X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-list_payouts.php;h=35e3bb7215720b12f7cdfe3b15a2d0fdb1c3a7da;hp=e266a79928a0efcc91b3de17ce7b67e2599b07e1;hb=7989ec603971c0dc8dc35d8be4e72f8098b83baa;hpb=f01652b7b8efac92d97889e312402c4a845c2f14
diff --git a/inc/modules/admin/what-list_payouts.php b/inc/modules/admin/what-list_payouts.php
index e266a79928..35e3bb7215 100644
--- a/inc/modules/admin/what-list_payouts.php
+++ b/inc/modules/admin/what-list_payouts.php
@@ -32,27 +32,26 @@
************************************************************************/
// Some security stuff...
-if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN()))
-{
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
+
// Add description as navigation point
-ADD_DESCR("admin", basename(__FILE__));
+ADD_DESCR("admin", __FILE__);
-if (!empty($_GET['pid']))
-{
+if (!empty($_GET['pid'])) {
// First let's get the member's ID
- $result = SQL_QUERY_ESC("SELECT userid, target_account, payout_total, payout_timestamp, password FROM "._MYSQL_PREFIX."_user_payouts WHERE id=%s LIMIT 1",
- array($_GET['pid']), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT userid, target_account, payout_total, payout_timestamp, password FROM `{!_MYSQL_PREFIX!}_user_payouts` WHERE id=%s LIMIT 1",
+ array($_GET['pid']), __FILE__, __LINE__);
list($uid, $tuid, $points, $tstamp, $tpass) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
// Obtain some data
if (empty($_GET['task']) && (!empty($uid)) && ($uid > 0)) {
// Get task ID from database
- $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_task_system WHERE userid=%s AND task_type='PAYOUT_REQUEST' AND task_created='".$tstamp."' LIMIT 1",
- array(bigintval($uid)), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_task_system` WHERE userid=%s AND task_type='PAYOUT_REQUEST' AND task_created='".$tstamp."' LIMIT 1",
+ array(bigintval($uid)), __FILE__, __LINE__);
list($task) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
if (empty($task)) $task = 0;
@@ -66,35 +65,31 @@ if (!empty($_GET['pid']))
if ((!empty($task)) && (!empty($uid)) && ($uid > 0)) {
// Load user's data
- $result = SQL_QUERY_ESC("SELECT email, gender, surname, family FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
- array(bigintval($uid)), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT email, gender, surname, family FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
+ array(bigintval($uid)), __FILE__, __LINE__);
list($email, $gender, $surname, $family) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
// Konstante bauen
- define('PAYOUT_USERDATA_VALUE', "".TRANSLATE_GENDER($gender)." ".$surname." ".$family."");
+ define('PAYOUT_USERDATA_VALUE', "".TRANSLATE_GENDER($gender)." ".$surname." ".$family."");
- if (($_GET['do'] == "accept") && (!empty($email)))
- {
+ if (($_GET['do'] == "accept") && (!empty($email))) {
// Ok, now we can output the form or execute accepting
- if (isset($_POST['ok']))
- {
+ if (isset($_POST['ok'])) {
// Obtain payout type and other data
- $result = SQL_QUERY_ESC("SELECT payout_id FROM "._MYSQL_PREFIX."_user_payouts WHERE id=%s LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT payout_id FROM `{!_MYSQL_PREFIX!}_user_payouts` WHERE id=%s LIMIT 1",
array(bigintval($_GET['pid'])), __FILE__, __LINE__);
list($ptype) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
- if (!empty($ptype))
- {
+ if (!empty($ptype)) {
// Obtain data from payout type
- $result = SQL_QUERY_ESC("SELECT from_account, from_pass, engine_url, engine_ret_ok, engine_ret_failed, pass_enc, allow_url FROM "._MYSQL_PREFIX."_payout_types WHERE id=%s LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT from_account, from_pass, engine_url, engine_ret_ok, engine_ret_failed, pass_enc, allow_url FROM `{!_MYSQL_PREFIX!}_payout_types` WHERE id=%s LIMIT 1",
array(bigintval($ptype)), __FILE__, __LINE__);
list($fuid, $fpass, $eurl, $eok, $failed, $eenc, $allow) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
- if (!empty($eurl))
- {
+ if (!empty($eurl)) {
// Ok, run URL...
