X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-list_payouts.php;h=7e10f9a4f7eb3c7cc1a116e53da7c8ffb72cf16c;hp=4bf5cb37ccbee7c40d0ab0a07b58f6fa7d5a43d7;hb=30ae22f62ae87c53a56baf0d134569ba91011111;hpb=c2e17d983fcbc0c3bd1dd37908d87c678f0367df diff --git a/inc/modules/admin/what-list_payouts.php b/inc/modules/admin/what-list_payouts.php index 4bf5cb37cc..7e10f9a4f7 100644 --- a/inc/modules/admin/what-list_payouts.php +++ b/inc/modules/admin/what-list_payouts.php @@ -1,7 +1,7 @@ 0)) { - // Get task ID from database - $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_task_system` WHERE `userid`=%s AND `task_type`='PAYOUT_REQUEST' AND task_created='".$tstamp."' LIMIT 1", - array(bigintval($userid)), __FILE__, __LINE__); + if (!isGetRequestParameterSet(('task')) && (!empty($userid)) && ($userid > 0)) { + // Get task id from database + $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_task_system` WHERE `userid`=%s AND `task_type`='PAYOUT_REQUEST' AND `task_created`=%s LIMIT 1", + array(bigintval($userid), bigintval($tstamp)), __FILE__, __LINE__); list($task) = SQL_FETCHROW($result); SQL_FREERESULT($result); - if (empty($task)) $task = 0; - } elseif ((empty($userid)) || ($userid == 0)) { - // Cannot obtain member ID! - loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_USERID')); + if (empty($task)) $task = '0'; + } elseif ((empty($userid)) || ($userid == '0')) { + // Cannot obtain member id! + loadTemplate('admin_settings_saved', false, '{--ADMIN_PAYOUT_FAILED_OBTAIN_USERID--}'); } else { - // Get task ID from URL - $task = getRequestElement('task'); + // Get task id from URL + $task = getRequestParameter('task'); } if ((!empty($task)) && (!empty($userid)) && ($userid > 0)) { // Load user's data - $result = SQL_QUERY_ESC("SELECT `email`, `gender`, `surname`, `family` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1", - array(bigintval($userid)), __FILE__, __LINE__); - list($email, $gender, $surname, $family) = SQL_FETCHROW($result); - SQL_FREERESULT($result); + if (!fetchUserData($userid)) { + // Abort here because it is not valid! + debug_report_bug(__FILE__, __LINE__, 'No user account ' . $userid . ' found.'); + } // END - if - if ((getRequestElement('do') == 'accept') && (!empty($email))) { + if ((getRequestParameter('do') == 'accept') && (getUserData('email') != '')) { // Ok, now we can output the form or execute accepting if (isFormSent()) { // Obtain payout type and other data $result = SQL_QUERY_ESC("SELECT `payout_id` FROM `{?_MYSQL_PREFIX?}_user_payouts` WHERE `id`=%s LIMIT 1", - array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__); + array(bigintval(getRequestParameter('pid'))), __FILE__, __LINE__); + + // Load ptype (id) list($ptype) = SQL_FETCHROW($result); + + // Free result SQL_FREERESULT($result); if (!empty($ptype)) { // Obtain data from payout type - $result = SQL_QUERY_ESC("SELECT `from_account`, `from_pass`, `engine_url`, `engine_ret_ok`, `engine_ret_failed`, `pass_enc`, `allow_url` + $result = SQL_QUERY_ESC("SELECT + `from_account`, `from_pass`, `engine_url`, `engine_ret_ok`, `engine_ret_failed`, `pass_enc`, `allow_url` FROM `{?_MYSQL_PREFIX?}_payout_types` WHERE `id`=%s LIMIT 1", array(bigintval($ptype)), __FILE__, __LINE__); - list($fuserid, $fpass, $eurl, $eok, $failed, $eenc, $allow) = SQL_FETCHROW($result); + + // Load data + $data = SQL_FETCHARRAY($result); + + // Free result SQL_FREERESULT($result); - if (!empty($eurl)) { + if (!empty($data['engine_url'])) { // Ok, run URL... - $eurl = compileCode($eurl); - switch ($eenc) { + switch ($data['pass_enc']) { case 'md5': - $fpass = md5($fpass); + $data['from_pass'] = md5($data['from_pass']); $tpass = md5($tpass); break; case 'base64': - $fpass = base64_encode($fpass); + $data['from_pass'] = base64_encode($data['from_pass']); $tpass = base64_encode($tpass); break; } // Transfer variables... - $eval = "\$URL = \"".