X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=mailid.php;h=fc7e64ae70bf211417d9ffdfeb39de8d02d4036c;hp=93def066643699a349048f69eaeebdb894aff149;hb=08a9a052ddd67568fa7bcc98c4300ce0cc6bfdc0;hpb=6032b7018b83778f1592383238f4e0d28f718622

diff --git a/mailid.php b/mailid.php
index 93def06664..fc7e64ae70 100644
--- a/mailid.php
+++ b/mailid.php
@@ -1,7 +1,7 @@
 <?php
 /************************************************************************
- * MXChange v0.2.1                                    Start: 11/14/2003 *
- * ===============                              Last change: 11/25/2004 *
+ * Mailer v0.2.1-FINAL                                Start: 11/14/2003 *
+ * ===================                          Last change: 11/25/2004 *
  *                                                                      *
  * -------------------------------------------------------------------- *
  * File              : mailid.php                                       *
@@ -10,10 +10,14 @@
  * -------------------------------------------------------------------- *
  * Kurzbeschreibung  : Bestaetigung von Mails                           *
  * -------------------------------------------------------------------- *
- *                                                                      *
+ * $Revision::                                                        $ *
+ * $Date::                                                            $ *
+ * $Tag:: 0.2.1-FINAL                                                 $ *
+ * $Author::                                                          $ *
  * -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder                           *
- * For more information visit: http://www.mxchange.org                  *
+ * Copyright (c) 2003 - 2009 by Roland Haeder                           *
+ * Copyright (c) 2009 - 2012 by Mailer Developer Team                   *
+ * For more information visit: http://mxchange.org                      *
  *                                                                      *
  * This program is free software; you can redistribute it and/or modify *
  * it under the terms of the GNU General Public License as published by *
@@ -31,183 +35,203 @@
  * MA  02110-1301  USA                                                  *
  ************************************************************************/
 
-// Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) )
-require_once("inc/libs/security_functions.php");
+// Load security stuff here
+require('inc/libs/security_functions.php');
 
-// Init "action" and "what"
-global $what, $action;
-$GLOBALS['what'] = ""; $GLOBALS['action'] = "";
+// Init start time
+$GLOBALS['__start_time'] = microtime(true);
 
 // Tell everyone we are in this module
-$GLOBALS['module'] = "mailid"; $CSS = -1;
+$GLOBALS['__module']      = 'mailid';
+$GLOBALS['__output_mode'] = '0';
+$errorCode = '';
+
+// This is a frameset module
+$GLOBALS['frameset_mode'] = true;
+
+// Disable copyright footer which would break the frameset
+$GLOBALS['__copyright_enabled'] = 'N';
 
 // Load the required file(s)
-require ("inc/config.php");
-
-if (defined('mxchange_installed') && (isBooleanConstantAndTrue('mxchange_installed')))
-{
-	// Is the extension active
-	if (!EXT_IS_ACTIVE("mailid", true)) {
-		// Is not activated/installed yet!
-		ADD_FATAL(sprintf(EXTENSION_PROBLEM_NOT_INSTALLED, "mailid"));
+require('inc/config-global.php');
+
+// Set content type and HTTP status
+setContentType('text/html');
+setHttpStatus('404 Not Found');
+
+// Is the extension active?
+redirectOnUninstalledExtension('mailid');
+
+// Init
+$userId  = '0';
+$bonusId = '0';
+$mailId  = '0';
+
+// Secure all data
+if (isGetRequestElementSet('userid'))  $userId  = bigintval(getRequestElement('userid'));
+if (isGetRequestElementSet('mailid'))  $mailId  = bigintval(getRequestElement('mailid'));
+if (isGetRequestElementSet('bonusid')) $bonusId = bigintval(getRequestElement('bonusid'));
+
+// 01           1        12            2    2            21    1                      2210
+if ((isValidUserId($userId)) && (($mailId > 0) || ($bonusId > 0)) && (!ifFatalErrorsDetected())) {
+	// Init result
+	$result_link = false;
+
+	// Maybe he wants to confirm an email?
+	if ($mailId > 0) {
+		// Member mail
+		$result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `stats_id`=%s AND `userid`=%s LIMIT 1",
+			array($mailId, $userId), __FILE__, __LINE__);
+		$type = 'mailid';
+		$urlId = $mailId;
+	} elseif ($bonusId > 0) {
+		// Bonus mail
+		$result_link = SQL_QUERY_ESC("SELECT `link_type` FROM `{?_MYSQL_PREFIX?}_user_links` WHERE `bonus_id`=%s AND `userid`=%s LIMIT 1",
+			array($bonusId, $userId), __FILE__, __LINE__);
+		$type = 'bonusid';
+		$urlId = $bonusId;
+	} else {
+		// Problem: No id entered
+		redirectToUrl('modules.php?module=index');
 	}
 
