X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Flibs%2Fuser_functions.php;h=4a24b2d73bbd37c49e4334163e4f45e2362b7f29;hp=6e8ebaf67d4dde3256c31e7b761960139faf401d;hb=6914ebaaae909093df86d010e4c754a43d1a1aed;hpb=9f11c37fe454412ba85650898391874bb1c2ad06

diff --git a/inc/libs/user_functions.php b/inc/libs/user_functions.php
index 6e8ebaf67d..4a24b2d73b 100644
--- a/inc/libs/user_functions.php
+++ b/inc/libs/user_functions.php
@@ -200,7 +200,7 @@ function addPageNavigation ($numPages, $offset, $showForm, $colspan, $return=fal
 }
 
 // Create email link to user's account
-function generateUserEmailLink($email, $mod = 'admin') {
+function generateUserEmailLink ($email, $mod = 'admin') {
 	// Show contact link only if user is confirmed by default
 	$locked = " AND `status`='CONFIRMED'";
 
@@ -276,6 +276,7 @@ function doUserLogin ($userid, $passwd, $successUrl = '', $errorUrl = 'modules.p
 	$add = '';
 	$errorCode = '0';
 	$ext = '';
+	$isFound = false;
 
 	// Init array
 	$content = array(
@@ -296,11 +297,11 @@ function doUserLogin ($userid, $passwd, $successUrl = '', $errorUrl = 'modules.p
 		$ext = 'nickname';
 	} else {
 		// Direct userid entered
-		fetchUserData($userid);
+		$isFound = fetchUserData($userid);
 	}
 
 	// No error found?
-	if ($errorCode == '0') {
+	if (($errorCode == '0') && ($isFound === true)) {
 		// Get user data array and set userid (e.g. important if we login with nickname)
 		$content = getUserDataArray();
 		if (!empty($content['userid'])) $userid = bigintval($content['userid']);
@@ -428,7 +429,7 @@ function doNewUserPassword ($email, $userid) {
 		// Nickname entered
 		$result = SQL_QUERY_ESC("SELECT `userid`, `status` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `nickname`='%s' OR `userid`='%s' OR `email`='%s' LIMIT 1",
 			array($userid, $userid, $email), __FUNCTION__, __LINE__);
-	} elseif (($userid > 0) && (empty($email))) {
+	} elseif ((isValidUserId($userid)) && (empty($email))) {
 		// Direct userid entered
 		$result = SQL_QUERY_ESC("SELECT `userid`, `status` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1",
 			array(bigintval($userid)), __FUNCTION__, __LINE__);
@@ -466,7 +467,7 @@ function doNewUserPassword ($email, $userid) {
 		}
 	} else {
 		// id or email is wrong
-		loadTemplate('admin_settings_saved', false, '<span class="guest_failed">{--GUEST_WRONG_ID_EMAIL--}</span>');
+		loadTemplate('admin_settings_saved', false, '<span class="notice">{--GUEST_WRONG_ID_EMAIL--}</span>');
 	}
 
 	// Return the error code
@@ -530,12 +531,193 @@ function insertUserStatsRecord ($userid, $statsType, $statsData) {
 	if ((!getTimestampFromUserStats($statsType, $statsData, $userid)) && (!is_array($statsData))) {
 		// Then insert it!
 		SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_user_stats_data` (`userid`,`stats_type`,`stats_data`) VALUES (%s,'%s','%s')",
-			array(bigintval($userid), $statsType, $statsData), __FUNCTION__, __LINE__);
+			array(
+				bigintval($userid),
+				$statsType,
+				$statsData
+			), __FUNCTION__, __LINE__);
 	} elseif (is_array($statsData)) {
 		// Invalid data!
-		logDebugMessage(__FUNCTION__, __LINE__, "userid={$userid},type={$statsType},data={".gettype($statsData).": Invalid statistics data type!");
+		logDebugMessage(__FUNCTION__, __LINE__, 'userid=' . $userid . ',type=' . $statsType . ',data=' . gettype($statsData) . ': Invalid statistics data type!');
 	}
 }
 
