X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=mailid.php;h=58142edba2336e8de31e3be5713cf08b9d95b18c;hp=597c5453769730e0313ba7cd56d0ba381bf3abc4;hb=0a0553b92d07e51d849f0fb7f525c6b638316551;hpb=508228c85fba8448d00865b1639cb8cd7a69e457 diff --git a/mailid.php b/mailid.php index 597c545376..58142edba2 100644 --- a/mailid.php +++ b/mailid.php @@ -10,14 +10,14 @@ * -------------------------------------------------------------------- * * Kurzbeschreibung : Bestaetigung von Mails * * -------------------------------------------------------------------- * - * $Revision:: 856 $ * + * $Revision:: $ * * $Date:: $ * * $Tag:: 0.2.1-FINAL $ * * $Author:: $ * * Needs to be in all Files and every File needs "svn propset * * svn:keywords Date Revision" (autoprobset!) at least!!!!!! * * -------------------------------------------------------------------- * - * Copyright (c) 2003 - 2008 by Roland Haeder * + * Copyright (c) 2003 - 2009 by Roland Haeder * * For more information visit: http://www.mxchange.org * * * * This program is free software; you can redistribute it and/or modify * @@ -36,193 +36,209 @@ * MA 02110-1301 USA * ************************************************************************/ -// Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) ) -require("inc/libs/security_functions.php"); +// Load security stuff here +require('inc/libs/security_functions.php'); -// Init "action" and "what" -$GLOBALS['what'] = ""; -$GLOBALS['action'] = ""; +// Init start time +$GLOBALS['startTime'] = microtime(true); // Tell everyone we are in this module -$GLOBALS['module'] = "mailid"; +$GLOBALS['module'] = 'mailid'; $GLOBALS['output_mode'] = -1; +$errorCode = ''; // Load the required file(s) -require("inc/config.php"); - -if (isInstalled()) { - // Is the extension active? - REDIRECT_ON_UNINSTALLED_EXTENSION("mailid"); - - // Init - $url_uid = 0; $url_bid = 0; $url_mid = 0; - - // Secure all data - if (REQUEST_ISSET_GET(('uid'))) $url_uid = bigintval(REQUEST_GET('uid')); - if (REQUEST_ISSET_GET(('mailid'))) $url_mid = bigintval(REQUEST_GET('mailid')); - if (REQUEST_ISSET_GET(('bonusid'))) $url_bid = bigintval(REQUEST_GET('bonusid')); - - // 01 1 12 3 32 21 1 22 10 - if (($url_uid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (getTotalFatalErrors() == 0)) { - // Maybe he wants to confirm an email? - if ($url_mid > 0) { - // Normal-Mails - $result = SQL_QUERY_ESC("SELECT link_type FROM `{!_MYSQL_PREFIX!}_user_links` WHERE stats_id=%s AND userid=%s LIMIT 1", - array($url_mid, $url_uid), __FILE__, __LINE__); - $type = "mailid"; $DATA = $url_mid; - } elseif ($url_bid > 0) { - // Bonus-Mail - $result = SQL_QUERY_ESC("SELECT link_type FROM `{!_MYSQL_PREFIX!}_user_links` WHERE bonus_id=%s AND userid=%s LIMIT 1", - array($url_bid, $url_uid), __FILE__, __LINE__); - $type = "bonusid"; $DATA = $url_bid; - } else { - // Problem: No ID entered - LOAD_URL("index.php"); - } - - if (SQL_NUMROWS($result) == 1) { - // Load the entry - list($ltype) = SQL_FETCHROW($result); +require('inc/config-global.php'); + +// Set content type +setContentType('text/html'); + +// Is the extension active? +redirectOnUninstalledExtension('mailid'); + +// Init +$url_userid = 0; +$url_bid = 0; +$url_mid = 0; + +// Secure all data +if (isGetRequestElementSet('userid')) $url_userid = bigintval(getRequestElement('userid')); +if (isGetRequestElementSet('mailid')) $url_mid = bigintval(getRequestElement('mailid')); +if (isGetRequestElementSet('bonusid')) $url_bid = bigintval(getRequestElement('bonusid')); + +// 01 1 12 2 2 21 1 22 10 +if (($url_userid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (getTotalFatalErrors() == 0)) { + // Init result + $result_link = false; + + // Maybe he wants to confirm an email? + if ($url_mid > 0) { + // Normal-Mails + $result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `stats_id`=%s