X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmysql-manager.php;h=83c8f1cf38cba223d7013978453e8cb9605cc206;hp=e7d9adeccac4ac36ac963462518fc9dbf8ee4e7e;hb=07a07340291a560c3da7715d4d51c9b2f0d2adf2;hpb=4ef4c88fc481335dc0631b223111c15a84cccb51 diff --git a/inc/mysql-manager.php b/inc/mysql-manager.php index e7d9adecca..83c8f1cf38 100644 --- a/inc/mysql-manager.php +++ b/inc/mysql-manager.php @@ -32,7 +32,7 @@ ************************************************************************/ // Some security stuff... -if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) { +if (!defined('__SECURITY')) { $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php"; require($INC); } @@ -44,7 +44,8 @@ function ADD_MODULE_TITLE($mod) { // Is the script installed? if (isBooleanConstantAndTrue('mxchange_installed')) { - if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (is_array($cacheArray['modules']['module'])) && (isset($cacheArray['modules']['module'][$mod]))) { + // Check if cache is valid + if ((GET_EXT_VERSION("cache") >= "0.1.2") && (isset($cacheArray['modules']['module'])) && (in_array($mod, $cacheArray['modules']['module']))) { // Load from cache $name = $cacheArray['modules']['title'][$mod]; @@ -56,7 +57,7 @@ function ADD_MODULE_TITLE($mod) { list($name) = SQL_FETCHROW($result); SQL_FREERESULT($result); } - } + } // END - if // Trim name $name = trim($name); @@ -68,8 +69,10 @@ function ADD_MODULE_TITLE($mod) { if (SQL_NUMROWS($result) == 0) { // Add module to database $dummy = CHECK_MODULE($mod); - } - } + } // END - if + } // END - if + + // Return name return $name; } @@ -132,13 +135,13 @@ function CHECK_MODULE($mod) { // Check returned values against current access permissions // // Admin access ----- Guest access ----- --- Guest or member? --- - if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_LOGGED_IN())))) { + if ((IS_ADMIN()) || (($locked == "N") && ($admin == "N") && (($mem == "N") || (IS_MEMBER())))) { // If you are admin you are welcome for everything! $ret = "done"; } elseif ($locked == "Y") { // Module is locked $ret = "locked"; - } elseif (($mem == "Y") && (!IS_LOGGED_IN())) { + } elseif (($mem == "Y") && (!IS_MEMBER())) { // You have to login first! $ret = "mem_only"; } elseif (($admin == "Y") && (!IS_ADMIN())) { @@ -171,10 +174,7 @@ function CHECK_MODULE($mod) { } // END - if // Destroy cache here - if (GET_EXT_VERSION("cache") >= "0.1.2") { - if ($cacheInstance->cache_file("mod_reg", true)) $cacheInstance->cache_destroy(); - unset($cacheArray['modules']); - } // END - if + REBUILD_CACHE("mod_reg", "modreg"); // And reload data $ret = CHECK_MODULE($mod_chk); @@ -245,7 +245,7 @@ function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) { $AND = ""; } if ((!isset($DEPTH)) && (!$return)) { - $DEPTH = "0"; + $DEPTH = 0; $prefix = "
".YOU_ARE_HERE." Home"; } else { if (!$return) $DEPTH++; @@ -254,30 +254,49 @@ function ADD_DESCR($ACC_LVL, $file, $return = false, $output = true) { $prefix .= " -> "; - if (ereg(".php", $search)) { - $search = substr($search, 0, strpos($search, ".php")); - } + // We need to remove .php and the end + if (substr($search, -4, 4) == ".php") { + // Remove the .php + $search = substr($search, 0, -4); + } // END - i + // Get the title from menu $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' ".$AND." LIMIT 1", array($ACC_LVL, $type, $search), __FILE__, __LINE__); + // Menu found? if (SQL_NUMROWS($result) == 1) { + // Load title list($ret) = SQL_FETCHROW($result); - SQL_FREERESULT($result); + + // Shall we return it? if ($return) { // Return title return $ret; } elseif (((GET_EXT_VERSION("sql_patches") >= "0.2.3") && ($_CONFIG['youre_here'] == "Y")) || ((IS_ADMIN()) && ($MOD_CHECK == "admin"))) { // Output HTML code $OUT = $prefix."".$ret."\n"; + + // Can we close the you-are-here navigation? //* DEBUG: */ echo __LINE__."*".$type."/".$GLOBALS['what']."*
\n"; - if (($type == "what") || (($type == "action") && (!isset($_GET['what'])) && ($GLOBALS['what'] != "welcome"))) { + //* DEBUG: */ die("
".print_r($_CONFIG, true)."
