X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=doubler.php;h=791dc3e025881aefc00a0cef03c5d71397b34c3e;hp=8c56144ccf589fb3c87e1e410d36067905e706f7;hb=a6c65fe3bac46ab95bd9e49908c53cd6e3381ff8;hpb=b3f82be7e5ecc294acfe9c00ef75e3dc0c8b43d1 diff --git a/doubler.php b/doubler.php index 8c56144ccf..791dc3e025 100644 --- a/doubler.php +++ b/doubler.php @@ -10,9 +10,14 @@ * -------------------------------------------------------------------- * * Kurzbeschreibung : Punkteverdoppler * * -------------------------------------------------------------------- * - * * + * $Revision:: $ * + * $Date:: $ * + * $Tag:: 0.2.1-FINAL $ * + * $Author:: $ * + * Needs to be in all Files and every File needs "svn propset * + * svn:keywords Date Revision" (autoprobset!) at least!!!!!! * * -------------------------------------------------------------------- * - * Copyright (c) 2003 - 2008 by Roland Haeder * + * Copyright (c) 2003 - 2009 by Roland Haeder * * For more information visit: http://www.mxchange.org * * * * This program is free software; you can redistribute it and/or modify * @@ -31,38 +36,39 @@ * MA 02110-1301 USA * ************************************************************************/ -// Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) ) -require_once("inc/libs/security_functions.php"); +// Load security stuff here +require('inc/libs/security_functions.php'); -// Init "action" and "what" -global $what, $action, $startTime; +// Init start time $GLOBALS['startTime'] = microtime(true); -$GLOBALS['what'] = ""; -$GLOBALS['action'] = ""; // Set module -$GLOBALS['module'] = "doubler"; -$GLOBALS['refid'] = 0; -$CSS = 0; +$GLOBALS['module'] = 'doubler'; +$GLOBALS['output_mode'] = 0; // Load the required file(s) -require ("inc/config.php"); +require('inc/config-global.php'); + +// Set content type +setContentType('text/html'); -// Is the script installed? -if (isBooleanConstantAndTrue('mxchange_installed')) { - // Probe for referral ID - if (!empty($_GET['refid'])) $GLOBALS['refid'] = bigintval($_GET['refid']); +// Is the 'doubler' extension active? +redirectOnUninstalledExtension('doubler'); - // Probe for nickname extension and if a nickname was supplied by URL - $probe_nickname = ((EXT_IS_ACTIVE("nickname")) && (("".round($GLOBALS['refid'])."") != $GLOBALS['refid'])); - if ($probe_nickname) { +// Probe for referal ID +if (isGetRequestElementSet('refid')) $GLOBALS['refid'] = getRequestElement('refid'); + +// Only check this if refid is provided! +if (determineReferalId() > 0) { + // Do we have nickname or userid set? + if (isNicknameUsed(determineReferalId())) { // Nickname in URL, so load the ID - $result = SQL_QUERY_ESC("SELECT userid, status FROM "._MYSQL_PREFIX."_user_data WHERE nickname='%s' LIMIT 1", - array(bigintval($GLOBALS['refid'])), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT `userid`, `status` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `nickname`='%s' LIMIT 1", + array(determineReferalId()), __FILE__, __LINE__); } else { // Direct userid entered - $result = SQL_QUERY_ESC("SELECT userid, status FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", - array(bigintval($GLOBALS['refid'])), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT `userid`, `status` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1", + array(determineReferalId()), __FILE__, __LINE__); } // Load data @@ -71,200 +77,186 @@ if (isBooleanConstantAndTrue('mxchange_installed')) { // Free memory SQL_FREERESULT($result); - $uid = 0; - - // If no account was found set default refid and status to CONFIRMED - if (empty($GLOBALS['refid'])) { - $GLOBALS['refid'] = $_CONFIG['def_refid']; - $status = "CONFIRMED"; - } // END - if - - // Begin with doubler script... - if (isset($_POST['ok'])) { - // Secure points (so only integer/double values are allowed - $_POST['points'] = bigintval($_POST['points']); - - // Begin with doubling process - if ((!empty($_POST['userid'])) && (!empty($_POST['pass'])) && (!empty($_POST['points']))) { - // Probe for nickname extension and if a nickname was entered - $probe_nickname = ((EXT_IS_ACTIVE("nickname")) && (("".round($_POST['userid'])."") != $_POST['userid'])); - if ($probe_nickname) { - // Nickname in URL, so load the ID - $result = SQL_QUERY_ESC("SELECT userid, status, password FROM "._MYSQL_PREFIX."_user_data WHERE nickname='%s' LIMIT 1", - array($_POST['userid']), __FILE__, __LINE__); - } else { - // Direct userid entered - $result = SQL_QUERY_ESC("SELECT userid, status, password FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", - array(bigintval($_POST['userid'])), __FILE__, __LINE__); - } - - // Load data - list($uid, $status, $password) = SQL_FETCHROW($result); - $uid = bigintval($uid); - - // Free result - SQL_FREERESULT($result); - - // Remove any dots and unwanted chars from the points - $_POST['points'] = bigintval(round(REVERT_COMMA($_POST['points']))); - - // Probe for enough points - $probe_points = (($_POST['points'] >= $_CONFIG['doubler_min']) && ($_POST['points'] <= $_CONFIG['doubler_max'])); - - // Check all together - if ((!empty($uid)) && ($password == generateHash($_POST['pass'], substr($password, 0, -40))) && ($status == "CONFIRMED") && ($probe_points)) { - // Nickname resolved to a unique userid or direct userid entered by the member - $DOUBLER_UID = $uid; - - // Calulcate points - $points = GET_TOTAL_DATA($uid, "user_points", "points") - GET_TOTAL_DATA($uid, "user_data", "used_points"); - - // So let's continue with probing his points amount - if (($points - $_CONFIG['doubler_left'] - $_POST['points'] * $_CONFIG['doubler_charge']) >= 0) - { - // Enough points are left so let's continue with the doubling process - // Create doubling "account" width *DOUBLED* points - $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_doubler (userid, refid, points, remote_ip, timemark, completed, is_ref) VALUES ('%s','%s','%s','".GET_REMOTE_ADDR()."', UNIX_TIMESTAMP(), 'N','N')", - array($uid, bigintval($GLOBALS['refid']), bigintval($_POST['points'] * 2)), __FILE__, __LINE__); - - // Subtract entered points - SUB_POINTS($uid, $_POST['points']); - - // Add points to "total payed" including charge - $points = $_POST['points'] - $_POST['points'] * $_CONFIG['doubler_charge']; - UPDATE_CONFIG("doubler_points", $points, "+"); - $_CONFIG['doubler_points'] += $points; - - // Add second line for the referral but only when uid != refid - if (($GLOBALS['refid'] > 0) && ($GLOBALS['refid'] != $uid)) { - // Okay add a refid line and apply refid percents - $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_doubler (userid,refid,points,remote_ip,timemark,completed,is_ref) VALUES ('%s',0,'%s','".GET_REMOTE_ADDR()."',UNIX_TIMESTAMP(),'N','Y')", - array(bigintval($GLOBALS['refid']), bigintval($_POST['points'] * 2 * $_CONFIG['doubler_ref'])), __FILE__, __LINE__); - - // And that's why we dont't want to you more than one referral level of doubler-points. ^^^ - } // END - if - - // Update usage counter - UPDATE_CONFIG("doubler_counter", 1, "+"); - $_CONFIG['doubler_counter']++; - - // Set constant - define('__DOUBLER_MSG', LOAD_TEMPLATE("doubler_reflink", true, $_POST['userid'])); - } else { - // Not enougth points left - define('__ERROR_MSG', DOUBLER_FORM_NO_POINTS_LEFT); - } - } elseif ($status == "CONFIRMED") { - // Account is