$eurl."\";"; - $reason = encodeString(getMessage('PAYOUT_REASON_PAYOUT'), false); - - // Run code... - // @TODO Do we need this time-consuming eval() here? - eval($eval); + $reason = encodeString(getMessage('ADMIN_PAYOUT_REASON'), false); // Execute transfer - $ret = sendGetRequest($URL); + $ret = sendGetRequest($data['engine_url']); } else { // No URL to run - $ret[0] = $eok; + $ret[0] = $data['engine_ret_ok']; } - if ($ret[0] == $eok) { + if ($ret[0] == $data['engine_ret_ok']) { // Clear task if ($task > 0) { runFilterChain('solve_task', $task); @@ -133,43 +137,43 @@ LIMIT 1", // Clear payout request SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_payouts` SET `status`='ACCEPTED' WHERE `id`=%s LIMIT 1", - array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__); + array(bigintval(getRequestParameter('pid'))), __FILE__, __LINE__); // Send out mail - $message = loadEmailTemplate('member_payout_accepted', postRequestElement('text'), $userid); + $message = loadEmailTemplate('member_payout_accepted', postRequestParameter('text'), $userid); // Output message - if ($allow == 'Y') { + if ($data['allow_url'] == 'Y') { // Banner / Textlink request - loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_BANNER_ACCEPTED_NOTIFIED')); + loadTemplate('admin_settings_saved', false, '{--ADMIN_PAYOUT_BANNER_ACCEPTED_NOTIFIED--}'); } else { // Normal request - loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_ACCEPTED_NOTIFIED')); + loadTemplate('admin_settings_saved', false, '{--ADMIN_PAYOUT_ACCEPTED_NOTIFIED--}'); } // Finally send mail - sendEmail($email, getMessage('PAYOUT_ACCEPTED_SUBJECT'), $message); + sendEmail(getUserData('email'), '{--MEMBER_PAYOUT_ACCEPTED_SUBJECT--}', $message); } else { // Something goes wrong... :-( - $content = implode("
", $ret); + $content = implode('
', $ret); loadTemplate('admin_payout_failed_transfer', false, $content); } } else { // Cannot load payout id - loadTemplate('admin_settings_saved', false, "
{--PAYOUT_FAILED_OBTAIN_PAYOUT_ID--}
"); + loadTemplate('admin_settings_saved', false, '
{--ADMIN_PAYOUT_FAILED_OBTAIN_PAYOUT_ID--}
'); } } else { // Prepare content $content = array( 'task' => $task, - 'pid' => bigintval(getRequestElement('pid')), - 'user' => "".translateGender($gender)." ".$surname." ".$family."", + 'pid' => bigintval(getRequestParameter('pid')), + 'user' => '' . translateGender(getUserData('gender')) . ' ' . getUserData('surname') . ' ' . getUserData('family') . '', ); // Load template loadTemplate('admin_payout_accept_form', false, $content); } - } elseif ((getRequestElement('do') == 'reject') && (!empty($email))) { + } elseif ((getRequestParameter('do') == 'reject') && (getUserData('email') != '')) { // Ok, now we can output the form or execute rejecting if (isFormSent()) { if ($task > 0) { @@ -179,22 +183,22 @@ LIMIT 1", // Clear payout request SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_payouts` SET `status`='REJECTED' WHERE `id`=%s LIMIT 1", - array(bigintval(getRequestElement('pid'))), __FILE__, __LINE__); + array(bigintval(getRequestParameter('pid'))), __FILE__, __LINE__); // Send out mail - $message = loadEmailTemplate('member_payout_rejected', postRequestElement('text'), $userid); + $message = loadEmailTemplate('member_payout_rejected', postRequestParameter('text'), $userid); // Output message - loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_REJECTED_NOTIFIED')); + loadTemplate('admin_settings_saved', false, '{--ADMIN_PAYOUT_REJECTED_NOTIFIED--}'); // Finally send mail - sendEmail($email, getMessage('PAYOUT_REJECTED_SUBJECT'), $message); + sendEmail(getUserData('email'), '{--MEMBER_PAYOUT_REJECTED_SUBJECT--}', $message); } else { // Prepare content $content = array( 'task' => $task, - 'pid' => bigintval(getRequestElement('pid')), - 'user' => "".translateGender($gender)." ".