AND `userid`=%s LIMIT 1", + array($url_mid, $url_userid), __FILE__, __LINE__); + $type = 'mailid'; $urlId = $url_mid; + } elseif ($url_bid > 0) { + // Bonus-Mail + $result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `bonus_id`=%s AND `userid`=%s LIMIT 1", + array($url_bid, $url_userid), __FILE__, __LINE__); + $type = 'bonusid'; $urlId = $url_bid; + } else { + // Problem: No ID entered + redirectToUrl('index.php'); + } - // Clean result - SQL_FREERESULT($result); + if (SQL_NUMROWS($result_link) == 1) { + // Load the entry + list($ltype) = SQL_FETCHROW($result_link); - switch ($ltype) - { - case "NORMAL": + // @TODO Rewrite this to a filter + switch ($ltype) { + case 'NORMAL': // Is the stats ID valid? - $result = SQL_QUERY_ESC("SELECT pool_id, url, subject FROM `{!_MYSQL_PREFIX!}_user_stats` WHERE id=%s LIMIT 1", + $result = SQL_QUERY_ESC("SELECT pool_id, url, subject FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `id`=%s LIMIT 1", array($url_mid), __FILE__, __LINE__); break; - case "BONUS": + case 'BONUS': // Is the bonus extension active? - REDIRECT_ON_UNINSTALLED_EXTENSION("bonus"); + redirectOnUninstalledExtension('bonus'); // Bonus-Mails - $result = SQL_QUERY_ESC("SELECT id, url, subject FROM `{!_MYSQL_PREFIX!}_bonus` WHERE id=%s LIMIT 1", + $result = SQL_QUERY_ESC("SELECT id, url, subject FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1", array($url_bid), __FILE__, __LINE__); break; - } - if (SQL_NUMROWS($result) == 1) { - // Load data - list($pool, $URL, $EXTRA_TITLE) = SQL_FETCHROW($result); + default: // Invalid mail type + debug_report_bug('Invalid mail type ' . $ltype . ' detected.'); + break; + } - // Free result - SQL_FREERESULT($result); + if (SQL_NUMROWS($result) == 1) { + // Load data + list($pool, $URL, $title) = SQL_FETCHROW($result); - // Compile extra title - $EXTRA_TITLE = COMPILE_CODE($EXTRA_TITLE); - - // Is the user's ID unlocked? - $result = SQL_QUERY_ESC("SELECT status, gender, surname, family FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", - array($url_uid), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 1) { - list($status, $gender, $sname, $fname) = SQL_FETCHROW($result); - SQL_FREERESULT($result); - if ($status == "CONFIRMED") { - // User has confirmed his account so we can procede... - switch ($ltype) - { - case "NORMAL": - $result = SQL_QUERY_ESC("SELECT payment_id FROM `{!_MYSQL_PREFIX!}_user_stats` WHERE pool_id=%s LIMIT 1", + // Free result + SQL_FREERESULT($result); + + // Set it + setExtraTitle($title); + + // Is the user's ID unlocked? + $result = SQL_QUERY_ESC("SELECT `status`, `gender`, `surname`, `family` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1", + array($url_userid), __FILE__, __LINE__); + if (SQL_NUMROWS($result) == 1) { + list($status, $gender, $surname, $family) = SQL_FETCHROW($result); + SQL_FREERESULT($result); + if ($status == 'CONFIRMED') { + // User has confirmed his account so we can procede... + // @TODO Rewrite this to a filter + switch ($ltype) { + case 'NORMAL': + $result = SQL_QUERY_ESC("SELECT payment_id FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `pool_id`=%s LIMIT 1", array(bigintval($pool)), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { list($pay) = SQL_FETCHROW($result); - $time = GET_PAY_POINTS($pay, "time"); - $payment = GET_PAY_POINTS($pay, "payment"); - $VALID = true; - } + $time = getPaymentPoints($pay, 'time'); + $payment = getPaymentPoints($pay, 'payment'); + $isValid = true; + } // END - if // Free memory SQL_FREERESULT($result); break; - case "BONUS": - $result = SQL_QUERY_ESC("SELECT points, time FROM `{!_MYSQL_PREFIX!