/** * Errors Code * * @return object */ public static function ErrorsCode() { if (!self::$ErrorsCode) { self::$ErrorsCode = array("SendMailError" => 10, "JoinServerFail" => 11, "CharGameIDFail" => 12, "TicketNotFound" => 13, "PaymentNotFound" => 14); return (object) self::$ErrorsCode; } }
/** * Private: Send Global Message * Send a message in global display from all players by JoinServer * * @return void */ public function loadSendGlobalMessage() { if ($_GET['write'] == true) { if (empty($_POST['message'])) { $GLOBALS['result_message'] = adminShowMessage($this->lang->words['Server']['GameControl']['SendGlobalMessage']['Messages']['MessageVoid'], 1); } else { if (!$this->MuLib('JoinServer')->SendGlobalMessage($_POST['message'])) { $GLOBALS['result_message'] = sprintf($this->lang->words['Server']['GameControl']['SendGlobalMessage']['Messages']['SendError'], CoreVariables::ErrorsCode()->JoinServerFail); $GLOBALS['result_message'] = adminShowMessage($GLOBALS['result_message'], 2); } else { $GLOBALS['result_message'] = adminShowMessage($this->lang->words['Server']['GameControl']['SendGlobalMessage']['Messages']['Success'], 3); } } } $this->output->setContent("gamecontrol_sendGlobalMessage"); }
/** * Recover Member Data * Recover member and send e-mail * * @return void */ private function loadRecoverMember() { if ($_GET['write'] == true) { if (empty($_POST['Login']) && empty($_POST['Mail'])) { return setResult(showMessage($this->lang->words['Recovery']['Recover']['Messages']['Void'], 1)); } if (!empty($_POST['Login'])) { $source = "login"; } else { $source = "mail"; } $member = $this->MuLib('Member')->Load($source == "login" ? $_POST['Login'] : $_POST['Mail'], array("info" => "memb_name,fpas_ques,fpas_answ")); if (!$member) { return setResult(showMessage($this->lang->words['Recovery']['Recover']['Messages']['Invalid'], 2)); } $currentId = $this->DB->GetCurrentId("CTM_RecoverData") + 1; $dechex = create_function("\$integer", "return str_pad(dechex(\$integer >= 255 ? 255 : \$integer), 2, 0, STR_PAD_LEFT);"); $confirmCode = $dechex($currentId); $confirmCode .= ":" . $dechex(0xaa - strlen($member['memb___id']) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(strlen($member['mail_addr']) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(mt_rand(0, 70)); $confirmCode .= ":" . $dechex(mt_rand(71, 170)); $confirmCode .= ":" . $dechex(0xaa / intval(date("d")) + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(0xaa / intval(date("m")) + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(intval(date("Y")) / 0xaa + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode = strtoupper($confirmCode); $link = gerateFullLink("?/recovery/process"); $this->DB->Insert("CTM_RecoverData", array("Account" => $member['info']['memb___id'], "RedefineCode" => $confirmCode, "Expiration" => strtotime("+ 24 hours"))); $this->email->arguments = array("NAME" => htmlEncode($member['info']['memb_name']), "LOGIN" => $member['info']['memb___id'], "EMAIL" => $member['info']['mail_addr'], "SECURE_QUESTION" => htmlEncode($member['info']['fpas_ques']), "SECURE_ANSWER" => htmlEncode($member['info']['fpas_answ']), "VALIDATION_LINK" => $currentId, "VALIDATION_CODE" => $confirmCode, "SYSTEM_LINK" => $link); $this->email->LoadTemplate("RecoverMemberData"); $this->email->GetMailContent($mail); $this->mailer->AddAddress($member['info']['mail_addr'], $member['info']['memb_name']); $this->mailer->SetSubject($mail['subject']); $this->mailer->SetBody($mail['content']); if ($this->mailer->SendMail() == true) { return setResult(showMessage($this->lang->words['Recovery']['Recover']['Messages']['Success'], 3)); } else { $this->lang->setArguments("Recovery,Recover,Messages,Error_SendMail", CoreVariables::ErrorsCode()->SendMailError); return setResult(showMessage($this->lang->words['Recovery']['Recover']['Messages']['Error_SendMail'], 2)); } } }