$surname." ".$family."", + 'pid' => bigintval(getRequestParameter('pid')), + 'user' => '' . translateGender(getUserData('gender')) . ' ' . getUserData('surname') . ' ' . getUserData('family') . '', ); // Load template @@ -202,16 +206,14 @@ LIMIT 1", } } else { // Cannot load user data - loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_USERDATA')); + loadTemplate('admin_settings_saved', false, '{--ADMIN_PAYOUT_FAILED_OBTAIN_USERDATA--}'); } - } elseif ((empty($task)) || ($task == 0)) { - // Failed loading task ID - loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_FAILED_OBTAIN_TASK_ID')); + } elseif ((empty($task)) || ($task == '0')) { + // Failed loading task id + loadTemplate('admin_settings_saved', false, '{--ADMIN_PAYOUT_FAILED_OBTAIN_TASK_ID--}'); } } else { - if (!isGetRequestElementSet('do')) setRequestGetElement('do', ''); - - if (getRequestElement('do') == 'delete') { + if (getRequestParameter('do') == 'delete') { // Delete all requests $result = SQL_QUERY("TRUNCATE `{?_MYSQL_PREFIX?}_user_payouts`", __FILE__, __LINE__); } // END - if @@ -231,17 +233,17 @@ ON ORDER BY p.payout_timestamp DESC", __FILE__, __LINE__); - if (SQL_NUMROWS($result) > 0) { + if (!SQL_HASZERONUMS($result)) { // List found payouts - $OUT = ''; $SW = 2; + $OUT = ''; while ($content = SQL_FETCHARRAY($result)) { if ($content['status'] == 'NEW') { // Generate links for direct accepting and rejecting - $content['status'] = "".PAYOUT_ACCEPT_PAYOUT." | ".PAYOUT_REJECT_PAYOUT.""; + $content['status'] = '{--ADMIN_PAYOUT_ACCEPT_PAYOUT--}|{--ADMIN_PAYOUT_REJECT_PAYOUT--}'; } else { // Translate status - $content['status'] = getMessage('PAYOUT_STATUS_'.strtoupper($content['status']).''); - $content['status'] = "
".$content['status']."
"; + $content['status'] = translatePayoutStatus($content['status']); + $content['status'] = '
' . $content['status'] . '
'; } // Nothing entered must be secured in member/what-payputs.php ! @@ -256,28 +258,15 @@ ORDER BY } // Admins can addionally test the URL for framekillers - $content['target_bank'] = "{--CLICK_HERE--}"; - } else { - // e-currency payout request - if (empty($content['target_account'])) $content['target_account'] = '---'; - if (empty($content['target_bank'])) $content['target_bank'] = '---'; - } + $content['target_bank'] = '{--CLICK_HERE--}'; + } // END - if - // Remember data in array for the template - $content = array( - 'sw' => $SW, - 'ulink' => generateUserProfileLink($content['userid']), - 'ptype' => translateComma($content['payout_total']) . ' ' . $content['type'], - 'account' => $content['target_account'], - 'bank' => $content['target_bank'], - 'tstamp' => generateDateTime($content['payout_timestamp'], 2), - 'status' => $content['status'], - ); + // Add/Translate some data + $content['payout_timestamp'] = generateDateTime($content['payout_timestamp'], 2); // Add row and switch color $OUT .= loadTemplate('admin_list_payouts_row', true, $content); - $SW = 3 - $SW; - } + } // END - while // Free memory SQL_FREERESULT($result); @@ -286,7 +275,7 @@ ORDER BY loadTemplate('admin_list_payouts', false, $OUT); } else { // No payout requests are sent so far - loadTemplate('admin_settings_saved', false, getMessage('PAYOUT_ADMIN_NO_REQUESTS_FOUND')); + loadTemplate('admin_settings_saved', false, '{--ADMIN_PAYOUT_NO_REQUESTS_FOUND--}'); } }