X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-list_coupon.php;h=4d503c8640a575286bb5ab67b774b909bb6eb38f;hp=0069ce021df9fb501c67f84e2b3a127f2f126313;hb=49acdb7a7adbcf25a8e8683b5581bfcec72b23bd;hpb=34b1f5b69205b08c760d6dcc87ef6a2d1c291261

diff --git a/inc/modules/admin/what-list_coupon.php b/inc/modules/admin/what-list_coupon.php
index 0069ce021d..4d503c8640 100644
--- a/inc/modules/admin/what-list_coupon.php
+++ b/inc/modules/admin/what-list_coupon.php
@@ -16,8 +16,8 @@
  * $Author::                                                          $ *
  * -------------------------------------------------------------------- *
  * Copyright (c) 2003 - 2009 by Roland Haeder                           *
- * Copyright (c) 2009 - 2011 by Mailer Developer Team                   *
- * For more information visit: http://www.mxchange.org                  *
+ * Copyright (c) 2009 - 2015 by Mailer Developer Team                   *
+ * For more information visit: http://mxchange.org                      *
  *                                                                      *
  * This program is free software; you can redistribute it and/or modify *
  * it under the terms of the GNU General Public License as published by *
@@ -43,48 +43,97 @@ if ((!defined('__SECURITY')) || (!isAdmin())) {
 // Add description as navigation point
 addYouAreHereLink('admin', __FILE__);
 
-// Check if the user has cashed coupons
-$result = SQL_QUERY('SELECT
-	u.`coupon_id`,
-	u.`userid`,
-	UNIX_TIMESTAMP(u.`cashed_on`) AS `cashed_on`,
-	UNIX_TIMESTAMP(d.`coupon_created`) AS `coupon_created`,
-	UNIX_TIMESTAMP(d.`coupon_expired`) AS `coupon_expired`,
-	d.`points`, d.`total_created`, d.`total_cashed`, d.`coupon_description`
+if (isGetRequestElementSet('coupon_id')) {
+	// List userids for given coupon
+	$result = sqlQueryEscaped('SELECT
+	`u`.`coupon_id`,
+	`u`.`userid`,
+	UNIX_TIMESTAMP(`u`.`cashed_on`) AS `cashed_on`,
+	UNIX_TIMESTAMP(`d`.`coupon_created`) AS `coupon_created`,
+	UNIX_TIMESTAMP(`d`.`coupon_expired`) AS `coupon_expired`,
+	`d`.`points`,
+	`d`.`total_created`,
+	`d`.`total_cashed`,
+	`d`.`coupon_description`
 FROM
-	`{?_MYSQL_PREFIX?}_user_coupons` AS u
+	`{?_MYSQL_PREFIX?}_user_coupons` AS `u`
 INNER JOIN
-	`{?_MYSQL_PREFIX?}_coupon_data` AS d
+	`{?_MYSQL_PREFIX?}_coupon_data` AS `d`
 ON
-	u.`coupon_id`=d.`id`
+	`u`.`coupon_id`=`d`.`id`
+WHERE
+	`u`.`coupon_id`=%s
 ORDER BY
-	u.`cashed_on` DESC', __FILE__, __LINE__);
+	`u`.`cashed_on` DESC',
+		array(
+			bigintval(getRequestElement('coupon_id'))
+		), __FILE__, __LINE__);
 
-// Do we have entries?
-if (SQL_NUMROWS($result) > 0) {
-	// Init variable
-	$OUT = '';
+	// Are there entries?
+	if (!ifSqlHasZeroNumRows($result)) {
+		// Init variable
+		$OUT = '';
 
-	// Load all rows
-	while ($content = SQL_FETCHARRAY($result)) {
-		// Translate all timestamps
-		$content['cashed_on']      = generateDateTime($content['cashed_on']     , '2');
-		$content['coupon_created'] = generateDateTime($content['coupon_created'], '2');
-		$content['coupon_expired'] = generateDateTime($content['coupon_expired'], '2');
+		// Load all rows
+		while ($content = sqlFetchArray($result)) {
+			// Translate all timestamps
+			$content['cashed_on']      = generateDateTime($content['cashed_on']     , '2');
+			$content['coupon_created'] = generateDateTime($content['coupon_created'], '2');
+			$content['coupon_expired'] = generateDateTime($content['coupon_expired'], '2');
 
-		// Add the row template
-		$OUT .= loadTemplate('admin_list_coupon_row', true, $content);
-	} // END - while
+			// Add the row template
+			$OUT .= loadTemplate('admin_list_coupon_usr_row', TRUE, $content);
+		} // END - while
 
-	// Load main template
-	loadTemplate('admin_list_coupon', false, $OUT);
+		// Load main template
+		loadTemplate('admin_list_coupon_usr', FALSE, $OUT);
+	} else {
+		// No cashed coupons found
+		displayMessage('{--ADMIN_LIST_COUPON_404--}');
+	}
+
+	// Free result
+	sqlFreeResult($result);
 } else {
-	// No cashed coupons found
-	displayMessage('{--ADMIN_LIST_COUPON_404--}');
-}
+	// Check if the user has cashed coupons
+	$result = sqlQuery('SELECT
+	`d`.`id` AS `coupon_id`,
+	UNIX_TIMESTAMP(`d`.`coupon_created`) AS `coupon_created`,
+	UNIX_TIMESTAMP(`d`.`coupon_expired`) AS `coupon_expired`,
+	`d`.`points`,
+	`d`.`total_created`,
+	`d`.`total_cashed`,
+	`d`.`coupon_description`
+FROM
+	`{?_MYSQL_PREFIX?}_coupon_data` AS `d`
+ORDER BY
+	`d`.`id` ASC', __FILE__, __LINE__);
+
+	// Are there entries?
+	if (!ifSqlHasZeroNumRows($result)) {
+		// Init variable
+		$OUT = '';
 
-// Free result
-SQL_FREERESULT($result);
+		// Load all rows
+		while ($content = sqlFetchArray($result)) {
+			// Translate all timestamps
+			$content['coupon_created'] = generateDateTime($content['coupon_created'], '2');
+			$content['coupon_expired'] = generateDateTime($content['coupon_expired'], '2');
+
+			// Add the row template
+			$OUT .= loadTemplate('admin_list_coupon_row', TRUE, $content);
+		} // END - while
+
+		// Load main template
+		loadTemplate('admin_list_coupon', FALSE, $OUT);
+	} else {
+		// No cashed coupons found
+		displayMessage('{--ADMIN_LIST_COUPON_404--}');
+	}
+
+	// Free result
+	sqlFreeResult($result);
+}
 
 // [EOF]
 ?>