unconfirmed! - define('__ERROR_MSG', DOUBLER_FORM_WRONG_PASS); - } elseif ($status == "UNCONFIRMED") { - // Account is unconfirmed! - define('__ERROR_MSG', DOUBLER_FORM_STATUS_UNCONFIRMED); - } elseif ($status == "LOCKED") { - // Account is locked by admin / holiday! - define('__ERROR_MSG', DOUBLER_FORM_STATUS_LOCKED); - } elseif ($_POST['points'] < $_CONFIG['doubler_min']) { - // Not enougth points entered - define('__ERROR_MSG', DOUBLER_FORM_POINTS_MIN); - } elseif ($_POST['points'] > $_CONFIG['doubler_max']) { - // Too much points entered - define('__ERROR_MSG', DOUBLER_FORM_POINTS_MAX); - } elseif ($probe_nickname) { - // Cannot resolv nickname -> userid - define('__ERROR_MSG', DOUBLER_FORM_404_NICKNAME); - } else { - // Wrong password or account not found - define('__ERROR_MSG', DOUBLER_FORM_404_MEMBER); - } - } elseif (empty($_POST['userid'])) { - // Login not entered - define('__ERROR_MSG', DOUBLER_FORM_404_LOGIN); - } elseif (empty($_POST['pass'])) { - // Password not entered - define('__ERROR_MSG', DOUBLER_FORM_404_PASSWORD); - } elseif (empty($_POST['points'])) { - // points not entered - define('__ERROR_MSG', DOUBLER_FORM_404_POINTS); +} // END - if + +// Init userid +$userid = 0; + +// If no account was found set default refid and status to CONFIRMED +if (empty($GLOBALS['refid'])) { + // Determine referal id again + $GLOBALS['refid'] = determineReferalId(); + $status = 'CONFIRMED'; +} // END - if + +// Init content array +$content = array( + 'message' => '', +); + +// Begin with doubler script... +if (isFormSent()) { + // Secure points (so only integer/double values are allowed + setRequestPostElement('points', bigintval(postRequestElement('points'))); + + // Begin with doubling process + if ((isPostRequestElementSet('userid')) && (isPostRequestElementSet('pass')) && (isPostRequestElementSet('points'))) { + // Probe for nickname extension and if a nickname was entered + if (isNickNameUsed(postRequestElement('userid'))) { + // Nickname in URL, so load the ID + $result = SQL_QUERY_ESC("SELECT `userid`, `status`, `password` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `nickname`='%s' LIMIT 1", + array(postRequestElement('userid')), __FILE__, __LINE__); + } else { + // Direct userid entered + $result = SQL_QUERY_ESC("SELECT `userid`, `status, `password` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1", + array(bigintval(postRequestElement('userid'))), __FILE__, __LINE__); } - } - // Set messages to nothing - if (!defined('__DOUBLER_MSG')) define('__DOUBLER_MSG', ""); - if (!defined('__ERROR_MSG')) define('__ERROR_MSG' , ""); + // Load data + list($userid, $status, $password) = SQL_FETCHROW($result); + $userid = bigintval($userid); - // Shall I check for points immediately? - if ($_CONFIG['doubler_send_mode'] == "DIRECT") require(PATH."inc/doubler_send.php"); + // Free result + SQL_FREERESULT($result); - // Output header - include(PATH."inc/header.php"); + // Remove any dots and unwanted chars from the points + setRequestPostElement('points', bigintval(round(convertCommaToDot(postRequestElement('points'))))); - // Banner in text - define('__DOUBLER_BANNER', LOAD_TEMPLATE("doubler_banner", true)); + // Probe for enough points + $probe_points = ((postRequestElement('points') >= getConfig('doubler_min')) && (postRequestElement('points') <= getConfig('doubler_max'))); - // Load header/footer templates - define('__DOUBLER_HEADER', LOAD_TEMPLATE("doubler_header", true)); - define('__DOUBLER_FOOTER', LOAD_TEMPLATE("doubler_footer", true)); + // Check all together + if ((!empty($userid)) && ($password == generateHash(postRequestElement('pass'), substr($password, 0, -40))) && ($status == 'CONFIRMED') && ($probe_points)) { + // Nickname