X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fsponsor%2Fsettings.php;h=eea9919374076586dfa1ba5615bcd8f09d8eeea4;hp=5fadab96fb1049bc9855ae26495455b86fecb335;hb=64c8349613addc3da2242c5cd6b99d64e3fb5f8e;hpb=50b91687d7e7201f6c596a9ad40e8ff35c995074 diff --git a/inc/modules/sponsor/settings.php b/inc/modules/sponsor/settings.php index 5fadab96fb..eea9919374 100644 --- a/inc/modules/sponsor/settings.php +++ b/inc/modules/sponsor/settings.php @@ -17,12 +17,13 @@ * Needs to be in all Files and every File needs "svn propset * * svn:keywords Date Revision" (autoprobset!) at least!!!!!! * * -------------------------------------------------------------------- * - * Copyright (c) 2003 - 2008 by Roland Haeder * + * Copyright (c) 2003 - 2009 by Roland Haeder * * For more information visit: http://www.mxchange.org * * * - * This program is free software. You can redistribute it and/or modify * + * This program is free software; you can redistribute it and/or modify * * it under the terms of the GNU General Public License as published by * - * the Free Software Foundation; either version 2 of the License. * + * the Free Software Foundation; either version 2 of the License, or * + * (at your option) any later version. * * * * This program is distributed in the hope that it will be useful, * * but WITHOUT ANY WARRANTY; without even the implied warranty of * @@ -37,22 +38,32 @@ // Some security stuff... if (!defined('__SECURITY')) { - $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php'; - require($INC); -} elseif (!EXT_IS_ACTIVE('sponsor')) { - addFatalMessage(__FILE__, __LINE__, generateExtensionInactiveNotInstalledMessage('sponsor')); + die(); +} elseif (!isExtensionActive('sponsor')) { + loadTemplate('admin_settings_saved', false, generateExtensionInactiveNotInstalledMessage('sponsor')); return; -} elseif (!IS_SPONSOR()) { +} elseif (!isSponsor()) { // No sponsor! addFatalMessage(__FILE__, __LINE__, getMessage('SPONSOR_ONLY_AREA_ENTERED')); return; } +// Init message +$message = ''; + // Data for the formular -$result = SQL_QUERY_ESC("SELECT status, receive_warnings, warning_interval, email, surname, family, gender -FROM `{!_MYSQL_PREFIX!}_sponsor_data` -WHERE `id`='%s' AND password='%s' LIMIT 1", -array(bigintval(getSession('sponsorid')), getSession('sponsorpass')), __FILE__, __LINE__); +$result = SQL_QUERY_ESC("SELECT + `status`, `receive_warnings`, `warning_interval`, `email`, `surname`, `family`, `gender` +FROM + `{?_MYSQL_PREFIX?}_sponsor_data` +WHERE + `id`='%s' AND `password`='%s' +LIMIT 1", + array( + bigintval(getSession('sponsorid')), + getSession('sponsorpass') + ), __FILE__, __LINE__); + if (SQL_NUMROWS($result) == 1) { // Load sponsor data $content = SQL_FETCHARRAY($result); @@ -60,69 +71,63 @@ if (SQL_NUMROWS($result) == 1) { // Check if form was submitted or not if (isFormSent()) { // Check passwords - if (!REQUEST_ISSET_POST('password')) { + if (!isPostRequestElementSet('password')) { // No current password entered $message = SPONSOR_NO_CURRENT_PASSWORD_ENTERED; - } elseif (md5(REQUEST_POST('password')) != getSession('sponsorpass')) { + } elseif (md5(postRequestElement('password')) != getSession('sponsorpass')) { // Entered password didn't match password in DB $message = SPONSOR_CURRENT_PASSWORD_DIDNOT_MATCH_DB; } else { // Unsecure data which we don't want here - $UNSAFE = array('company', 'position', 'tax_ident', 'gender', 'surname', 'family', - 'street_nr1', 'street_nr2', 'zip', 'city', 'country', 'phone', 'fax', 'cell', - 'email', 'url'); + $UNSAFE = array( + 'company', 'position', 'tax_ident', 'gender', 'surname', 'family', + 'street_nr1', 'street_nr2', 'zip', 'city', 'country', 'phone', 'fax', 'cell', + 'email', 'url' + ); // Remove all (maybe spoofed) unsafe data from array foreach ($UNSAFE as $remove) { - REQUEST_UNSET_POST($remove); - } + unsetPostRequestElement($remove); + } // END - if // Set last change timestamp - REQUEST_SET_POST('last_change', "UNIX_TIMESTAMP()"); + setRequestPostElement('last_change', 'UNIX_TIMESTAMP()'); // Save data - $message = SPONSOR_SAVE_DATA(REQUEST_POST_ARRAY(), $content); + $message = saveSponsorData(postRequestArray(), $content); } if (!empty($message)) { // Output message - $OUT = LOAD_TEMPLATE('admin_settings_saved', true, $message); + $OUT = loadTemplate('admin_settings_saved', true, $message); } else { // No message generated - $OUT = LOAD_TEMPLATE('admin_settings_saved', true, getMessage('SPONSOR_NO_MESSAGE_GENERATED')); + $OUT = loadTemplate('admin_settings_saved', true, getMessage('SPONSOR_NO_MESSAGE_GENERATED')); } } else { // Make yes/no selection - switch ($content['receive_warnings']) { - case 'Y': - define('__YES', ' checked="checked"'); - define('__NO', ''); - break; - - case 'N': - define('__YES', ''); - define('__NO', ' checked="checked"'); - break; - } + $content['receive_warnings_y'] = ''; + $content['receive_warnings_n'] = ''; + $content['receive_warnings_' . strtolower($content['receive_warnings'])] = ' checked="checked"'; // Translate current interval into fancy string - define('__CURRENT', createFancyTime($content['warning_interval'])); + $content['current'] = createFancyTime($content['warning_interval']); // Output formular - $OUT = LOAD_TEMPLATE("sponsor_settings_form", true, $content); + $OUT = loadTemplate('sponsor_settings_form', true, $content); } } else { // Locked or so? $STATUS = sponsorTranslateUserStatus($content['status']); - $OUT = LOAD_TEMPLATE('admin_settings_saved', true, sprintf(getMessage('SPONSOR_ACCOUNT_FAILED'), $STATUS)); + $OUT = loadTemplate('admin_settings_saved', true, sprintf(getMessage('SPONSOR_ACCOUNT_FAILED'), $STATUS)); } } else { // Sponsor account not found! - $OUT = LOAD_TEMPLATE('admin_settings_saved', true, sprintf(getMessage('SPONSOR_ACCOUNT_404'), getSession('sponsorid'))); + $OUT = loadTemplate('admin_settings_saved', true, sprintf(getMessage('SPONSOR_ACCOUNT_404'), getSession('sponsorid'))); } // Free memory SQL_FREERESULT($result); -// +// [EOF] ?>