}_bonus` WHERE id=%s LIMIT 1", + case 'BONUS': + $result = SQL_QUERY_ESC("SELECT points, time FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1", array($url_bid), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { list($points, $time) = SQL_FETCHROW($result); - $payment = "0.00000"; - $VALID = true; + $payment = '0.00000'; + $isValid = true; } // Free memory SQL_FREERESULT($result); break; - } - // Add header - LOAD_INC_ONCE("inc/header.php"); - - // Was that mail a valid one? - if ($VALID) { - // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems - if (($time == "0") && ($payment > 0)) { $URL = constant('URL'); $time = "1"; } - if (($time > 0) && (($payment > 0) || ($points > 0))) { - // He can confirm this mail! - // Export data into constants for the template - define('_UID_VALUE' , $url_uid); - define('_TYPE_VALUE', $type); - define('_DATA_VALUE', $DATA); - define('_URL_VALUE' , DEREFERER($URL)); - - // Load template - LOAD_TEMPLATE("mailid_frames"); - } else { - $msg = getCode('DATA_INVALID'); - } + default: // Invalid mail type + debug_report_bug('Invalid mail type ' . $ltype . ' detected.'); + break; + } + + // Add header + loadIncludeOnce('inc/header.php'); + + // Was that mail a valid one? + if ($isValid === true) { + // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems + if (($time == 0) && ($payment > 0)) { $URL = getConfig('URL'); $time = 1; } + if (($time > 0) && (($payment > 0) || ($points > 0))) { + // Export data into constants for the template + $content = array( + 'userid' => $url_userid, + 'type' => $type, + 'data' => $urlId, + 'url' => generateDerefererUrl($URL) + ); + + // Load template + loadTemplate('mailid_frames', false, $content); } else { - $msg = getCode('POSSIBLE_INVALID'); + $errorCode = getCode('DATA_INVALID'); } } else { - $msg = getCode('ACCOUNT_LOCKED'); + $errorCode = getCode('POSSIBLE_INVALID'); } } else { - SQL_FREERESULT($result); - $msg = getCode('USER_404'); + $errorCode = getCode('ACCOUNT_' . $status); } } else { SQL_FREERESULT($result); - $msg = getCode('STATS_404'); + $errorCode = getCode('USER_404'); } } else { SQL_FREERESULT($result); - $msg = getCode('ALREADY_CONFIRMED'); + $errorCode = getCode('STATS_404'); } } else { - // Nothing entered - $msg = getCode('ERROR_MAILID'); + SQL_FREERESULT($result); + $errorCode = getCode('ALREADY_CONFIRMED'); } - // Error code is set? - if (!empty($msg)) { - switch (getConfig('mailid_error_redirect')) { - case "INDEX": // Redirect to index page - LOAD_URL("modules.php?module=index&msg=".$msg."&ext=mailid"); - break; - - case "REJECT": // Redirect to rejection page - LOAD_CONFIGURED_URL('reject_url'); - break; - - default: - DEBUG_LOG(__FILE__, __LINE__, sprintf("Unknown status %s detected in mailid_error_redirect.", getConfig('mailid_error_redirect'))); - LOAD_URL("modules.php?module=index&msg=".getCode('UNKNOWN_STATUS')."&ext=mailid"); - break; - } - } else { - // Include footer - LOAD_INC_ONCE("inc/footer.php"); - } + // Free result + SQL_FREERESULT($result_link); } else { - // You have to install first! - LOAD_URL("install.php"); + // Nothing entered + $errorCode = getCode('ERROR_MAILID'); } -// Shutdown -shutdown(); +// Error code is set? +if (!empty($errorCode)) { + // @TODO Rewrite this to a dynamic include or so + switch (getConfig('mailid_error_redirect')) { + case 'INDEX': // Redirect to index page + redirectToUrl('modules.php?module=index&code=' . $errorCode . '&ext=mailid'); + break; + + case 'REJECT': // Redirect to rejection page + if (isExtensionActive('other')) { + // Redirect to configured URL + redirectToConfiguredUrl('reject_url'); + } else { + // Redirect to index + redirectToUrl('index.php'); + } + break; + + default: + logDebugMessage(__FILE__, __LINE__, sprintf("Unknown status %s detected in mailid_error_redirect.", getConfig('mailid_error_redirect'))); + redirectToUrl('modules.php?module=index&code=' . getCode('UNKNOWN_STATUS') . '&ext=mailid'); + break; + } // END - switch +} // END - if + +// Include footer +loadIncludeOnce('inc/footer.php'); -// +// [EOF] ?>