+// Confirms a user account
+function doConfirmUserAccount ($hash) {
+	// Init content
+	$content = array(
+		'message' => '{--GUEST_CONFIRMED_FAILED--}',
+		'userid'  => 0,
+	);
+
+	// Initialize the user id
+	$userid = '0';
+
+	// Search for an unconfirmed or confirmed account
+	$result = SQL_QUERY_ESC("SELECT `userid`, `email`, `refid` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `user_hash`='%s' AND (`status`='UNCONFIRMED' OR `status`='CONFIRMED') LIMIT 1",
+		array($hash), __FILE__, __LINE__);
+	if (SQL_NUMROWS($result) == 1) {
+		// Ok, he want's to confirm now so we load some data
+		list($userid, $email, $refid) = SQL_FETCHROW($result);
+
+		// Fetch user data
+		if (!fetchUserData($userid)) {
+			// Not found, should not happen
+			debug_report_bug(__FILE__, __LINE__, 'User account ' . $userid . ' not found.');
+		} // END - if
+
+		// Load all data and add points
+		$content = getUserDataArray();
+
+		// Unlock his account (but only when it is on UNCONFIRMED!)
+		SQL_QUERY_ESC("UPDATE
+	`{?_MYSQL_PREFIX?}_user_data`
+SET
+	`status`='CONFIRMED',
+	`ref_payout`={?ref_payout?},
+	`user_hash`=NULL
+WHERE
+	`user_hash`='%s' AND
+	`status`='UNCONFIRMED'
+LIMIT 1",
+			array($hash), __FILE__, __LINE__);
+
+		// Was it updated?
+		if (SQL_AFFECTEDROWS() == 1) {
+			// Send email if updated
+			$message = loadEmailTemplate('confirm-member', $content, bigintval($userid));
+
+			// And send him right away the confirmation mail
+			sendEmail($email, '{--GUEST_THANX_CONFIRM--}', $message);
+
+			// Maybe he got "referaled"?
+			if (($refid > 0) && ($refid != $userid)) {
+				// Select the referal userid
+				if (fetchUserData($refid)) {
+					// Update ref counter...
+					updateReferalCounter($refid);
+
+					// If version matches add ref bonus to refid's account
+					if ((isExtensionInstalledAndNewer('bonus', '0.4.4')) && (isBonusRallyeActive())) {
+						// Add points (directly only!)
+						SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET `bonus_ref`=`bonus_ref`+{?bonus_ref?} WHERE `userid`=%s LIMIT 1",
+							array(bigintval($refid)), __FILE__, __LINE__);
+
+						// Subtract points from system
+						handleBonusPoints(getConfig('bonus_ref'));
+					} // END - if
+
+					// Add one-time referal bonus over referal system or directly
+					// @TODO Try to rewrite the following unset()
+					unset($GLOBALS['ref_level']);
+					addPointsThroughReferalSystem('referal_bonus', $refid, getPointsRef(), true, bigintval($userid), getConfig('reg_points_mode'));
+				} // END - if
+			} // END - if
+
+			if (isExtensionActive('rallye')) {
+				// Add user to rallye (or not?)
+				addUserToReferalRallye(bigintval($userid));
+			} // END - if
+
+			// Account confirmed!
+			if (isExtensionActive('lead')) {
+				// Set special lead cookie
+				setSession('lead_userid', bigintval($userid));
+
+				// Lead-Code mode enabled
+				redirectToUrl('lead-confirm.php');
+			} else {
+				$content['message'] = '{--GUEST_CONFIRMED_DONE--}';
+				$content['userid']  = bigintval($userid);
+			}
+		} elseif (isExtensionActive('lead')) {
+			// Set special lead cookie
+			setSession('lead_userid', bigintval($userid));
+
+			// Lead-Code mode enabled
+			redirectToUrl('lead-confirm.php');
+		} else {
+			// Nobody was found unter this hash key... or our new member want's to confirm twice?
+			$content['message'] = '{--GUEST_CONFIRMED_TWICE--}';
+		}
+	} else {
+		// Nobody was found unter this hash key... or our new member want's to confirm twice?
+		$content['message'] = '{--GUEST_CONFIRMED_TWICE--}';
+	}
+
+	// Load template
+	loadTemplate('admin_settings_saved', false, $content['message']);
+}
+
+// Does resend the user's confirmation link for given email address
+function doResendUserConfirmationLink ($email) {
+	// Confirmation link requested
+	if (fetchUserData($email, 'email')) {
+		// Email address found
+		$content = getUserDataArray();
+
+		// Detect status
+		switch ($content['status']) {
+			case 'UNCONFIRMED': // Account not confirmed
+				// Load email template
+				$message = loadEmailTemplate('guest_request_confirm', array('hash' => $content['user_hash']), $content['userid']);
+
+				// Send email
+				sendEmail($email, '{--REQUEST_CONFIRM_LINK_SUBJECT--}', $message);
+
+				// And set message
+				$content['message'] = '{--CONFIRM_LINK_SENT--}';
+				break;
+
+			case 'CONFIRMED': // Account already confirmed
+				$content['message'] = '{--LOGIN_ID_CONFIRMED--}';
+				break;
+
+			case 'LOCKED': // Account is locked
+				$content['message'] = '{--LOGIN_ID_LOCKED--}';
+				break;
+		} // END - switch
+	} else {
+		// Email address not registered
+		$content['message'] = '{--EMAIL_404--}';
+	}
+}
+
+// Expression call-back function for fetching user data
+function doExpressionUser ($data) {
+	// Use current userid by default
+	$functionName = 'getMemberId()';
+
+	// User-related data, so is there a userid?
+	if (!empty($data['matches'][4][$data['key']])) {
+		// Do we have a userid or $userid?
+		if ($data['matches'][4][$data['key']] == '$userid') {
+			// Use dynamic call
+			$functionName = "getFetchedUserData('userid', \$userid, '" . $data['callback'] . "')";
+		} elseif (!empty($data['matches'][4][$data['key']])) {
+			// User data found
+			$functionName = "getFetchedUserData('userid', " . $data['matches'][4][$data['key']] . ", '" . $data['callback'] . "')";
+		}
+	} elseif ((!empty($data['callback'])) && (isUserDataValid())) {
+		// "Call-back" alias column for current logged in user's data
+		$functionName = "getUserData('" . $data['callback'] . "')";
+	}
+
+	// Do we have another function to run (e.g. translations)
+	if (!empty($data['extra_func'])) {
+		// Surround the original function call with it
+		$functionName = $data['extra_func'] . '(' . $functionName . ')';
+	} // END - if
+
+	// Generate replacer
+	$replacer = '{DQUOTE} . ' . $functionName . ' . {DQUOTE}';
+
+	// Now replace the code
+	$code = replaceExpressionCode($data, $replacer);
+
+	// Return replaced code
+	return $code;
+}
+
 // [EOF]
 ?>