (!EXT_IS_ACTIVE("beg")) { + // Redirect to index + LOAD_URL("modules.php?module=index&msg=".CODE_EXTENSION_PROBLEM."&ext=beg"); +} // END - if + // Is the script installed? -if (defined('mxchange_installed') && (mxchange_installed)) { +if (isBooleanConstantAndTrue('mxchange_installed')) { // Check for userid if (!empty($_GET['uid'])) { // Init user ID $uid = 0; // Validate if it is not a number - if (bigintval($_GET['uid']) !== "".$_GET['uid']."") { + if ("".($_GET['uid'] + 0)."" !== "".$_GET['uid']."") { if (EXT_IS_ACTIVE("nickname")) { // Maybe we have found a nickname? $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM "._MYSQL_PREFIX."_user_data WHERE nickname='%s' LIMIT 1", @@ -69,16 +75,16 @@ if (defined('mxchange_installed') && (mxchange_installed)) { } } else { // Direct userid - $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array(bigintval($_GET['uid'])), __FILE__, __LINE__); } // Check if locked in so don't pay points $login = false; $status = "failed"; - if (IS_LOGGED_IN()) { + if (IS_MEMBER()) { // Logged in user detected! $login = true; - } + } // END - if // Check if account was found if ((SQL_NUMROWS($result) == 1) && ($result != false)) { @@ -89,12 +95,12 @@ if (defined('mxchange_installed') && (mxchange_installed)) { $uid = bigintval($uid); // Calculate beg points - srand((double)microtime() * 10000000000 / time()); + mt_srand((double)microtime() * 10000000000 / time()); // Multiply configured values with 100000 and divide with 100000 so we can also handle small values // If we need more number behind the decimal dot then we just need to increase all these three // numbers matching to the numbers behind the decimal dot. Simple! ;-) - $points = rand(($_CONFIG['beg_points'] * 100000), ($_CONFIG['beg_points_max'] * 100000)) / 100000; + $points = mt_rand(($_CONFIG['beg_points'] * 100000), ($_CONFIG['beg_points_max'] * 100000)) / 100000; // Set nickname / userid for the template(s define('__BEG_UID' , $_GET['uid']); @@ -103,7 +109,7 @@ if (defined('mxchange_installed') && (mxchange_installed)) { define('__BEG_POINTS', TRANSLATE_COMMA($points)); } else { // Other status - $uid = "0"; + $uid = 0; } } @@ -112,12 +118,12 @@ if (defined('mxchange_installed') && (mxchange_installed)) { if (($uid > 0) && ($_CONFIG['beg_uid'] != $uid)) { // Update counter - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET beg_clicks=beg_clicks+1 WHERE userid=%d AND status='CONFIRMED' LIMIT 1", + $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET beg_clicks=beg_clicks+1 WHERE userid=%s AND status='CONFIRMED' LIMIT 1", array($uid), __FILE__, __LINE__); // Check for last entry for userid w/o IP number - $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_beg_ips WHERE (timeout > ".(time() - $_CONFIG['beg_timeout'])." OR (timeout > ".(time() - $_CONFIG['beg_uid_timeout'])." AND userid=%d)) AND remote_ip='%s' LIMIT 1", - array($uid, getenv('REMOTE_ADDR')), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_beg_ips WHERE (timeout > (UNIX_TIMESTAMP() - ".$_CONFIG['beg_timeout'].") OR (timeout > (UNIX_TIMESTAMP() - ".$_CONFIG['beg_uid_timeout'].") AND userid=%s)) AND remote_ip='%s' LIMIT 1", + array($uid, GET_REMOTE_ADDR()), __FILE__, __LINE__); if ((SQL_NUMROWS($result) == 0) && ($points > 0) && (!$login)) { // Free memory SQL_FREERESULT($result); @@ -126,18 +132,18 @@ if (defined('mxchange_installed') && (mxchange_installed)) { // Remember remote address, userid and timestamp for next click // but only when there is no admin begging. // Admins shall be able to test it! - $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_beg_ips (userid, remote_ip, timeout) VALUES('%s', '%s', UNIX_TIMESTAMP())", - array($uid, getenv('REMOTE_ADDR')), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_beg_ips (userid, remote_ip, timeout) VALUES('%s','%s', UNIX_TIMESTAMP())", + array($uid, GET_REMOTE_ADDR()), __FILE__, __LINE__); } // Set mode depending on how many mails the member has to confirm $locked = false; - if (($ref_payout > 0) && ($_CONFIG['allow_direct_pay'] == 'N')) $locked = true; + if (($ref_payout > 0) && ($_CONFIG['allow_direct_pay'] == "N")) $locked = true; // Is begging rallye active? - if ($_CONFIG['beg_rallye'] == 'Y') { + if ($_CONFIG['beg_rallye'] == "Y") { // Add points to rallye account - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET beg_points=beg_points+%s WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET beg_points=beg_points+%s WHERE userid=%s LIMIT 1", array($points, $uid), __FILE__, __LINE__); } else { // Add points to account @@ -148,14 +154,7 @@ if (defined('mxchange_installed') && (mxchange_installed)) { // Subtract begged points from member account if the admin has selected one if ($_CONFIG['beg_uid'] > 0) { // Subtract from this account - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET used_points=used_points+%s WHERE userid=%d LIMIT 1", - array($points, bigintval($_CONFIG['beg_uid'])), __FILE__, __LINE__); - - // Update mediadata as well - if (GET_EXT_VERSION("mediadata") >= "0.0.4") { - // Update database - MEDIA_UPDATE_ENTRY(array("total_points"), "sub", $points); - } + SUB_POINTS($_CONFIG['beg_uid'], $points); } // Set message @@ -208,8 +207,7 @@ if (defined('mxchange_installed') && (mxchange_installed)) { } // Reload to index module - die("-".$msg."-"); - if ((!empty($msg)) && (!empty($msg))) LOAD_URL("modules.php?module=index&msg=".$msg); + if ((!empty($msg)) && (!empty($msg))) LOAD_URL("modules.php?module=index&msg=".$msg."&ext=beg"); } else { // No userid entered LOAD_URL("modules.php?module=index");