public static function markPaidById($fee_id, $user_paid = 0, $paid_notes = '', $paid = 1, $summary = false, $fund_id = false) { $fee_id = (int) $fee_id; $user_paid = (int) $user_paid; $user_paid = $user_paid == 0 ? $_SESSION['userid'] : $user_paid; $paid_notes = mysql_real_escape_string($paid_notes); $paid = (int) $paid; $update_fund_id = ""; //If no fund passed, do not update fund_id in fee or update budget. (alternate version. bail with failure if fund_id is required if ($fund_id) { $update_fund_id = " , `fund_id` = " . (int) $fund_id; } $user_id = 0; $amount = 0; $points = 0; //Wired REWARDER out of process while API is being rebuilt (and we are using a different process for determining rewarder now) $query = "SELECT `user_id`, `worklist_id`, `amount`, `paid`, `expense`, '0' as `rewarder` FROM `" . FEES . "` WHERE `id`={$fee_id} AND `bonus` = 0"; $rt = mysql_query($query) or error_log("failed to select fees: {$query} : " . mysql_error()); if ($rt && ($row = mysql_fetch_assoc($rt))) { $query = "\n UPDATE\n `" . FEES . "`\n SET\n `user_paid` = {$user_paid},\n `notes` = '{$paid_notes}',\n `paid` = {$paid},\n `paid_date` = NOW()\n {$update_fund_id}\n WHERE `id` = {$fee_id}"; $rt = mysql_query($query) or error_log("failed to mark fee paid: {$query} : " . mysql_error()); /* Add rewarder points and log */ if ($rt) { /* Don't do update reward point or budget: * 1) for expenses, * 2) for rewarder payments, * 3) there is no real change. */ if (!$row['expense'] && !$row['rewarder'] && $paid != $row['paid']) { $user_id = $row['user_id']; $worklist_id = $row['worklist_id']; $amount = $row['amount']; /* Find the runner for this task so we can adjust their budget. */ $query = "SELECT `runner_id` FROM `" . WORKLIST . "` WHERE `id`={$worklist_id}"; $rt = mysql_query($query) or error_log("Unable to select Runner: {$query} : " . msyql_query()); if ($rt && ($row = mysql_fetch_assoc($rt))) { $runner_id = $row['runner_id']; } else { $runner_id = 0; } $points = intval($amount); } } else { return false; } } if ($summary) { return array($user_id, $amount, $points); } else { return !empty($rt); } }
$session = $facebook->getSession(); if (!empty($session)) { # Active session, let's try getting the user id (getUser()) and user info (api->('/me')) try { $uid = $facebook->getUser(); $user = $facebook->api('/me'); } catch (Exception $e) { } if (!empty($user)) { # We have an active session, let's check if we have already registered the user $query = mysql_query("SELECT * FROM users WHERE oauth_provider = 'facebook' AND oauth_uid = " . $user['id']); $result = mysql_fetch_array($query); # If not, let's add it to the database if (empty($result)) { $query = mysql_query("INSERT INTO users (oauth_provider, oauth_uid, username) VALUES ('facebook', {$user['id']}, '{$user['name']}')"); $query = msyql_query("SELECT * FROM users WHERE id = " . mysql_insert_id()); $result = mysql_fetch_array($query); } // this sets variables in the session $_SESSION['id'] = $result['id']; $_SESSION['oauth_uid'] = $result['oauth_uid']; $_SESSION['oauth_provider'] = $result['oauth_provider']; $_SESSION['username'] = $result['username']; } else { # For testing purposes, if there was an error, let's kill the script die("There was an error."); } } else { # There's no active session, let's generate one $login_url = $facebook->getLoginUrl(); header("Location: " . $login_url);
<?php include "config.php"; // safety! array_map('mysql_escape_string', $_GET); if (isset($_GET['i']) && $_GET['i'] != "") { // fetch url $url_result = msyql_query("SELECT * FROM `shorten` WHERE `short` = '{$_GET['i']}' LIMIT 1"); $url = mysql_fetch_assoc($url_result); /* ------- ADVANCED USERS --------- */ /* * * Put analytics javascript here * * If you choose to use javascript here, you must * change the following variable to true: */ $use_js = false; if ($use_js) { // javascript redirection! ?> <span id='end-location'><?php echo $url['long']; ?> </span> <script type='text/javascript'> var url = getElementById("end-location"); window.location = url; </script> <?php } else {