X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=mailid.php;h=dcd0208ad0247cb47df77dee388cbd3e6d08ace6;hp=d61a17441aab468a3b59b12cc0741db2d21876d5;hb=3925d2168d4740ced8ea4e510a525ed4743c8f4f;hpb=7b0f17cd637e388049d2167811e4332cec1e979b diff --git a/mailid.php b/mailid.php index d61a17441a..dcd0208ad0 100644 --- a/mailid.php +++ b/mailid.php @@ -17,7 +17,7 @@ * Needs to be in all Files and every File needs "svn propset * * svn:keywords Date Revision" (autoprobset!) at least!!!!!! * * -------------------------------------------------------------------- * - * Copyright (c) 2003 - 2008 by Roland Haeder * + * Copyright (c) 2003 - 2009 by Roland Haeder * * For more information visit: http://www.mxchange.org * * * * This program is free software; you can redistribute it and/or modify * @@ -36,111 +36,122 @@ * MA 02110-1301 USA * ************************************************************************/ -// Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) ) +// Load security stuff here require('inc/libs/security_functions.php'); -// Init "action" and "what" -$GLOBALS['what'] = ''; -$GLOBALS['action'] = ''; +// Init start time +$GLOBALS['startTime'] = microtime(true); // Tell everyone we are in this module $GLOBALS['module'] = 'mailid'; $GLOBALS['output_mode'] = -1; +$errorCode = ''; // Load the required file(s) -require('inc/config.php'); - -if (isInstalled()) { - // Is the extension active? - REDIRECT_ON_UNINSTALLED_EXTENSION('mailid'); - - // Init - $url_uid = 0; $url_bid = 0; $url_mid = 0; - - // Secure all data - if (REQUEST_ISSET_GET('uid')) $url_uid = bigintval(REQUEST_GET('uid')); - if (REQUEST_ISSET_GET('mailid')) $url_mid = bigintval(REQUEST_GET('mailid')); - if (REQUEST_ISSET_GET('bonusid')) $url_bid = bigintval(REQUEST_GET('bonusid')); - - // 01 1 12 3 32 21 1 22 10 - if (($url_uid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (getTotalFatalErrors() == 0)) { - // Maybe he wants to confirm an email? - if ($url_mid > 0) { - // Normal-Mails - $result = SQL_QUERY_ESC("SELECT link_type FROM `{!_MYSQL_PREFIX!}_user_links` WHERE stats_id=%s AND `userid`=%s LIMIT 1", - array($url_mid, $url_uid), __FILE__, __LINE__); - $type = 'mailid'; $urlId = $url_mid; - } elseif ($url_bid > 0) { - // Bonus-Mail - $result = SQL_QUERY_ESC("SELECT link_type FROM `{!_MYSQL_PREFIX!}_user_links` WHERE bonus_id=%s AND `userid`=%s LIMIT 1", - array($url_bid, $url_uid), __FILE__, __LINE__); - $type = 'bonusid'; $urlId = $url_bid; - } else { - // Problem: No ID entered - redirectToUrl('index.php'); - } +require('inc/config-global.php'); + +// Set content type +setContentType('text/html'); + +// Is the extension active? +redirectOnUninstalledExtension('mailid'); + +// Init +$url_userid = 0; +$url_bid = 0; +$url_mid = 0; + +// Secure all data +if (isGetRequestElementSet('userid')) $url_userid = bigintval(getRequestElement('userid')); +if (isGetRequestElementSet('mailid')) $url_mid = bigintval(getRequestElement('mailid')); +if (isGetRequestElementSet('bonusid')) $url_bid = bigintval(getRequestElement('bonusid')); + +// 01 1 12 2 2 21 1 22 10 +if (($url_userid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (getTotalFatalErrors() == 0)) { + // Init result + $result_link = false; + + // Maybe he wants to confirm an email? + if ($url_mid > 0) { + // Normal-Mails + $result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `stats_id`=%s AND `userid`=%s LIMIT 1", + array($url_mid, $url_userid), __FILE__, __LINE__); + $type = 'mailid'; $urlId = $url_mid; + } elseif ($url_bid > 0) { + // Bonus-Mail + $result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `bonus_id`=%s AND `userid`=%s LIMIT 