X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-add_points.php;h=d6936169e84088d3acb7e7f96020c31db2256072;hp=ab77cda645523dfe6f108218adb063af1c74481a;hb=a090e351c49fe021fb3064325694da03402332e0;hpb=963e55ca1ea79e255f235e359cde9f7862191dc5

diff --git a/inc/modules/admin/what-add_points.php b/inc/modules/admin/what-add_points.php
index ab77cda645..d6936169e8 100644
--- a/inc/modules/admin/what-add_points.php
+++ b/inc/modules/admin/what-add_points.php
@@ -10,7 +10,12 @@
  * -------------------------------------------------------------------- *
  * Kurzbeschreibung  : Manuell einem Mitglied Punkte gutschreiben       *
  * -------------------------------------------------------------------- *
- *                                                                      *
+ * $Revision::                                                        $ *
+ * $Date::                                                            $ *
+ * $Tag:: 0.2.1-FINAL                                                 $ *
+ * $Author::                                                          $ *
+ * Needs to be in all Files and every File needs "svn propset           *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  * -------------------------------------------------------------------- *
  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  * For more information visit: http://www.mxchange.org                  *
@@ -38,83 +43,88 @@ if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
 }
 
 // Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+ADD_DESCR('admin', __FILE__);
 
 // Fix a notice
-if (!isset($_GET['u_id'])) $_GET['u_id'] = "";
+if (!REQUEST_ISSET_GET('uid')) REQUEST_SET_GET('uid', '');
 
-if ($_GET['u_id'] == "all") {
+if (REQUEST_GET('uid') == "all") {
 	// Add points to all accounts
-	if ((isset($_POST['ok'])) && ($_POST['points'] > 0)) {
-		define('__POINTS_VALUE', $_POST['points']);
-		$result_main = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' ORDER BY userid", __FILE__, __LINE__);
-		while (list($uid) = SQL_FETCHROW($result_main)) {
-			// User ID found in URL so we use this give him some credits
-			$result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
-			 array(bigintval($uid)), __FILE__, __LINE__);
-			if (SQL_NUMROWS($result) == 1) {
-				// Selected user does exist
-				list($sname, $fname, $email) = SQL_FETCHROW($result);
-				SQL_FREERESULT($result);
-
-				if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
-					// Ok, add points and send an email to him...
-					$result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
-					 array($_POST['points'], bigintval($uid)), __FILE__, __LINE__);
-
-					// Update mediadata as well
-					if (GET_EXT_VERSION("mediadata") >= "0.0.4") {
-						// Update database
-						MEDIA_UPDATE_ENTRY(array("total_points"), "add", $_POST['points']);
-					}
-
-					// Load email template and send email away
-					$msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $uid);
-					SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg);
-				}
-			}
-		}
+	if ((IS_FORM_SENT()) && (REQUEST_POST('points') > 0)) {
+		// @TODO Rewrite this constant
+		define('__POINTS_VALUE', REQUEST_POST('points'));
+
+		// Select all users
+		$result_main = SQL_QUERY("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE `status`='CONFIRMED' ORDER BY userid",
+			__FILE__, __LINE__);
+
+		// Process all entries
+		while ($content = SQL_FETCHROW($result_main)) {
+			// Remove depth to prevent booking errors. This is a bad coding
+			// practice, thats also why we need to write this project from
+			// scratch...
+			$GLOBALS['ref_level'] = -1;
+
+			// Ok, add points and send an email to him...
+			ADD_POINTS_REFSYSTEM("admin_all", $content['userid'], bigintval(REQUEST_POST('points')), false, "0", false, "direct");
+
+			// Prepare content
+			$content['text']   = SQL_ESCAPE(REQUEST_POST('reason'));
+			$content['points'] = bigintval(REQUEST_POST('points'));
+
+			// Load email template and send email away
+			$msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval($content['userid']));
+			SEND_EMAIL(bigintval($content['userid']), getMessage('ADMIN_ADD_SUBJ'), $msg);
+		} // END - while
 
 		// Free memory
 		SQL_FREERESULT($result_main);
 
 		// Output message
-		LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_ALL_POINTS_ADDED);
+		LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_ALL_POINTS_ADDED'));
 	} else {
 		// Display form add points
 		LOAD_TEMPLATE("admin_add_points_all");
 	}
-} elseif (!empty($_GET['u_id'])) {
+} elseif (REQUEST_ISSET_GET('uid')) {
 	// User ID found in URL so we use this give him some credits
-	$result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
-	 array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
+	$result = SQL_QUERY_ESC("SELECT surname, family, email FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s AND `status`='CONFIRMED' LIMIT 1",
+		array(bigintval(REQUEST_GET('uid'))), __FILE__, __LINE__);
 	if (SQL_NUMROWS($result) == 1) {
 		// Selected user does exist
 		list($sname, $fname, $email) = SQL_FETCHROW($result);
 		SQL_FREERESULT($result);
 
-		if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
+		if ((IS_FORM_SENT()) && (REQUEST_ISSET_POST(('points')))) {
+			// Remove depth to prevent booking errors. This is a bad coding
+			// practice, thats also why we need to write this project from
+			// scratch...
+			unset($GLOBALS['ref_level']);
+
 			// Ok, add points and send an email to him...
-			$result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_points SET points=points+(%s) WHERE userid=%s AND ref_depth=0 LIMIT 1",
-			 array($_POST['points'], bigintval($_GET['u_id'])), __FILE__, __LINE__);
+			ADD_POINTS_REFSYSTEM("admin_single", bigintval(REQUEST_GET('uid')), bigintval(REQUEST_POST('points')), false, "0", false, "direct");
 
-			// Remember points in constant
-			define('__POINTS_VALUE', $_POST['points']);
+			// Prepare content
+			$content = array(
+				'text'   => SQL_ESCAPE(REQUEST_POST('reason')),
+				'points' => bigintval(REQUEST_POST('points'))
+			);
 
 			// Message laden
-			$msg = LOAD_EMAIL_TEMPLATE("add-points", $_POST['reason'], $_GET['u_id']);
+			$msg = LOAD_EMAIL_TEMPLATE("add-points", $content, bigintval(REQUEST_GET('uid')));
 
-			SEND_EMAIL($email, ADMIN_ADD_SUBJ, $msg);
-			LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_ADDED);
+			SEND_EMAIL(bigintval(REQUEST_GET('uid')), getMessage('ADMIN_ADD_SUBJ'), $msg);
+			LOAD_TEMPLATE('admin_settings_saved', false, getMessage('ADMIN_POINTS_ADDED'));
 		} else {
 			// Opps, missing form here
-			define('__USER_VALUE', "<A href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</A>");
-			define('__UID_VALUE', $_GET['u_id']);
+			// @TODO Rewrite these both constants
+			define('__USER_VALUE', "<a href=\"".CREATE_EMAIL_LINK($email, "user_data")."\">".$sname." ".$fname."</a>");
+			define('__UID'       , bigintval(REQUEST_GET('uid')));
 			LOAD_TEMPLATE("admin_add_points");
 		}
 	} else {
 		// User not found!
-		OUTPUT_HTML("<STRONG class=\"admin_failed\">".ADMIN_MEMBER_404_1.$_GET['u_id'].ADMIN_MEMBER_404_2."</STRONG>");
+		LOAD_TEMPLATE('admin_settings_saved', false, "<div class=\"admin_failed\">".sprintf(getMessage('ADMIN_MEMBER_404'), REQUEST_GET('uid'))."</div>");
 	}
 } else {
 	// Output selection form with all confirmed user accounts listed