$eurl = COMPILE_CODE($eurl);
switch ($eenc)
@@ -112,79 +107,65 @@ if (!empty($_GET['pid']))
// Transfer variables...
$eval = "\$URL = \"".$eurl."\";";
- $reason = urlencode(base64_encode(PAYOUT_REASON_PAYOUT));
+ $reason = encodeString(getMessage('PAYOUT_REASON_PAYOUT'), false);
// Run code...
eval($eval);
// Execute transfer
- $ret = @file($URL);
- }
- else
- {
+ $ret = GET_URL($URL);
+ } else {
// No URL to run
$ret[0] = $eok;
}
- if ($ret[0] == $eok)
- {
+
+ if ($ret[0] == $eok) {
// Clear task
if ($task > 0) {
- ADMIN_SOLVE_TASK($task);
+ RUN_FILTER('solve_task', $task);
}
// Clear payout request
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_payouts SET status='ACCEPTED' WHERE id=%s LIMIT 1",
- array(bigintval($_GET['pid'])), __FILE__, __LINE__);
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_payouts` SET `status`='ACCEPTED' WHERE id=%s LIMIT 1",
+ array(bigintval($_GET['pid'])), __FILE__, __LINE__);
// Send out mail
$msg = LOAD_EMAIL_TEMPLATE("member_payout_accepted", $_POST['text'], $uid);
// Output message
- if ($allow == "Y")
- {
+ if ($allow == "Y") {
// Banner / Textlink request
LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_BANNER_ACCEPTED_NOTIFIED);
- }
- else
- {
+ } else {
// Normal request
LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_ACCEPTED_NOTIFIED);
}
// Finally send mail
SEND_EMAIL($email, PAYOUT_ACCEPTED_SUBJECT, $msg);
- }
- else
- {
+ } else {
// Something goes wrong... :-(
$content = implode("
", $ret);
LOAD_TEMPLATE("admin_payout_failed_transfer", false, $content);
}
- }
- else
- {
+ } else {
// Cannot load payout id
- OUTPUT_HTML("".PAYOUT_FAILED_OBTAIN_PAYOUT_ID."");
+ LOAD_TEMPLATE("admin_settings_saved", false, "".PAYOUT_FAILED_OBTAIN_PAYOUT_ID."
");
}
- }
- else
- {
+ } else {
// Load template
LOAD_TEMPLATE("admin_payout_accept_form", false, $task);
}
- }
- elseif (($_GET['do'] == "reject") && (!empty($email)))
- {
+ } elseif (($_GET['do'] == "reject") && (!empty($email))) {
// Ok, now we can output the form or execute rejecting
- if (isset($_POST['ok']))
- {
+ if (isset($_POST['ok'])) {
if ($task > 0) {
// Clear task
- ADMIN_SOLVE_TASK($task);
+ RUN_FILTER('solve_task', $task);
}
// Clear payout request
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_payouts SET status='REJECTED' WHERE id=%s LIMIT 1",
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_payouts` SET `status`='REJECTED' WHERE id=%s LIMIT 1",
array(bigintval($_GET['pid'])), __FILE__, __LINE__);
// Send out mail
@@ -195,65 +176,48 @@ if (!empty($_GET['pid']))
// Finally send mail
SEND_EMAIL($email, PAYOUT_REJECTED_SUBJECT, $msg);
- }
- else
- {
+ } else {
// Load template
LOAD_TEMPLATE("admin_payout_reject_form", false, $task);
}
- }
- else
- {
+ } else {
// Cannot load user data
LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_FAILED_OBTAIN_USERDATA);
}
- }
- elseif((empty($task)) || ($task == "0"))
- {
+ } elseif ((empty($task)) || ($task == "0")) {