1", + array($url_bid, $url_userid), __FILE__, __LINE__); + $type = 'bonusid'; $urlId = $url_bid; + } else { + // Problem: No ID entered + redirectToUrl('index.php'); + } - if (SQL_NUMROWS($result) == 1) { - // Load the entry - list($ltype) = SQL_FETCHROW($result); + if (SQL_NUMROWS($result_link) == 1) { + // Load the entry + list($ltype) = SQL_FETCHROW($result); - // Clean result - SQL_FREERESULT($result); + // Clean result + SQL_FREERESULT($result); - switch ($ltype) - { + // @TODO Rewrite this to a filter + switch ($ltype) { case 'NORMAL': // Is the stats ID valid? - $result = SQL_QUERY_ESC("SELECT pool_id, url, subject FROM `{!_MYSQL_PREFIX!}_user_stats` WHERE `id`=%s LIMIT 1", + $result = SQL_QUERY_ESC("SELECT pool_id, url, subject FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `id`=%s LIMIT 1", array($url_mid), __FILE__, __LINE__); break; case 'BONUS': // Is the bonus extension active? - REDIRECT_ON_UNINSTALLED_EXTENSION('bonus'); + redirectOnUninstalledExtension('bonus'); // Bonus-Mails - $result = SQL_QUERY_ESC("SELECT id, url, subject FROM `{!_MYSQL_PREFIX!}_bonus` WHERE `id`=%s LIMIT 1", + $result = SQL_QUERY_ESC("SELECT id, url, subject FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1", array($url_bid), __FILE__, __LINE__); break; - } - if (SQL_NUMROWS($result) == 1) { - // Load data - list($pool, $URL, $EXTRA_TITLE) = SQL_FETCHROW($result); + default: // Invalid mail type + debug_report_bug('Invalid mail type ' . $ltype . ' detected.'); + break; + } - // Free result - SQL_FREERESULT($result); + if (SQL_NUMROWS($result) == 1) { + // Load data + list($pool, $URL, $title) = SQL_FETCHROW($result); + + // Free result + SQL_FREERESULT($result); - // Compile extra title - $EXTRA_TITLE = COMPILE_CODE($EXTRA_TITLE); - - // Is the user's ID unlocked? - $result = SQL_QUERY_ESC("SELECT status, gender, surname, family FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", - array($url_uid), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 1) { - list($status, $gender, $sname, $fname) = SQL_FETCHROW($result); - SQL_FREERESULT($result); - if ($status == 'CONFIRMED') { - // User has confirmed his account so we can procede... - switch ($ltype) - { + // Set it + setExtraTitle($title); + + // Is the user's ID unlocked? + $result = SQL_QUERY_ESC("SELECT `status`, `gender`, `surname`, `family` FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1", + array($url_userid), __FILE__, __LINE__); + if (SQL_NUMROWS($result) == 1) { + list($status, $gender, $surname, $family) = SQL_FETCHROW($result); + SQL_FREERESULT($result); + if ($status == 'CONFIRMED') { + // User has confirmed his account so we can procede... + // @TODO Rewrite this to a filter + switch ($ltype) { case 'NORMAL': - $result = SQL_QUERY_ESC("SELECT payment_id FROM `{!_MYSQL_PREFIX!}_user_stats` WHERE pool_id=%s LIMIT 1", + $result = SQL_QUERY_ESC("SELECT payment_id FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `pool_id`=%s LIMIT 1", array(bigintval($pool)), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { list($pay) = SQL_FETCHROW($result); $time = getPaymentPoints($pay, 'time'); $payment = getPaymentPoints($pay, 'payment'); $isValid = true; - } + } // END - if // Free memory SQL_FREERESULT($result); break; case 'BONUS': - $result = SQL_QUERY_ESC("SELECT points, time FROM `{!_MYSQL_PREFIX!