resolved to a unique userid or direct userid entered by the member + $GLOBALS['doubler_userid'] = $userid; - if (!empty($uid)) { - // Transfer userid/nickname to constant - define('__REFID', $uid); - } elseif (!empty($GLOBALS['refid'])) { - // Transfer userid/nickname to constant - define('__REFID', $GLOBALS['refid']); - } else { - // Transfer default refid to constant - define('__REFID', $_CONFIG['def_refid']); - } + // Calulcate points + $points = countSumTotalData($userid, 'user_points', 'points') - countSumTotalData($userid, 'user_data', 'used_points'); - // Percent values etc. - define('__CHARGE_VALUE', TRANSLATE_COMMA($_CONFIG['doubler_charge'] * 100)); - define('__REF_VALUE' , TRANSLATE_COMMA($_CONFIG['doubler_ref'] * 100)); - define('__TOTAL_VALUE' , TRANSLATE_COMMA($_CONFIG['doubler_points'])); - define('__MIN_VALUE' , TRANSLATE_COMMA($_CONFIG['doubler_min'])); - define('__MAX_VALUE' , TRANSLATE_COMMA($_CONFIG['doubler_max'])); - - // Text "Enter login" - if (EXT_IS_ACTIVE("nickname")) { - // Choose login/nickname - define('DOUBLER_ENTER_LOGIN', GUEST_ENTER_LOGIN_NICKNAME); - } else { - // Simple login ID - define('DOUBLER_ENTER_LOGIN', GUEST_ENTER_LOGIN); - } + // So let's continue with probing his points amount + if (($points - getConfig('doubler_left') - postRequestElement('points') * getConfig('doubler_charge')) >= 0) { + // Enough points are left so let's continue with the doubling process + // Create doubling "account" width *DOUBLED* points + SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_doubler` (`userid`, `refid`, `points`, `remote_ip`, `timemark`, `completed`, `is_ref`) VALUES ('%s','%s','%s','".detectRemoteAddr()."', UNIX_TIMESTAMP(), 'N','N')", + array($userid, determineReferalId(), bigintval(postRequestElement('points') * 2)), __FILE__, __LINE__); + + // Subtract entered points + subtractPoints('doubler', $userid, postRequestElement('points')); + + // Add points to "total payed" including charge + $points = postRequestElement('points') - postRequestElement('points') * getConfig('doubler_charge'); + updateConfiguration('doubler_points', $points, '+'); + incrementConfigEntry('doubler_points', $points); - // Which mail-send-mode did the admin setup? - switch ($_CONFIG['doubler_send_mode']) - { - case "DIRECT": - define('DOUBLER_PAYOUT_TIME', DOUBLER_PAYOUT_TIME_DIRECT); - break; + // Add second line for the referal but only when userid != refid + if ((determineReferalId() > 0) && (determineReferalId() != $userid)) { + // Okay add a refid line and apply refid percents + SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_doubler` (`userid`, `refid`, `points`, `remote_ip`, `timemark`, `completed`, `is_ref`) VALUES ('%s',0,'%s','".detectRemoteAddr()."',UNIX_TIMESTAMP(),'N','Y')", + array( + determineReferalId(), + bigintval(postRequestElement('points') * 2 * getConfig('doubler_ref')) + ), __FILE__, __LINE__); - case "RESET": - define('DOUBLER_PAYOUT_TIME', DOUBLER_PAYOUT_TIME_RESET); - break; + // And that's why we don't want to you more than one referal level of doubler-points. ^^^ + } // END - if + + // Update usage counter + updateConfiguration('doubler_counter', 1, '+'); + + // Set constant + $content['message'] = loadTemplate('doubler_reflink', true, postRequestElement('userid')); + } else { + // Not enougth points left + $content['message'] = getMessage('DOUBLER_FORM_NO_POINTS_LEFT'); + } + } elseif ($status == 'CONFIRMED') { + // Account is unconfirmed! + $content['message'] = getMessage('DOUBLER_FORM_WRONG_PASS'); + } elseif ($status == 'UNCONFIRMED') { + // Account is unconfirmed! + $content['message'] = getMessage('DOUBLER_FORM_STATUS_UNCONFIRMED'); + } elseif ($status == 'LOCKED') { + // Account is locked by admin / holiday! + $content['message'] = getMessage('DOUBLER_FORM_STATUS_LOCKED'); + } elseif (postRequestElement('points') < getConfig('doubler_min')) { + // Not enougth points entered + $content['message'] = getMessage('DOUBLER_FORM_POINTS_MIN'); + } elseif (postRequestElement('points') > getConfig('doubler_max')) { + // Too much points entered + $content['message'] = getMessage('DOUBLER_FORM_POINTS_MAX'); + } elseif (isNickNameUsed(postRequestElement('userid'))) { + // Cannot resolv nickname -> userid + $content['message'] = getMessage('DOUBLER_FORM_404_NICKNAME'); + } else { + // Wrong password or account not found + $content['message'] = getMessage('DOUBLER_FORM_404_MEMBER'); + } + } elseif (!isPostRequestElementSet('userid')) { + // Login not entered + $content['message'] = getMessage('DOUBLER_FORM_404_LOGIN'); + } elseif (!isPostRequestElementSet('pass')) { + // Password not entered + $content['message'] = getMessage('DOUBLER_FORM_404_PASSWORD'); + } elseif (!isPostRequestElementSet('points')) { + // points not entered + $content['message'] = getMessage('DOUBLER_FORM_404_POINTS'); } +} - // Generate table with already payed out doubles - define('__DOUBLER_PAYOUT_HISTORY', DOUBLER_GENERATE_TABLE("0", "Y", "N", "DESC")); +// Shall I check for points immediately? +if (getConfig('doubler_send_mode') == 'DIRECT') loadInclude('inc/mails/doubler_mails.php'); - // Generate timemark - define('__TIMEOUT_MARK', CREATE_FANCY_TIME($_CONFIG['doubler_timeout'])); +// Output header +loadIncludeOnce('inc/header.php'); - // Usage counter - define('__DOUBLER_COUNTER', $_CONFIG['doubler_counter']); +// Banner in text +$content['banner'] = loadTemplate('doubler_banner', true); - // Points left to doubler - define('__LEFT_VALUE', TRANSLATE_COMMA(DOUBLER_GET_TOTAL_POINTS_LEFT())); +// Load header/footer templates +$content['header'] = loadTemplate('doubler_header', true); +$content['footer'] = loadTemplate('doubler_footer', true); - // Output neccessary form for this - LOAD_TEMPLATE("doubler_index"); +if (!empty($userid)) { + // Transfer userid/nickname to constant + $content['refid'] = $userid; +} else { + // Transfer userid/nickname to constant + $content['refid'] = determineReferalId(); +} - // Output footer - include(PATH."inc/footer.php"); +// Percent values etc. +$content['charge'] = translateComma(getConfig('doubler_charge') * 100); +$content['ref'] = translateComma(getConfig('doubler_ref') * 100); +$content['total'] = translateComma(getConfig('doubler_points')); +$content['min'] = translateComma(getConfig('doubler_min')); +$content['max'] = translateComma(getConfig('doubler_max')); + +// Text "Enter login" +if (isExtensionActive('nickname')) { + // Choose login/nickname + $content['enter_login'] = getMessage('GUEST_ENTER_LOGIN_NICKNAME'); } else { - // You have to configure first! - LOAD_URL("install.php"); + // Simple login ID + $content['enter_login'] = getMessage('GUEST_ENTER_LOGIN'); } -// Really all done here... ;-) +// Which mail-send-mode did the admin setup? +$content['payout_time'] = getMessage('DOUBLER_PAYOUT_TIME_' . getConfig('doubler_send_mode')); + +// Generate table with already payed out doubles +$content['payout_history'] = generateDoublerTable(0, 'Y', 'N', 'DESC'); + +// Generate timemark +$content['timeout_mark'] = createFancyTime(getConfig('doubler_timeout')); + +// Points left to doubler +$content['left'] = translateComma(DOUBLER_GET_TOTAL_POINTS_LEFT()); + +// Output neccessary form for this +loadTemplate('doubler_index', false, $content); + +// Output footer +loadIncludeOnce('inc/footer.php'); + +// [EOF] ?>