"); + if (($type == "what") || (($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview")))) { //* DEBUG: */ echo __LINE__."+".$type."+
\n"; $OUT .= "

\n"; $DEPTH="0"; - } + + // Handle failed logins here if not in guest + //* DEBUG: */ echo __FUNCTION__.":type={$type},action={$GLOBALS['action']},what={$GLOBALS['what']},lvl={$ACC_LVL}
\n"; + if ((($type == "what") || ($type == "action") && ((!isset($GLOBALS['what'])) || ($GLOBALS['what'] == "overview") || ($GLOBALS['what'] == $_CONFIG['index_home']))) && ($ACC_LVL != "guest") && ((GET_EXT_VERSION("sql_patches") >= "0.4.7") || (GET_EXT_VERSION("admins") >= "0.7.0"))) { + // Handle failture + $OUT .= HANDLE_LOGIN_FAILTURES($ACC_LVL); + } // END - if + } // END - if } - } + } // END - if + + // Free result + SQL_FREERESULT($result); // Return or output HTML code? if ($output) { @@ -314,11 +333,19 @@ function ADD_MENU($MODE, $act, $wht) { // There are menus available, so we simply display them... :) while (list($main_title, $main_action) = SQL_FETCHROW($result_main)) { //* DEBUG: */ echo __LINE__."/".$main_cnt."/".$main_action."/".$sub_what.":".$GLOBALS['what']."*
\n"; - // Load menu header template + // Init variables $BLOCK_MODE = false; $act = $main_action; - LOAD_TEMPLATE($MODE."_menu_title", false, $main_title); - $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' ".$AND." ORDER BY sort", + // Prepare content + $content = array( + 'action' => $main_action, + 'title' => $main_title + ); + + // Load menu header template + LOAD_TEMPLATE($MODE."_menu_title", false, $content); + + $result_sub = SQL_QUERY_ESC("SELECT title, what FROM "._MYSQL_PREFIX."_%s_menu WHERE action='%s' AND what != '' AND what IS NOT NULL ".$AND." ORDER BY sort", array($MODE, $main_action), __FILE__, __LINE__); $ctl = SQL_NUMROWS($result_sub); if ($ctl > 0) { @@ -355,6 +382,13 @@ function ADD_MENU($MODE, $act, $wht) { $content .= ""; } $wht = $sub_what; $cnt++; + // Prepare array + $content = array( + 'menu' => $content, + 'what' => $sub_what + ); + + // Add regular menu row or bottom row? if ($cnt < $ctl) { LOAD_TEMPLATE($MODE."_menu_row", false, $content); } else { @@ -406,12 +440,18 @@ function IS_ADMIN($admin="") //* DEBUG: */ echo __LINE__."ADMIN:".$admin."/".$passCookie."
"; // Search in array for entry - if ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) { + if (isset($cacheArray['admin_hash'])) { + // Use cached string + $valPass = $cacheArray['admin_hash']; + } elseif ((!empty($passCookie)) && (isset($cacheArray['admins']['password'][$admin])) && (!empty($admin))) { // Count cache hits $_CONFIG['cache_hits']++; // Login data is valid or not? $valPass = generatePassString($cacheArray['admins']['password'][$admin]); + + // Cache it away + $cacheArray['admin_hash'] = $valPass; } elseif (!empty($admin)) { // Search for admin $result = SQL_QUERY_ESC("SELECT HIGH_PRIORITY password FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1", @@ -423,9 +463,12 @@ function IS_ADMIN($admin="") // Admin login was found so let's load password from DB list($passDB) = SQL_FETCHROW($result); + // Temporary cache it + $cacheArray['admins']['password'][$admin] = $passDB; + // Generate password hash $valPass = generatePassString($passDB); - } + } // END - if // Free memory SQL_FREERESULT($result); @@ -438,7 +481,7 @@ function IS_ADMIN($admin="") } // Return result of comparision - //* DEBUG: */ if (!$ret) echo __LINE__."OK!