// Failed loading task ID
LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_FAILED_OBTAIN_TASK_ID);
}
-}
- else
-{
+} else {
if (empty($_GET['do'])) $_GET['do'] = "";
- if ($_GET['do'] == "delete")
- {
+ if ($_GET['do'] == "delete") {
// Delete all requests
- $result = SQL_QUERY("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_payouts", __FILE__, __LINE__);
+ $result = SQL_QUERY("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_user_payouts`", __FILE__, __LINE__);
}
// Search for payouts
$result = SQL_QUERY("SELECT p.id, p.userid AS uid, p.payout_total, p.target_account, p.target_bank, t.type, p.payout_timestamp, p.status, t.allow_url AS allow, p.target_url AS url, p.link_text AS alt, p.banner_url AS banner
-FROM "._MYSQL_PREFIX."_user_payouts AS p, "._MYSQL_PREFIX."_payout_types AS t
+FROM `{!_MYSQL_PREFIX!}_user_payouts` AS p, `{!_MYSQL_PREFIX!}_payout_types` AS t
WHERE p.payout_id=t.id
ORDER BY p.payout_timestamp DESC", __FILE__, __LINE__);
- if (SQL_NUMROWS($result) > 0)
- {
+ if (SQL_NUMROWS($result) > 0) {
// List found payouts
$OUT = ""; $SW = 2;
- while (list($pid, $uid, $total, $account, $bank, $type, $tstamp, $status, $allow, $url, $alt, $banner) = SQL_FETCHROW($result))
- {
- if ($status == "NEW")
- {
+ while (list($pid, $uid, $total, $account, $bank, $type, $tstamp, $status, $allow, $url, $alt, $banner) = SQL_FETCHROW($result)) {
+ if ($status == "NEW") {
// Generate links for direct accepting and rejecting
- $status = "".PAYOUT_ACCEPT_PAYOUT." | ".PAYOUT_REJECT_PAYOUT."";
- }
- else
- {
+ $status = "".PAYOUT_ACCEPT_PAYOUT." | ".PAYOUT_REJECT_PAYOUT."";
+ } else {
// Translate status
- $evl = "\$status = PAYOUT_STATUS_".strtoupper($status).";";
- eval($evl);
- $status = "".$status."";
+ $status = constant('PAYOUT_STATUS_'.strtoupper($status).'');
+ $status = "".$status."
";
}
// Nothing entered must be secured in member/what-payputs.php !
- if ($allow == "Y")
- {
+ if ($allow == "Y") {
// Banner/Textlink views/clicks request
- if (!empty($banner))
- {
+ if (!empty($banner)) {
// Prepare array for the banner
$content = array(
'banner' => $banner,
@@ -263,9 +227,7 @@ ORDER BY p.payout_timestamp DESC", __FILE__, __LINE__);
// Load template for the banner
$account = LOAD_TEMPLATE("admin_list_payouts_banner", true, $content);
- }
- else
- {
+ } else {
// Textlink
$content = array(
'txt_link' => $alt,
@@ -275,10 +237,8 @@ ORDER BY p.payout_timestamp DESC", __FILE__, __LINE__);
}
// Admins can addionally test the URL for framekillers
- $bank = "".CLICK_HERE."";
- }
- else
- {
+ $bank = "".CLICK_HERE."";
+ } else {
// e-currency payout request
if (empty($account)) $account = "---";
if (empty($bank)) $bank = "---";
@@ -306,9 +266,7 @@ ORDER BY p.payout_timestamp DESC", __FILE__, __LINE__);
// Load final template
LOAD_TEMPLATE("admin_list_payouts");
- }
- else
- {
+ } else {
// No payout requests are sent so far
LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_ADMIN_NO_REQUESTS_FOUND);
}