/** * Option: Tickets * Tickets for support * * @return void */ public function SupportTickets() { switch ($_GET['section'] ? $_GET['section'] : $this->URLData[2]) { case "list": $this->DB->Arguments(USER_ACCOUNT); $this->DB->Query("SELECT Id, Departament, Subject, Status, [Date] FROM dbo.CTM_Tickets WHERE Account = '%s' ORDER BY Id DESC", $all_tickets_q); $tickets_opened = array(); $tickets_progress = array(); $tickets_closed = array(); if ($this->DB->CountRows($all_tickets_q) > 0) { while ($all_tickets = $this->DB->FetchObject($all_tickets_q)) { switch ($all_tickets->Status) { case 0: $var_name = "tickets_opened"; $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Opened'] . "</span>"; break; case 1: $var_name = "tickets_progress"; $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Responded'] . "</span>"; break; case 2: $var_name = "tickets_progress"; $status = "<span style='color: orange;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Progress'] . "</span>"; break; case 3: $var_name = "tickets_closed"; $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Closed'] . "</span>"; break; } ${$var_name}[$all_tickets->Id] = array("departament" => htmlEncode($this->settings['USERPANEL']['SUPPORT']['TICKETS']['DEPARTAMENTS'][$all_tickets->Departament]), "subject" => htmlEncode($all_tickets->Subject), "date" => date("d/m/Y - h:i a", $all_tickets->Date), "status" => $status); } } $GLOBALS['userpanel']['support_tickets']['auto_load_ticket'] = $_GET['showticket'] ? $_GET['showticket'] : $this->URLData[3]; $GLOBALS['userpanel']['support_tickets']['list_tickets'] = array("opened" => $tickets_opened, "progress" => $tickets_progress, "closed" => $tickets_closed); unset($tickets_opened); unset($tickets_progress); unset($tickets_closed); return $this->LoadPage("option_supportTickets_list", true); break; case "show": $ticket_id = intval($_GET['id']); $this->DB->Arguments($ticket_id, USER_ACCOUNT); $this->DB->Query("SELECT * FROM dbo.CTM_Tickets WHERE Id = %d AND Account = '%s'", $get_ticket); if ($this->DB->CountRows($get_ticket) < 1) { return exit(showMessage(sprintf($this->lang->words['UserPanel']['SupportTickets']['ErrorMessage'], CoreVariables::ErrorsCode()->TicketNotFound), 2)); } $ticket = $this->DB->FetchObject($get_ticket); switch ($_GET['do']) { case "show_annex": if (!empty($ticket->Annex)) { $filename = $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['TICKET_ANNEX'] . $ticket->Annex; if (preg_match("/\\.([gif|jpg|jpeg|png])/i", substr($filename, strrpos($filename, ".")))) { header("Location: " . $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['TICKET_ANNEX'] . $ticket->Annex); } else { header("Content-type: text/plain"); readfile($filename); } } exit; break; case "reply": if (empty($_POST['ReplyMessage'])) { exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['ShowTicket']['Messages']['ReplyVoid'], 1)); } else { $message = htmlEncode(nl2br(strip_tags($_POST['ReplyMessage']))); $insert_columns = array("TicketID" => $ticket_id, "Author" => "%s", "Account" => "%s", "Date" => time(), "Message" => "%s"); $this->DB->Arguments($ticket->Character, USER_ACCOUNT, htmlEncode(nl2br(strip_tags($_POST['ReplyMessage'])))); $this->DB->Insert("CTM_TicketReplies", $insert_columns); $this->DB->Arguments($ticket_id, USER_ACCOUNT); $this->DB->Update("CTM_Tickets", array("Status" => 2), "Id = %d AND Account = '%s'"); exit("<script>CTM.AjaxLoad('?app=core&module=userpanel&option=supportTickets&showticket=" . $ticket_id . "', 'showTicket');</script>"); } break; case "close": if ($ticket->Status == 3) { exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['ShowTicket']['Messages']['IsClosed'], 2)); } else { $this->DB->Arguments($ticket_id, USER_ACCOUNT); $this->DB->Query("UPDATE dbo.CTM_Tickets SET Status = 3 WHERE Id = %d AND Account = '%s'"); $string = "<script>changeTicketStatus("; $string .= "'" . $ticket->Id . "','"; $string .= str_replace("'", "\\'", htmlEncode($this->settings['USERPANEL']['SUPPORT']['TICKETS']['DEPARTAMENTS'][$ticket->Departament])) . "',"; $string .= "'" . str_replace("'", "\\'", $ticket->Subject) . "',"; $string .= "'" . date("d/m/Y - H:i", $ticket->Date) . "',"; $string .= "'<span style=\\'color: red;\\'>"; $string .= str_replace("'", "\\'", $this->lang->words['UserPanel']['SupportTickets']['Status']['Closed']); $string .= "</span>',3);</script>" . showMessage($this->lang->words['UserPanel']['SupportTickets']['ShowTicket']['Messages']['Closed'], 3); exit($string); } break; } switch ($ticket->Status) { case 0: $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Opened'] . "</span>"; break; case 1: $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Responded'] . "</span>"; break; case 2: $status = "<span style='color: orange;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Progress'] . "</span>"; break; case 3: $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['SupportTickets']['Status']['Closed'] . "</span>"; break; } $this->DB->Arguments($ticket_id); $this->DB->Query("SELECT * FROM dbo.CTM_TicketReplies WHERE TicketID = %d ORDER BY Id DESC", $get_replies); $replies = array(); if ($this->DB->CountRows($get_replies) > 0) { while ($_reply = $this->DB->FetchObject($get_replies)) { $replies[] = array("author" => $_reply->Author, "date" => date("d/m/Y - h:i a", $_reply->Date), "message" => htmlDecode($_reply->Message)); } } $GLOBALS['userpanel']['support_tickets']['show_ticket'] = array("id" => $ticket_id, "departament" => htmlEncode($this->settings['USERPANEL']['SUPPORT']['TICKETS']['DEPARTAMENTS'][$ticket->Departament]), "subject" => htmlDecode($ticket->Subject), "character" => $ticket->Character, "status" => $status, "date" => date("d/m/Y - h:i a", $ticket->Date), "message" => htmlDecode($ticket->Text), "_replies" => $replies, "_opened" => $ticket->Status < 3); if (strlen($ticket->Annex) > 1) { $GLOBALS['userpanel']['support_tickets']['show_ticket']['annex'] = array("link" => "?app=core&module=userpanel&option=supportTickets&section=show&id=" . $ticket_id . "&do=show_annex", "name" => $ticket->Annex); } $this->lang->setArguments("UserPanel,SupportTickets,ShowTicket,Title", "#" . $ticket_id); return $this->LoadPage("option_supportTickets_show", true); break; case "open": $departament = !is_null($_GET['departament']) ? $_GET['departament'] : $this->URLData[3]; if (is_null($departament) || !array_key_exists($departament, $this->settings['USERPANEL']['SUPPORT']['TICKETS']['DEPARTAMENTS'])) { if ($_GET['write'] == true) { exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['SelectDepartament'], 2)); } return $this->LoadPage("option_supportTickets_open", true); } else { if ($_GET['write'] == true) { $error = $this->LoadClass("Error", "class_sources"); if (empty($_POST['Subject'])) { $error->addError($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['SubjectVoid'], 0); } if (empty($_POST['Character'])) { $error->addError($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['SelectCharacter'], 0); } if (empty($_POST['Text'])) { $error->addError($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['MessageVoid'], 0); } if ($error->count[0] > 0) { $_error = "<strong>" . $this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['VoidMessage'] . "<strong><br />"; exit(showMessage($_error . "<br />" . $error->showError(0), 1)); } else { if ($this->settings['USERPANEL']['SUPPORT']['TICKETS']['LIMIT_OPEN'] > 0) { $this->DB->Arguments(USER_ACCOUNT); $this->DB->Query("SELECT 1 FROM dbo.CTM_Tickets WHERE Account = '%s' AND Status < 3"); if ($this->DB->CountRows() >= $this->settings['USERPANEL']['SUPPORT']['TICKETS']['LIMIT_OPEN']) { exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['LimitReached'], 2)); } } $current_id = $this->DB->Query("SELECT Id FROM dbo.CTM_Tickets ORDER BY Id DESC"); $current_id = $this->DB->FetchRow($current_id); $current_id = strlen($current_id[0]) < 1 ? 0 : $current_id[0]; $protocol = date("Y") . str_pad($current_id, 6, "1", STR_PAD_LEFT); if ($_POST['u_sendFile'] == 1) { if ($_POST['u_ready'] == 1) { $size = $this->settings['WEBDATA']['UPLOADS']['FILESIZE']['TICKET_ANNEX']; $dir = CTM_ROOT_PATH . $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['TICKET_ANNEX']; Uploadify::set("Filedata", $size, array("gif", "jpg", "jpeg", "png", "txt", "log"), $protocol, $dir, $session); exit("<script>startUpload('{$protocol}', '{$session}');</script>"); } } if ($_POST['u_sendFile'] == 1) { $data = unserialize(base64_decode($_POST['u_fileUploaded'])); $annex = $data['parsed_file_name']; if (!$data) { exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['AnnexError'], 2)); } elseif ($data['error_no'] == 2) { $this->lang->setArguments("UserPanel,SupportTickets,OpenTicket,Messages,ErrorFormat", "<b>JPEG</b>, <b>GIF</b>, <b>PNG</b>, <b>TXT/LOG</b>"); exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['ErrorFormat'], 2)); } elseif ($data['error_no'] == 3) { $this->lang->setArguments("UserPanel,ChangeAvatar,Messages,ErrorSize", "<b>" . $data['max_file_size'] . "</b>"); exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['ErrorSize'], 2)); } elseif ($data['error_no'] != 0) { exit(showMessage($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['AnnexError'], 2)); } } $columns_insert = array("Account" => USER_ACCOUNT, "Character" => $_POST['Character'], "Protocol" => $protocol, "Status" => 0, "Subject" => htmlEncode($_POST['Subject']), "Departament" => intval($_GET['departament']), "Date" => time(), "Text" => htmlEncode(nl2br(strip_tags($_POST['Text']))), "Annex" => $annex); //$this->DB->ForceDataType("Protocol", "integer"); $this->DB->ForceDataType("Status", "integer"); $this->DB->ForceDataType("Departament", "integer"); $this->DB->ForceDataType("Date", "integer"); $this->DB->ForceDataType("Annex", empty($annex) ? "null" : "string"); $this->DB->Insert("CTM_Tickets", $columns_insert); $this->WriteLog(array("option" => "Support Tickets", "character" => false, "data" => array("Protocol: " . $protocol, "Subject: " . strip_tags($_POST['Subject']), "Departament: " . $this->settings['USERPANEL']['SUPPORT']['TICKETS']['DEPARTAMENTS'][intval($_GET['departament'])], "Character: " . $_POST['Character'], "Annex: " . (!empty($annex) ? $annex : "None")))); exit(showMessage(sprintf($this->lang->words['UserPanel']['SupportTickets']['OpenTicket']['Messages']['Success'], $protocol), 3)); } } $GLOBALS['userpanel']['support_tickets']['open_ticket']['departament'] = !is_null($_GET['departament']) ? $_GET['departament'] : $this->URLData[3]; $GLOBALS['userpanel']['support_tickets']['open_ticket']['characters'] = array(); $this->DB->Arguments(USER_ACCOUNT); $this->DB->Query("SELECT Name FROM " . MUGEN_CORE . ".dbo.Character WHERE AccountID = '%s'", $find_characters_q); if ($this->DB->CountRows($find_characters_q) > 0) { while ($find_characters = $this->DB->FetchObject($find_characters_q)) { $GLOBALS['userpanel']['support_tickets']['open_ticket']['characters'][] = $find_characters->Name; } } return $this->LoadPage("option_supportTickets_open_form", true); } break; default: if ($_GET['showticket']) { $GLOBALS['userpanel']['support_tickets']['auto_load_ticket'] = $_GET['showticket']; } elseif (strstr($this->URLData[2], "showticket-")) { $GLOBALS['userpanel']['support_tickets']['auto_load_ticket'] = str_replace("showticket-", NULL, $this->URLData[2]); } break; } }
/** * Option: Change Name * Change the name from character * * @return void */ public function ChangeName() { if ($_GET['write'] == true) { if (empty($_POST['NewName'])) { setResult(showMessage($this->lang->words['UserPanel']['ChangeName']['Messages']['FieldVoid'], 1)); } elseif (empty($_POST['Captcha'])) { setResult(showMessage($this->lang->words['Global']['Captcha']['Messages']['Void'], 1)); } elseif (!CTM_Captcha::Check($_POST['Captcha'])) { setResult(showMessage($this->lang->words['Global']['Captcha']['Messages']['Invalid'], 2)); } elseif (strlen($_POST['NewName']) < 4) { setResult(showMessage($this->lang->words['UserPanel']['ChangeName']['Messages']['ErrorLength'], 2)); } elseif (eregi("[^a-zA-Z0-9_!=?&-]", $_POST['NewName'])) { setResult(showMessage($this->lang->words['UserPanel']['ChangeName']['Messages']['ErrorWords'], 2)); } else { $bad_syntax = FALSE; foreach ($this->settings['USERPANEL']['CHARACTER']['CHANGE_NAME']['BAD_SYNTAX'] as $badSyntax) { if (stristr($_POST['NewName'], $badSyntax)) { $bad_syntax = TRUE; break; } } if ($bad_syntax == true) { setResult(showMessage($this->lang->words['UserPanel']['ChangeName']['Messages']['ErrorSyntax'], 2)); } else { $this->DB->Arguments($this->character); $this->DB->Query("SELECT Name FROM " . MUGEN_CORE . ".dbo.GuildMember WHERE Name = '%s'", $find_guild); if ($this->DB->CountRows($find_guild) > 0) { setResult(showMessage($this->lang->words['UserPanel']['ChangeName']['Messages']['ErrorGuild'], 2)); } else { $change_name_result = $this->MuLib('Member')->RenameCharacter($this->character, USER_ACCOUNT, $_POST['NewName']); switch ($change_name_result) { case "NAME_IN_USE": setResult(showMessage($this->lang->words['UserPanel']['ChangeName']['Messages']['ErrorName'], 2)); break; case "ALL_OK": $temp_name = $this->character; $this->character = $_POST['NewName']; $_SESSION['USERCP_CHARACTER_SELECTED'] = $_POST['NewName']; $GLOBALS['userpanel']['character'] = $_POST['NewName']; CTM_Captcha::gerateCaptchaText(); $this->WriteLog(array("option" => "Change Name", "character" => true, "data" => array("[Before] Name: " . $temp_name, "[After] Name: " . $this->character))); $string = showMessage(sprintf($this->lang->words['UserPanel']['ChangeName']['Messages']['Success'], $_POST['NewName']), 3); if (loadIsAjax() == true) { $string .= "\n<script>\$('#cpCharSelected').val('" . $_POST['NewName'] . "');\n"; $string .= "\$('#currentCharName').val('" . $_POST['NewName'] . "');</script>"; } setResult($string); break; case "ID_ERROR": $this->WriteLog(array("option" => "Change Name", "character" => true, "data" => array("Error #" . CoreVariables::ErrorsCode()->CharGameIDFail))); setResult(showMessage(sprintf($this->lang->words['UserPanel']['ChangeName']['Messages']['GeneralError'], CoreVariables::ErrorsCode()->CharGameIDFail), 2)); break; } } } } } }