"; + //* DEBUG: */ if (!$ret) echo __LINE__."OK!
"; return $ret; } // @@ -538,7 +581,7 @@ function WHAT_IS_VALID($act, $wht, $type="guest") } } // -function IS_LOGGED_IN() +function IS_MEMBER() { global $status, $LAST; if (!is_array($LAST)) $LAST = array(); @@ -565,13 +608,13 @@ function IS_LOGGED_IN() if ((!empty($mod)) && (empty($LAST['module']))) { $LAST['module'] = $mod; $LAST['online'] = $onl; } // So did we now have valid data and an unlocked user? - //* DEBUG: */ echo $valPass."
".get_session('u_hash')."
"; + //* DEBUG: */ echo $valPass."
".get_session('u_hash')."
"; if (($status == "CONFIRMED") && ($valPass == get_session('u_hash'))) { // Account is confirmed and all cookie data is valid so he is definely logged in! :-) $ret = true; } else { // Maybe got locked etc. - //* DEBUG: */ echo __LINE__."!!!
"; + //* DEBUG: */ echo __LINE__."!!!
"; destroy_user_session(); // Remove array elements to prevent errors @@ -579,7 +622,7 @@ function IS_LOGGED_IN() } } else { // Cookie data is invalid! - //* DEBUG: */ echo __LINE__."***
"; + //* DEBUG: */ echo __LINE__."***
"; // Remove array elements to prevent errors unset($GLOBALS['userid']); @@ -587,21 +630,21 @@ function IS_LOGGED_IN() // Free memory SQL_FREERESULT($result); - } - else - { + } else { // Cookie data is invalid! - //* DEBUG: */ echo __LINE__."///
"; + //* DEBUG: */ echo __LINE__."///
"; destroy_user_session(); // Remove array elements to prevent errors unset($GLOBALS['userid']); } + + // Return status return $ret; } // function UPDATE_LOGIN_DATA ($UPDATE=true) { - global $LAST; + global $LAST, $_CONFIG; if (!is_array($LAST)) $LAST = array(); // Are the required cookies set? @@ -617,7 +660,7 @@ function UPDATE_LOGIN_DATA ($UPDATE=true) { $newl = time() + bigintval(get_session('lifetime')); // Recheck if logged in - if (!IS_LOGGED_IN()) return false; + if (!IS_MEMBER()) return false; // Load last module and last online time $result = SQL_QUERY_ESC("SELECT last_module, last_online FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1", array($GLOBALS['userid']), __FILE__, __LINE__); @@ -633,10 +676,14 @@ function UPDATE_LOGIN_DATA ($UPDATE=true) { // This will be displayed on welcome page! :-) if (empty($LAST['module'])) { $LAST['module'] = $mod; $LAST['online'] = $onl; - } + } // END - if + + // "what" not set? if (empty($GLOBALS['what'])) { + // Fix it to default $GLOBALS['what'] = "welcome"; - } + if (!empty($_CONFIG['index_home'])) $GLOBALS['what'] = $_CONFIG['index_home']; + } // END - if // Update last module / online time $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET last_module='%s', last_online=UNIX_TIMESTAMP() WHERE userid=%s LIMIT 1", @@ -650,7 +697,6 @@ function UPDATE_LOGIN_DATA ($UPDATE=true) { // function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false) { - global $link; $ret = false; $ADD = ""; if ((!IS_ADMIN()) && ($MODE != "admin")) $ADD = " AND locked='N'"; @@ -678,7 +724,7 @@ function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false) $result = SQL_QUERY($SQL, __FILE__, __LINE__); if ($UPDATE) { - if (SQL_AFFECTEDROWS($link, __FILE__, __LINE__) == 1) $ret = true; + if (SQL_AFFECTEDROWS() == 1) $ret = true; //* DEBUG: */ debug_print_backtrace(); } else @@ -698,16 +744,29 @@ function VALIDATE_MENU_ACTION ($MODE, $act, $wht, $UPDATE=false) return $ret; } // -function GET_MOD_DESCR($MODE, $wht) +function GET_MOD_DESCR($MODE, $wht, $column="what") { - if (empty($wht)) $wht = "welcome"; + // Fix empty "what" + if (empty($wht)) { + $wht = "welcome"; + if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home']; + } // END - if + + // Default is not found $ret = "??? (".$wht.")"; - $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1", array($MODE, $wht), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 1) - { + + // Look for title + $result = SQL_QUERY_ESC("SELECT title FROM "._MYSQL_PREFIX."