X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=ref.php;h=66d545f342c0fe37f95ef79d58ffdc28fe35d8c1;hp=dbbff4b257a41a5bf132fc18bb861edfa7f30d43;hb=968aefff7fdc8598d568c6dcce099f095dbc9162;hpb=0369c36aaab5af6ed44da1e13a53baef285f79b4 diff --git a/ref.php b/ref.php index dbbff4b257..66d545f342 100644 --- a/ref.php +++ b/ref.php @@ -6,9 +6,9 @@ * -------------------------------------------------------------------- * * File : ref.php * * -------------------------------------------------------------------- * - * Short description : Redirection for the referral link * + * Short description : Redirection for the referal link * * -------------------------------------------------------------------- * - * Kurzbeschreibung : Weiterleitungsscript fuer die Referral-Links * + * Kurzbeschreibung : Weiterleitungsscript fuer die Referal-Links * * -------------------------------------------------------------------- * * * * -------------------------------------------------------------------- * @@ -32,64 +32,80 @@ ************************************************************************/ // Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) ) -require_once("inc/libs/security_functions.php"); +require("inc/libs/security_functions.php"); // Init "action" and "what" -global $what, $action; -$GLOBALS['what'] = ""; $GLOBALS['action'] = ""; +$GLOBALS['what'] = ""; +$GLOBALS['action'] = ""; // Set module -$GLOBALS['module'] = "ref"; $CSS = -1; +$GLOBALS['module'] = "ref"; +$GLOBALS['output_mode'] = -1; // Load the required file(s) -require ("inc/config.php"); +require("inc/config.php"); // Redirect only to registration page when this script is installed -if (defined('mxchange_installed') && (isBooleanConstantAndTrue('mxchange_installed'))) { +if (isInstalled()) { // Base URL for redirection - switch ($_CONFIG['refid_target']) + switch (getConfig('refid_target')) { case "register": - $URL = URL."/modules.php?module=index&what=register&refid="; + $URL = "modules.php?module=index&what=register&refid="; break; case "index": - $URL = URL."/index.php?refid="; + $URL = "index.php?refid="; break; } - // Get referral ID from ref or refid variable - if (!empty($_GET['ref'])) $ref = secureString($_GET['ref']); - elseif (!empty($_GET['refid'])) $ref = secureString($_GET['refid']); + // Get referal ID from ref or refid variable + if (REQUEST_ISSET_GET(('ref'))) $ref = REQUEST_GET('ref'); + elseif (REQUEST_ISSET_GET(('refid'))) $ref = REQUEST_GET('refid'); if (!empty($ref)) { // Test if nickname or numeric id - if ((EXT_IS_ACTIVE("nickname")) && ($ref != "".bigintval($ref)."")) { - // Nickname in URL, so load the ID - $result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE nickname='%s' LIMIT 1", - array($ref), __FILE__, __LINE__); - list($ref) = SQL_FETCHROW($result); - SQL_FREERESULT($result); + if ($ref != "".($ref + 0)."") { + if (EXT_IS_ACTIVE("nickname")) { + // Nickname in URL, so load the ID + $result = SQL_QUERY_ESC("SELECT userid FROM `{!_MYSQL_PREFIX!}_user_data` WHERE nickname='%s' LIMIT 1", + array($ref), __FILE__, __LINE__); + + // Load userid + list($ref) = SQL_FETCHROW($result); + + // Free result + SQL_FREERESULT($result); + } else { + // Invalid request! + $ref = 0; + } } // END - if // Also edit this 0 ! if (empty($ref)) $ref = 0; + // Update session + set_session('refid', $ref); + // We have an refid here. So we simply add it $URL .= bigintval($ref); - // Update ref counter - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET ref_clicks=ref_clicks+1 WHERE userid=%s LIMIT 1", - array(bigintval($ref)), __FILE__, __LINE__); + // Is the refid valid? + if ($ref > 0) { + // Update ref counter + SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET ref_clicks=ref_clicks+1 WHERE userid=%s LIMIT 1", + array(bigintval($ref)), __FILE__, __LINE__); + } // END - if } else { // No refid and we add our refid (don't forget to set $def_refid!) - $URL = URL."/index.php"; + $URL = "index.php"; } // Load the URL LOAD_URL($URL); } else { - // You have to configure first! + // You have to install first! LOAD_URL("install.php"); }