-	// Add header
-	require_once(PATH."inc/header.php");
-
-	// Init
-	$url_uid = 0; $url_bid = 0; $url_mid = 0;
-
-	// Secure all data
-	if (!empty($_GET['uid']))     $url_uid = bigintval($_GET['uid']);
-	if (!empty($_GET['mailid']))  $url_mid = bigintval($_GET['mailid']);
-	if (!empty($_GET['bonusid'])) $url_bid = bigintval($_GET['bonusid']);
-
-	//* DEBUG: */ die("*".$url_uid."/".$url_bid."/".$url_mid."*<pre>".print_r($FATAL, true)."</pre>");
-
-	// 01        1        12            3    32           21    1     2      2     10
-	if (($url_uid) > 0 && (($url_mid > 0) || ($url_bid > 0)) && (count($FATAL) == 0)) {
-		// Maybe he wants to confirm an email?
-		if ($url_mid > 0) {
-			// Normal-Mails
-			$result = SQL_QUERY_ESC("SELECT link_type FROM "._MYSQL_PREFIX."_user_links WHERE stats_id=%s AND userid=%s LIMIT 1",
-			 array($url_mid, $url_uid), __FILE__, __LINE__);
-			$type = "mailid"; $DATA = $url_mid;
-		} elseif ($url_bid > 0) {
-			// Bonus-Mail
-			$result = SQL_QUERY_ESC("SELECT link_type FROM "._MYSQL_PREFIX."_user_links WHERE bonus_id=%s AND userid=%s LIMIT 1",
-			 array($url_bid, $url_uid), __FILE__, __LINE__);
-			$type = "bonusid"; $DATA = $url_bid;
-		} else {
-			// Problem: No ID entered
-			LOAD_URL("index.php");
-		}
-
-		if (SQL_NUMROWS($result) == 1) {
-			// Load the entry
-			list($ltype) = SQL_FETCHROW($result);
+	if (SQL_NUMROWS($result_link) == 1) {
+		// Load the entry
+		list($ltype) = SQL_FETCHROW($result_link);
 
-			// Clean result
-			SQL_FREERESULT($result);
-			switch ($ltype)
-			{
-			case "NORMAL":
-				// Is the stats ID valid?
-				$result = SQL_QUERY_ESC("SELECT pool_id, url FROM "._MYSQL_PREFIX."_user_stats WHERE id=%s LIMIT 1",
-				 array($url_mid), __FILE__, __LINE__);
+		// @TODO Rewrite this to a filter
+		switch ($ltype) {
+			case 'NORMAL':
+				// Is the stats id valid?
+				$result = SQL_QUERY_ESC("SELECT `pool_id`,`url`,`subject` FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `id`=%s LIMIT 1",
+					array($mailId), __FILE__, __LINE__);
 				break;
 
-			case "BONUS":
+			case 'BONUS':
+				// Is the bonus extension active?
+				redirectOnUninstalledExtension('bonus');
+
 				// Bonus-Mails
-				$result = SQL_QUERY_ESC("SELECT id, url FROM "._MYSQL_PREFIX."_bonus WHERE id=%s LIMIT 1",
-				 array($url_bid), __FILE__, __LINE__);
+				$result = SQL_QUERY_ESC("SELECT `id`,`url`,`subject` FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1",
+					array($bonusId), __FILE__, __LINE__);
 				break;
-			}
 
-			if (SQL_NUMROWS($result) == 1) {
-				// Load data
-				list($pool, $URL) = SQL_FETCHROW($result);
-				SQL_FREERESULT($result);
-
-				// Is the user's ID unlocked?
-				$result = SQL_QUERY_ESC("SELECT status, sex, surname, family FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
-				 array($url_uid), __FILE__, __LINE__);
-				if (SQL_NUMROWS($result) == 1) {
-					list($status, $sex, $sname, $fname) = SQL_FETCHROW($result);
-					SQL_FREERESULT($result);
-					if ($status == "CONFIRMED") {
-						// User has confirmed his account so we can procede...
-						switch ($ltype)
-						{
-						case "NORMAL":
-							$result = SQL_QUERY_ESC("SELECT payment_id FROM "._MYSQL_PREFIX."_user_stats WHERE pool_id=%s LIMIT 1",
-							 array(bigintval($pool)), __FILE__, __LINE__);
-							if (SQL_NUMROWS($result) == 1)
-							{
+			default: // Invalid mail type
+				reportBug(__FILE__, __LINE__, 'Invalid mail type ' . $ltype . ' detected.');
+				break;
+		} // END - switch
+
+		if (SQL_NUMROWS($result) == 1) {
+			// Load data
+			list($pool, $url, $title) = SQL_FETCHROW($result);
+
+			// Free result
+			SQL_FREERESULT($result);
+
+			// Set it
+			setExtraTitle($title);
+
+			// Is the user's id unlocked?
+			if (fetchUserData($userId)) {
+				// Status must be CONFIRMED
+				if (getUserData('status') == 'CONFIRMED') {
+					// Update last activity if not admin
+					if ((!isAdmin()) || (isDebugModeEnabled())) {
+						// Is not admin, so update last activity
+						updateLastActivity($userId);
+					} // END - if
+
+					// User has confirmed his account so we can procede...
+					// @TODO Rewrite this to a filter
+					switch ($ltype) {
+						case 'NORMAL':
+							$result = SQL_QUERY_ESC("SELECT `payment_id` FROM `{?_MYSQL_PREFIX?}_user_stats` WHERE `pool_id`=%s LIMIT 1",
+								array(bigintval($pool)), __FILE__, __LINE__);
+							if (SQL_NUMROWS($result) == 1) {
 								list($pay) = SQL_FETCHROW($result);
-								$time      = GET_PAY_POINTS($pay, "time");
-								$payment   = GET_PAY_POINTS($pay, "payment");
-								$VALID     = true;
-							}
+								$time      = getPaymentData($pay, 'time');
+								$payment   = getPaymentData($pay, 'payment');
+								$isValid   = true;
+							} // END - if
 