_%s_menu WHERE %s='%s' LIMIT 1", + array($MODE, $column, $wht), __FILE__, __LINE__); + + // Is there an entry? + if (SQL_NUMROWS($result) == 1) { + // Fetch the title list($ret) = SQL_FETCHROW($result); - SQL_FREERESULT($result); - } + } // END - if + + // Free result + SQL_FREERESULT($result); return $ret; } // @@ -729,7 +788,7 @@ function SEND_MODE_MAILS($mod, $modes) $hash = generatePassString($hashDB); if (($hash == get_session('u_hash')) || ($_POST['pass1'] == $_POST['pass2'])) { // Load user's data - $result = SQL_QUERY_ESC("SELECT sex, surname, family, street_nr, country, zip, city, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND password='%s' LIMIT 1", + $result = SQL_QUERY_ESC("SELECT gender, surname, family, street_nr, country, zip, city, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND password='%s' LIMIT 1", array($GLOBALS['userid'], $hashDB), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { // Load the data @@ -738,8 +797,8 @@ function SEND_MODE_MAILS($mod, $modes) // Free result SQL_FREERESULT($result); - // Translate salutation - $DATA[0] = TRANSLATE_SEX($DATA[0]); + // Translate gender + $DATA[0] = TRANSLATE_GENDER($DATA[0]); // Clear/init the content variable $content = ""; @@ -845,47 +904,37 @@ function COUNT_MODULE($mod) // Get action value from mode (admin/guest/member) and what-value function GET_ACTION ($MODE, &$wht) { - global $ret; $ret = ""; - //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=
"; - if ((empty($wht)) && ($MODE != "admin")) - { + global $ret, $_CONFIG; + // @DEPRECATED Init status + $ret = ""; + + //* DEBUG: */ echo __LINE__."=".$MODE."/".$wht."/".$GLOBALS['action']."=
"; + if ((empty($wht)) && ($MODE != "admin")) { $wht = "welcome"; - } - if ($MODE == "admin") - { + if (!empty($_CONFIG['index_home'])) $wht = $_CONFIG['index_home']; + } // END - if + + if ($MODE == "admin") { // Action value for admin area - if (!empty($GLOBALS['action'])) - { + if (!empty($GLOBALS['action'])) { // Get it directly from URL return $GLOBALS['action']; - } - elseif (($wht == "overview") || (empty($GLOBALS['what']))) - { + } elseif (($wht == "overview") || (empty($GLOBALS['what']))) { // Default value for admin area $ret = "login"; } - } - elseif (!empty($GLOBALS['action'])) - { - // Fix welcome value - if (empty($wht)) $wht = "welcome"; + } elseif (!empty($GLOBALS['action'])) { + // Get it directly from URL return $GLOBALS['action']; - } - else - { - // Everything else will be touched after checking the module has a menu assigned } //* DEBUG: */ echo __LINE__."*".$ret."*
\n"; - if (MODULE_HAS_MENU($MODE)) - { + if (MODULE_HAS_MENU($MODE)) { // Rewriting modules to menu - switch ($MODE) - { + switch ($MODE) { case "index": $MODE = "guest"; break; case "login": $MODE = "member"; break; - break; - } + } // END - switch // Guest and member menu is "main" as the default if (empty($ret)) $ret = "main"; @@ -893,15 +942,14 @@ function GET_ACTION ($MODE, &$wht) // Load from database $result = SQL_QUERY_ESC("SELECT action FROM "._MYSQL_PREFIX."_%s_menu WHERE what='%s' LIMIT 1", array($MODE, $wht), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 1) - { + if (SQL_NUMROWS($result) == 1) { // Load action value and pray that this one is the right you want... ;-) list($ret) = SQL_FETCHROW($result); - } + } // END - if // Free memory SQL_FREERESULT($result); - } + } // END - if // Return action value return $ret; @@ -911,16 +959,19 @@ function GET_CATEGORY ($cid) { // Default is not found $ret = _CATEGORY_404; - // Lookup the category - $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1", - array(bigintval($cid)), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 1) { - // Category found... :-) - list($ret) = SQL_FETCHROW($result); - } // END - if + // Is the category id set? + if (!empty($cid)) { + // Lookup the category in database + $result = SQL_QUERY_ESC("SELECT cat FROM "._MYSQL_PREFIX."