X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=beg.php;h=d69cd6b49e678a3511fbc4fec8a31f2a7404e4c6;hp=ae27b8168f4450c241d1426caba25d3333b17ff6;hb=ccc4a69ce9b17aa8d7b1554a3b2b017db091821b;hpb=08b3c51b70b6498fd92a2760979d64470ad1b586 diff --git a/beg.php b/beg.php index ae27b8168f..d69cd6b49e 100644 --- a/beg.php +++ b/beg.php @@ -10,7 +10,12 @@ * -------------------------------------------------------------------- * * Kurzbeschreibung : Bettel-Link fuer Mitglieder * * -------------------------------------------------------------------- * - * * + * $Revision:: $ * + * $Date:: $ * + * $Tag:: 0.2.1-FINAL $ * + * $Author:: $ * + * Needs to be in all Files and every File needs "svn propset * + * svn:keywords Date Revision" (autoprobset!) at least!!!!!! * * -------------------------------------------------------------------- * * Copyright (c) 2003 - 2008 by Roland Haeder * * For more information visit: http://www.mxchange.org * @@ -31,30 +36,30 @@ * MA 02110-1301 USA * ************************************************************************/ -// Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) ) -require("inc/libs/security_functions.php"); +// Load security stuff here +require('inc/libs/security_functions.php'); // Init "action" and "what" -global $what, $action, $startTime; $GLOBALS['startTime'] = microtime(true); -$GLOBALS['what'] = ""; $GLOBALS['action'] = ""; +$GLOBALS['what'] = ''; +$GLOBALS['action'] = ''; // Set module -$GLOBALS['module'] = "beg"; +$GLOBALS['module'] = 'beg'; $GLOBALS['refid'] = 0; -$CSS = -1; +$GLOBALS['output_mode'] = -1; $msg = null; // Load the required file(s) -require("inc/config.php"); +require('inc/config-global.php'); -// Is the "beg" extension active? -REDIRCT_ON_UNINSTALLED_EXTENSION("beg"); +// Is the 'beg' extension active? +REDIRCT_ON_UNINSTALLED_EXTENSION('beg'); // Is the script installed? -if (isBooleanConstantAndTrue('mxchange_installed')) { +if (isInstalled()) { // Check for userid - if (!empty($_GET['uid'])) { + if (REQUEST_ISSET_GET('uid')) { // Init variables $uid = 0; $result = false; @@ -64,24 +69,24 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { $pay = false; // Validate if it is not a number - if ("".($_GET['uid'] + 0)."" !== "".$_GET['uid']."") { - if (EXT_IS_ACTIVE("nickname")) { + if (''.(REQUEST_GET('uid') + 0).'' !== ''.REQUEST_GET('uid').'') { + if (EXT_IS_ACTIVE('nickname')) { // Maybe we have found a nickname? $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE nickname='%s' LIMIT 1", - array($_GET['uid']), __FILE__, __LINE__); + array(REQUEST_GET('uid')), __FILE__, __LINE__); } else { // Nickname entered but nickname is not active - $msg = constant('CODE_EXTENSION_PROBLEM'); + $msg = getCode('EXTENSION_PROBLEM'); $uid = -1; } } else { // Direct userid $result = SQL_QUERY_ESC("SELECT userid, beg_clicks, ref_payout, status, last_online FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", - array(bigintval($_GET['uid'])), __FILE__, __LINE__); + array(bigintval(REQUEST_GET('uid'))), __FILE__, __LINE__); } // Check if locked in so don't pay points - $status = "failed"; + $status = 'failed'; // Check if account was found if (SQL_NUMROWS($result) == 1) { @@ -89,7 +94,7 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { list($uid, $clicks, $ref_payout, $status, $last) = SQL_FETCHROW($result); // Account confirmed? - if ($status == "CONFIRMED") { + if ($status == 'CONFIRMED') { // Secure userid $uid = bigintval($uid); @@ -99,10 +104,10 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { $points = mt_rand((getConfig('beg_points') * 100000), (getConfig('beg_points_max') * 100000)) / 100000; // Set nickname / userid for the template(s - define('__BEG_UID' , SQL_ESCAPE($_GET['uid'])); + define('__BEG_UID' , REQUEST_GET('uid')); define('__BEG_CLICKS', ($clicks + 1)); - define('__BEG_BANNER', LOAD_TEMPLATE("beg_banner", true)); - define('__BEG_POINTS', TRANSLATE_COMMA($points)); + define('__BEG_BANNER', LOAD_TEMPLATE('beg_banner', true)); + define('__BEG_POINTS', translateComma($points)); } else { // Other status $uid = 0; @@ -116,14 +121,14 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { if (($uid > 0) && (getConfig('beg_uid') != $uid)) { // Update counter SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET beg_clicks=beg_clicks+1 WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1", - array($uid), __FILE__, __LINE__); + array($uid), __FILE__, __LINE__); // Check for last entry for userid w/o IP number - $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_beg_ips` WHERE (timeout > (UNIX_TIMESTAMP() - ".getConfig('beg_timeout').") OR (timeout > (UNIX_TIMESTAMP() - ".getConfig('beg_uid_timeout').") AND userid=%s)) AND (remote_ip='%s' OR sid='%s') LIMIT 1", - array($uid, GET_REMOTE_ADDR(), session_id()), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT `id` FROM `{!_MYSQL_PREFIX!