}_bonus` WHERE `id`=%s LIMIT 1", + $result = SQL_QUERY_ESC("SELECT points, time FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1", array($url_bid), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { list($points, $time) = SQL_FETCHROW($result); @@ -151,78 +162,83 @@ if (isInstalled()) { // Free memory SQL_FREERESULT($result); break; - } - // Add header - loadIncludeOnce('inc/header.php'); - - // Was that mail a valid one? - if ($isValid === true) { - // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems - if (($time == '0') && ($payment > 0)) { $URL = constant('URL'); $time = '1'; } - if (($time > 0) && (($payment > 0) || ($points > 0))) { - // He can confirm this mail! - // Export data into constants for the template - define('_UID_VALUE' , $url_uid); - define('_TYPE_VALUE', $type); - define('_DATA_VALUE', $urlId); - define('_URL_VALUE' , DEREFERER($URL)); - - // Load template - LOAD_TEMPLATE('mailid_frames'); - } else { - $msg = getCode('DATA_INVALID'); - } + default: // Invalid mail type + debug_report_bug('Invalid mail type ' . $ltype . ' detected.'); + break; + } + + // Add header + loadIncludeOnce('inc/header.php'); + + // Was that mail a valid one? + if ($isValid === true) { + // If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems + if (($time == 0) && ($payment > 0)) { $URL = getConfig('URL'); $time = 1; } + if (($time > 0) && (($payment > 0) || ($points > 0))) { + // Export data into constants for the template + $content = array( + 'userid' => $url_userid, + 'type' => $type, + 'data' => $urlId, + 'url' => generateDerefererUrl($URL) + ); + + // Load template + loadTemplate('mailid_frames', false, $content); } else { - $msg = getCode('POSSIBLE_INVALID'); + $errorCode = getCode('DATA_INVALID'); } } else { - $msg = getCode('ACCOUNT_LOCKED'); + $errorCode = getCode('POSSIBLE_INVALID'); } } else { - SQL_FREERESULT($result); - $msg = getCode('USER_404'); + $errorCode = getCode('ACCOUNT_' . $status); } } else { SQL_FREERESULT($result); - $msg = getCode('STATS_404'); + $errorCode = getCode('USER_404'); } } else { SQL_FREERESULT($result); - $msg = getCode('ALREADY_CONFIRMED'); - } - } else { - // Nothing entered - $msg = getCode('ERROR_MAILID'); - } - - // Error code is set? - if (!empty($msg)) { - switch (getConfig('mailid_error_redirect')) { - case 'INDEX': // Redirect to index page - redirectToUrl('modules.php?module=index&msg='.$msg.'&ext=mailid'); - break; - - case 'REJECT': // Redirect to rejection page - LOAD_CONFIGURED_URL('reject_url'); - break; - - default: - DEBUG_LOG(__FILE__, __LINE__, sprintf("Unknown status %s detected in mailid_error_redirect.", getConfig('mailid_error_redirect'))); - redirectToUrl('modules.php?module=index&msg=' . getCode('UNKNOWN_STATUS') . '&ext=mailid'); - break; + $errorCode = getCode('STATS_404'); } } else { - // Include footer - loadIncludeOnce('inc/footer.php'); + SQL_FREERESULT($result); + $errorCode = getCode('ALREADY_CONFIRMED'); } } else { - // You have to install first! - redirectToUrl('install.php'); + // Nothing entered + $errorCode = getCode('ERROR_MAILID'); } -// Shutdown -shutdown(); +// Error code is set? +if (!empty($errorCode)) { + // @TODO Rewrite this to a dynamic include or so + switch (getConfig('mailid_error_redirect')) { + case 'INDEX': // Redirect to index page + redirectToUrl('modules.php?module=index&code=' . $errorCode . '&ext=mailid'); + break; + + case 'REJECT': // Redirect to rejection page + if (isExtensionActive('other')) { + // Redirect to configured URL + redirectToConfiguredUrl('reject_url'); + } else { + // Redirect to index + redirectToUrl('index.php'); + } + break; + + default: + logDebugMessage(__FILE__, __LINE__, sprintf("Unknown status %s detected in mailid_error_redirect.", getConfig('mailid_error_redirect'))); + redirectToUrl('modules.php?module=index&code=' . getCode('UNKNOWN_STATUS') . '&ext=mailid'); + break; + } // END - switch +} // END - if + +// Include footer +loadIncludeOnce('inc/footer.php'); -// +// [EOF] ?>