 							// Free memory
 							SQL_FREERESULT($result);
 							break;
 
-						case "BONUS":
-							$result = SQL_QUERY_ESC("SELECT points, time FROM "._MYSQL_PREFIX."_bonus WHERE id=%s LIMIT 1",
-							 array($url_bid), __FILE__, __LINE__);
-							if (SQL_NUMROWS($result) == 1)
-							{
+						case 'BONUS':
+							$result = SQL_QUERY_ESC("SELECT `points`,`time` FROM `{?_MYSQL_PREFIX?}_bonus` WHERE `id`=%s LIMIT 1",
+								array($bonusId), __FILE__, __LINE__);
+							if (SQL_NUMROWS($result) == 1) {
 								list($points, $time) = SQL_FETCHROW($result);
-								$payment = "0.00000";
-								$VALID = true;
-							}
+								$payment = '0.00000';
+								$isValid = true;
+							} // END - if
 
 							// Free memory
 							SQL_FREERESULT($result);
 							break;
-						}
 
-						// Was that mail a valid one?
-						if ($VALID) {
-							// If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems
-							if (($time == "0") && ($payment > 0)) { $URL = URL; $time = "1"; }
-							if (($time > 0) && (($payment > 0) || ($points > 0))) {
-								// He can confirm this mail!
-								// Export data into constants for the template
-								define('_UID_VALUE' , $url_uid);
-								define('_TYPE_VALUE', $type);
-								define('_DATA_VALUE', $DATA);
-								define('_URL_VALUE' , DEREFERER($URL));
-
-								// Load template
-								LOAD_TEMPLATE("mailid_frames");
-							} else {
-								$msg = CODE_DATA_INVALID;
-							}
+						default: // Invalid mail type
+							reportBug(__FILE__, __LINE__, 'Invalid mail type ' . $ltype . ' detected.');
+							break;
+					}
+
+					// Add header
+					loadIncludeOnce('inc/header.php');
+
+					// Was that mail a valid one?
+					if ($isValid === true) {
+						// If time is zero seconds we have a sponsor mail. 1 Second shall be set to avoid problems
+						if (($time == '0') && ($payment > 0)) { 
+							$url = getUrl();
+							$time = 1; 
+						} // END - if
+
+						if (($time > 0) && (($payment > 0) || ($points > 0))) {
+							// Set HTTP status to okay
+							setHttpStatus('200 OK');
+
+							// Export data into constants for the template
+							$content = array(
+								'userid'  => $userId,
+								'type'    => $type,
+								'data'    => $urlId,
+								'url'     => $url
+							);
+
+							// Load template
+							loadTemplate('mailid_frames', false, $content);
 						} else {
-							$msg = CODE_POSSIBLE_INVALID;
+							$errorCode = getCode('DATA_INVALID');
 						}
 					} else {
-						$msg = CODE_ACCOUNT_LOCKED;
+						$errorCode = getCode('POSSIBLE_INVALID');
 					}
 				} else {
-					SQL_FREERESULT($result);
-					$msg = CODE_USER_404;
+					$errorCode = getCode('ACCOUNT_' . strtoupper(getUserData('status')));
 				}
 			} else {
-				SQL_FREERESULT($result);
-				$msg = CODE_STATS_404;
+				$errorCode = getCode('USER_404');
 			}
 		} else {
-			SQL_FREERESULT($result);
-			$msg = CODE_ALREADY_CONFIRMED;
+			$errorCode = getCode('STATS_404');
 		}
 	} else {
-		// Nothing entered
-		$msg = CODE_ERROR_MAILID;
+		$errorCode = getCode('ALREADY_CONFIRMED');
 	}
 
-	// Error code is set?
-	if (!empty($msg)) {
-		switch ($_CONFIG['mailid_error_redirect']) {
-			case "INDEX": // Redirect to index page
-				LOAD_URL("modules.php?module=index&msg=".$msg);
-				break;
-
-			case "REJECT": // Redirect to rejection page
-				LOAD_URL($_CONFIG['reject_url']);
-				break;
-		}
-	} else {
-		// Include footer
-		require_once(PATH."inc/footer.php");
-	}
+	// Free result
+	SQL_FREERESULT($result_link);
 } else {
-	// You have to configure first!
-	LOAD_URL("install.php");
+	// Nothing entered
+	$errorCode = getCode('ERROR_MAILID');
 }
 
-//
+// Error code is set?
+handleMailIdErrorCode($errorCode);
+
+// Include footer
+loadIncludeOnce('inc/footer.php');
+
+// [EOF]
 ?>