_cats WHERE id=%s LIMIT 1", + array(bigintval($cid)), __FILE__, __LINE__); + if (SQL_NUMROWS($result) == 1) { + // Category found... :-) + list($ret) = SQL_FETCHROW($result); + } // END - if - // Free result - SQL_FREERESULT($result); + // Free result + SQL_FREERESULT($result); + } // END - if // Return result return $ret; @@ -1005,7 +1056,7 @@ function REMOVE_RECEIVER(&$ARRAY, $key, $uid, $pool_id, $stats_id="", $bonus=fal // function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid", $onlyRows=false) { - $ret = "0"; + $ret = 0; if ($onlyRows) { // Count rows $result = SQL_QUERY_ESC("SELECT COUNT(%s) FROM "._MYSQL_PREFIX."_%s WHERE %s='%s'", @@ -1022,7 +1073,7 @@ function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid", SQL_FREERESULT($result); if (empty($ret)) { if (($lookFor == "counter") || ($lookFor == "id")) { - $ret = "0"; + $ret = 0; } else { $ret = "0.00000"; } @@ -1039,11 +1090,11 @@ function GET_TOTAL_DATA($search, $tableName, $lookFor, $whereStatement="userid", * rid = inc/modules/guest/what-confirm.php need this * locked = Shall I pay it to normal (false) or locked (true) points ammount? * add_mode = Add points only to $uid or also refs? (WARNING! Changing "ref" to "direct" - * will cause no referral will get points ever!!!) + * for default value will cause no referral will get points ever!!!) */ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $locked=false, $add_mode="ref") { - global $DEPTH, $_CONFIG, $DATA, $link; + global $DEPTH, $_CONFIG, $DATA; // Debug message //DEBUG_LOG(__FUNCTION__.": uid={$uid},points={$points}"); @@ -1058,7 +1109,7 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock // Count up referral depth if (empty($DEPTH)) { // Initialialize referral system - $DEPTH = "0"; + $DEPTH = 0; } else { // Increase referral level $DEPTH++; @@ -1068,8 +1119,11 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock $percents = "percents"; if (isset($_CONFIG['db_percents'])) $percents = $_CONFIG['db_percents']; $table = "refdepths"; if (isset($_CONFIG['db_table'])) $table = $_CONFIG['db_table']; + // Default is "normal" points + $data = "points"; + // Which points, locked or normal? - $data = "points"; if ($locked) $data = "locked_points"; + if ($locked) $data = "locked_points"; // Check user account $result_user = SQL_QUERY_ESC("SELECT refid, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1", @@ -1122,9 +1176,16 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock // Points updated, maybe I shall send him an email? if (($send_notify) && ($ref > 0) && (!$locked)) { - // 0 1 2 3 - $DATA = array($per, bigintval($DEPTH), $ref_points, bigintval($ref)); - $msg = LOAD_EMAIL_TEMPLATE("confirm-referral", "", bigintval($uid)); + // Prepare content + $content = array( + 'percent' => $per, + 'level' => bigintval($DEPTH), + 'points' => $ref_points, + 'refid' => bigintval($ref) + ); + + // Load email template + $msg = LOAD_EMAIL_TEMPLATE("confirm-referral", $content, bigintval($uid)); SEND_EMAIL($email, THANX_REFERRAL_ONE, $msg); } elseif (($send_notify) && ($ref == 0) && (!$locked) && ($add_mode == "direct") && (!defined('__POINTS_VALUE'))) { @@ -1156,16 +1217,17 @@ function ADD_POINTS_REFSYSTEM($uid, $points, $send_notify=false, $rid="0", $lock // function UPDATE_REF_COUNTER($uid) { - global $REF_LVL, $link, $cacheInstance; + global $REF_LVL, $cacheInstance; + // Make it sure referral level zero (member him-/herself) is at least selected - if (empty($REF_LVL)) $REF_LVL = "0"; + if (empty($REF_LVL)) $REF_LVL = 0; // Update counter $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refsystem SET counter=counter+1 WHERE userid=%s AND level='%s' LIMIT 