}_beg_ips` WHERE (timeout > (UNIX_TIMESTAMP() - ".getConfig('beg_timeout').") OR (timeout > (UNIX_TIMESTAMP() - ".getConfig('beg_uid_timeout').") AND `userid`=%s)) AND (remote_ip='%s' OR sid='%s') LIMIT 1", + array($uid, detectRemoteAddr(), session_id()), __FILE__, __LINE__); // Entry not found, points set and not logged in? - if (((SQL_NUMROWS($result) == 0) || (IS_ADMIN())) && ($points > 0) && (!IS_MEMBER()) && (getConfig('beg_pay_mode') == "NONE")) { + if (((SQL_NUMROWS($result) == 0) || (IS_ADMIN())) && ($points > 0) && (!IS_MEMBER()) && (getConfig('beg_pay_mode') == 'NONE')) { // Admin is testing? if (!IS_ADMIN()) { @@ -131,13 +136,10 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { // but only when there is no admin begging. // Admins shall be able to test it! SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_beg_ips` (userid, remote_ip,sid, timeout) VALUES ('%s','%s','%s', UNIX_TIMESTAMP())", - array($uid, GET_REMOTE_ADDR(), session_id()), __FILE__, __LINE__); + array($uid, detectRemoteAddr(), session_id()), __FILE__, __LINE__); // Was is successfull? - if (SQL_AFFECTEDROWS() == 1) { - // Okay! - $pay = true; - } // END - if + $pay (SQL_AFFECTEDROWS() == 1); } else { // Is admin! $pay = true; @@ -147,20 +149,20 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { if ($pay === true) { // Add points to user or begging rallye account if (BEG_ADD_POINTS($uid, $points)) { - // Set "done" message - define('__BEG_MSG', LOAD_TEMPLATE("beg_done", true)); + // Set 'done' message + $content['msg'] = LOAD_TEMPLATE('beg_done', true); } else { // Error! - define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true)); + $content['msg'] = LOAD_TEMPLATE('beg_failed', true); } } else { // Error! - define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true)); + $content['msg'] = LOAD_TEMPLATE('beg_failed', true); } } elseif (IS_MEMBER()) { // Logged in user found! - define('__BEG_MSG', LOAD_TEMPLATE("beg_login", true)); - } elseif (getConfig('beg_pay_mode') != "NONE") { // Other pay-mode active! + $content['msg'] = LOAD_TEMPLATE('beg_login', true); + } elseif (getConfig('beg_pay_mode') != 'NONE') { // Other pay-mode active! // Prepare content for template $content = array( 'clicks' => constant('__BEG_CLICKS'), @@ -169,70 +171,73 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { ); // Load message template depending on pay-mode - define('__BEG_MSG', LOAD_TEMPLATE("beg_pay_mode_".strtolower(getConfig('beg_pay_mode')), true, $content)); + $content['msg'] = LOAD_TEMPLATE('beg_pay_mode_'.strtolower(getConfig('beg_pay_mode')), true, $content); $pay = true; } else { // Clicked received while reload lock is active - define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true)); + $content['msg'] = LOAD_TEMPLATE('beg_failed', true); } // Free memory SQL_FREERESULT($result); // Include header - LOAD_INC_ONCE("inc/header.php"); + loadIncludeOnce('inc/header.php'); // Load final template - LOAD_TEMPLATE("beg_link"); + LOAD_TEMPLATE('beg_link', false, $content); // Tracker code enabled? (We don't track users here! - if ((getConfig('beg_pay_mode') != "NONE") && ($pay)) { + if ((getConfig('beg_pay_mode') != 'NONE') && ($pay === true)) { // Prepare content for template // @TODO Opps, what is missing here??? $content = array( ); // Include config-depending template - LOAD_TEMPLATE("beg_pay_code_".strtolower(getConfig('beg_pay_mode')), false, $content); - } elseif ((!$pay) && (!defined('__BEG_MSG'))) { + LOAD_TEMPLATE('beg_pay_code_'.strtolower(getConfig('beg_pay_mode')), false, $content); + } elseif ((!$pay) && (!isset($content['msg']))) { // Cannot pay! :-( - define('__BEG_MSG', LOAD_TEMPLATE("beg_failed", true)); + $content['msg'] = LOAD_TEMPLATE('beg_failed', true); } // Include footer - LOAD_INC_ONCE("inc/footer.php"); - } elseif (($status != "CONFIRMED") && ($status != "failed")) { + loadIncludeOnce('inc/footer.php'); + } elseif (($status != 'CONFIRMED') && ($status != 'failed')) { // Maybe locked/unconfirmed account? - $msg = GEN_ERROR_CODE_FROM_ACCOUNT_STATUS($status); - } elseif (($uid == "0") || ($status == "failed")) { + $msg = generateErrorCodeFromUserStatus($status); + } elseif (($uid == '0') || ($status == 'failed')) { // Inalid or locked account, so let's find out $result = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE nickname='%s' LIMIT 1", - array($_GET['uid']), __FILE__, __LINE__); + array(REQUEST_GET('uid')), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { // Locked account - $msg = constant('CODE_ACCOUNT_LOCKED'); + $msg = getCode('ACCOUNT_LOCKED'); } else { // Invalid nickname! (404) - $msg = constant('CODE_USER_404'); + $msg = getCode('USER_404'); } // Free memory SQL_FREERESULT($result); } elseif ($uid == getConfig('beg_uid')) { // Webmaster's ID cannot beg for points! - $msg = constant('CODE_BEG_SAME_AS_OWN'); + $msg = getCode('BEG_SAME_AS_OWN'); } // Reload to index module - if ((!empty($msg)) && (!empty($msg))) LOAD_URL("modules.php?module=index&msg=".$msg."&ext=beg"); + if ((!empty($msg)) && (!empty($msg))) redirectToUrl('modules.php?module=index&msg='.$msg.'&ext=beg'); } else { // No userid entered - LOAD_URL("modules.php?module=index"); + redirectToUrl('modules.php?module=index'); } } else { // You have to install first! - LOAD_URL("install.php"); + redirectToUrl('install.php'); } // Really all done here... ;-) +shutdown(); + +// ?>