/** * Option: Disconnect from Game * Connect to JoinServer and disconnect the player * * @return void */ public function DisconnectGame() { if ($_GET['do'] == "process") { if ($this->userData['stat']['ConnectStat'] == 0) { return setResult(showMessage($this->lang->words['UserPanel']['DisconnectGame']['Messages']['Offline'], 2)); } if (!$this->MuLib('JoinServer')->init()) { return setResult(showMessage(sprintf($this->lang->words['UserPanel']['DisconnectGame']['Messages']['Error'], CoreVariables::ErrorsCode()->JoinServerFail), 2)); } $this->MuLib('JoinServer')->ForceLogout(USER_ACCOUNT); return setResult(showMessage($this->lang->words['UserPanel']['DisconnectGame']['Messages']['Success'], 3)); } $GLOBALS['userpanel']['disconnect_game']['status'] = $this->userData['stat']['ConnectStat']; }
/** * Register Account * * @return void */ private function loadRegisterAccount() { if ($_GET['write'] == true) { if ($_POST['Terms'] != 1) { setResult(showMessage($this->lang->words['Register']['Register']['Messages']['CheckTerms'], 2)); } else { $error = NULL; $finishRegister = FALSE; $PID = $this->settings['REGISTER']['REGISTER_PID']; /* Variables to lower */ $_POST['Login'] = strtolower($_POST['Login']); $_POST['Mail'] = strtolower($_POST['Mail']); $_POST['CMail'] = strtolower($_POST['CMail']); /* Check Void Fields */ if (empty($_POST['Login'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_Login'] . "<br />\n"; } if (empty($_POST['Password'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_Password'] . "<br />\n"; } if (empty($_POST['CPassword'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_CPassword'] . "<br />\n"; } if (empty($_POST['Mail'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_Mail'] . "<br />\n"; } if (empty($_POST['CMail'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_CMail'] . "<br />\n"; } if (empty($_POST['PersonalID']) && $PID) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_PID'] . "<br />\n"; } if (empty($_POST['Name'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_Name'] . "<br />\n"; } if (empty($_POST['Phone'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_Phone'] . "<br />\n"; } if (empty($_POST['Sex'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_Sex'] . "<br />\n"; } if (empty($_POST['BirthDay'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_BirthDay'] . "<br />\n"; } if (empty($_POST['BirthMonth'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_BirthMonth'] . "<br />\n"; } if (empty($_POST['BirthYear'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_BirthYear'] . "<br />\n"; } if (empty($_POST['SecureQuestion'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_SecureQuestion'] . "<br />\n"; } if (empty($_POST['SecureAnswer'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['NULL_SecureAnswer'] . "<br />\n"; } if (empty($_POST['Captcha'])) { $error .= "» " . $this->lang->words['Global']['Captcha']['Messages']['Void']; } if (strlen($error) > 0) { return setResult(showMessage($this->lang->words['Register']['Register']['Messages']['NULL_Message'] . "<br /><br />" . $error, 1)); } /* Check Error Fields */ if (!CTM_Captcha::Check($_POST['Captcha'])) { $error .