1", array(bigintval($uid), $REF_LVL), __FILE__, __LINE__); // When no entry was updated then we have to create it here - if (SQL_AFFECTEDROWS($link) == 0) + if (SQL_AFFECTEDROWS() == 0) { // First count! $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refsystem (userid, level, counter) VALUES ('%s', '%s', '1')", @@ -1192,44 +1254,50 @@ function UPDATE_REF_COUNTER($uid) if ($cacheInstance->cache_file("refsystem", true)) $cacheInstance->cache_destroy(); } } -// -function UPDATE_ONLINE_LIST($SID, $mod, $act, $wht) -{ - global $link, $_CONFIG; +// Updates/extends the online list +function UPDATE_ONLINE_LIST($SID, $mod, $act, $wht) { + global $_CONFIG; + // Do not update online list when extension is deactivated if (!EXT_IS_ACTIVE("online", true)) return; + // Empty session? + if (empty($SID)) { + // This is invalid here! + print "Invalid session. Backtrace:
";
+		debug_print_backtrace();
+		die("
"); + } // END - if + // Initialize variables - $uid = "0"; $rid = "0"; $MEM = "N"; $ADMIN = "N"; - if (!empty($GLOBALS['userid'])) - { - // Update member status only when userid is valid - if (($GLOBALS['userid'] > 0) && (IS_LOGGED_IN())) - { - // Is valid user - $uid = $GLOBALS['userid']; - $MEM = "Y"; - } - } - if (IS_ADMIN()) - { + $uid = 0; $rid = 0; $MEM = "N"; $ADMIN = "N"; + + // Valid userid? + if ((!empty($GLOBALS['userid'])) && ($GLOBALS['userid'] > 0) && (IS_MEMBER())) { + // Is valid user + $uid = bigintval($GLOBALS['userid']); + $MEM = "Y"; + } // END - if + + if (IS_ADMIN()) { // Is administrator $ADMIN = "Y"; - } + } // END - if + if (isSessionVariableSet('refid')) { // Check cookie - if (get_session('refid') > 0) $rid = $GLOBALS['refid']; - } + if (get_session('refid') > 0) $rid = bigintval($GLOBALS['refid']); + } // END - if - // Now Read data + // Now search for the user $result = SQL_QUERY_ESC("SELECT timestamp FROM "._MYSQL_PREFIX."_online WHERE sid='%s' LIMIT 1", array($SID), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 1) - { - SQL_FREERESULT($result); - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_online SET + // Entry found? + if (SQL_NUMROWS($result) == 1) { + // Then update it + SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_online SET module='%s', action='%s', what='%s', @@ -1239,24 +1307,18 @@ is_member='%s', is_admin='%s', timestamp=UNIX_TIMESTAMP() WHERE sid='%s' LIMIT 1", - array( - $mod, - $act, - $wht, - bigintval($uid), - bigintval($rid), - $MEM, - $ADMIN, - $SID -), __FILE__, __LINE__); - } - else - { + array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID), __FILE__, __LINE__ + ); + } else { // No entry does exists so we simply add it! - $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_online (module, action, what, userid, refid, is_member, is_admin, timestamp, sid, ip) VALUES ('%s', '%s', '%s', %s, %s, '%s', '%s', UNIX_TIMESTAMP(), '%s', '%s')", - array($mod, $act, $wht, bigintval($uid), bigintval($rid), $MEM, $ADMIN, $SID, getenv('REMOTE_ADDR')), __FILE__, __LINE__); + SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_online (module, action, what, userid, refid, is_member, is_admin, timestamp, sid, ip) VALUES ('%s', '%s', '%s', %s, %s, '%s', '%s', UNIX_TIMESTAMP(), '%s', '%s')", + array($mod, $act, $wht, $uid, $rid, $MEM, $ADMIN, $SID, getenv('REMOTE_ADDR')), __FILE__, __LINE__ + ); } + // Free result + SQL_FREERESULT($result); + // Purge old entries $result = SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_online WHERE timestamp <= (UNIX_TIMESTAMP() - %s)", array($_CONFIG['online_timeout']), __FILE__, __LINE__); @@ -1355,7 +1417,7 @@ function ADD_OPTION_LINES($table, $id, $name, $default="",$special="",$where="") // Selection from array if (is_array($id) && is_array($name) && sizeof($id) == sizeof($name)) { // Both are arrays - foreach ($id as $idx=>$value) { + foreach ($id as $idx => $value) { $ret .= "