= "» " . $this->lang->words['Global']['Captcha']['Messages']['Invalid'] . "<br />\n"; } if (strlen($_POST['Login']) <= 3 || strlen($_POST['Login']) > 10) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_LoginLength'] . "<br />\n"; } if (strlen($_POST['Password']) <= 3 || strlen($_POST['Password']) > 10) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_PassLength'] . "<br />\n"; } if (strlen($_POST['PersonalID']) != 7 && $PID) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_PIDLength'] . "<br />\n"; } if (eregi("[^a-zA-Z0-9_!=?&-]", $_POST['Login'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_LoginWords'] . "<br />\n"; } if (eregi("[^a-zA-Z0-9_!=?&-]", $_POST['Password'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_PassWords'] . "<br />\n"; } if (!CTM_Text::checkMail($_POST['Mail'])) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_MailWords'] . "<br />\n"; } if (!is_numeric($_POST['PersonalID']) && $PID) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_PIDWords'] . "<br />\n"; } if (strcmp($_POST['Password'], $_POST['CPassword']) != 0) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_ConfirmPass'] . "<br />\n"; } if (strcmp($_POST['Mail'], $_POST['CMail']) != 0) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_ConfirmMail'] . "<br />\n"; } $this->DB->Arguments($_POST['Login']); $this->DB->Query("SELECT 1 FROM " . MUACC_CORE . ".dbo.MEMB_INFO WHERE LOWER(memb___id) = '%s'", $checkLoginQ); if ($this->DB->CountRows($checkLoginQ) > 0) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_LoginExists'] . "<br />\n"; } $this->DB->Arguments($_POST['Mail']); $this->DB->Query("SELECT 1 FROM " . MUACC_CORE . ".dbo.MEMB_INFO WHERE LOWER(mail_addr) = '%s'", $checkMailQ); if ($this->DB->CountRows($checkMailQ) > 0) { $error .= "» " . $this->lang->words['Register']['Register']['Messages']['Error_MailExists'] . "<br />\n"; } if (strlen($error) > 0) { return setResult(showMessage($this->lang->words['Register']['Register']['Messages']['Error_Message'] . "<br /><br />" . $error, 2)); } /* Finish and save fields values */ CTM_MuOnline::Lib('Member')->CreateAccount(array("Name" => utf8_encode($_POST['Name']), "Login" => $_POST['Login'], "Password" => $_POST['Password'], "Mail" => $_POST['Mail'], "PID" => $PID ? $_POST['PersonalID'] : $this->settings['REGISTER']['DEFAULT_PID'], "Phone" => $_POST['Phone'], "Sex" => $_POST['Sex'], "Birth" => $_POST['BirthDay'] . "/" . $_POST['BirthMonth'] . "/" . $_POST['BirthYear'], "SecureQuestion" => array(utf8_encode($_POST['SecureQuestion']), utf8_encode($_POST['SecureAnswer'])), "Lock" => $this->settings['REGISTER']['CONFIRM_MAIL'] == true ? 1 : 0, "Status" => $this->settings['REGISTER']['CONFIRM_MAIL'] == true ? 1 : 0)); $bonusCount = 0; $VIPBonus = FALSE; $coinBonus = FALSE; $vaultBonus = FALSE; if ($this->settings['REGISTER']['VIP']['SWITCH'] == TRUE && $_POST['VIPBonus'] == 1) { $this->DB->Arguments($this->settings['REGISTER']['VIP']['TYPE'], $this->settings['REGISTER']['VIP']['TIME'], time(), $_POST['Login']); $this->DB->Query("UPDATE " . VIP_CORE . ".dbo." . VIP_TABLE . " SET " . VIP_COLUMN . " = %d, " . VIP_TIME . " = %d, " . VIP_BEGIN . " = %d WHERE " . VIP_LOGIN . " = '%s'"); $VIPBonus = TRUE; $bonusCount++; } if ($this->settings['REGISTER']['COIN']['SWITCH'] == true && $_POST['CoinBonus'] == 1) { $column = constant("COIN_COLUMN_" . $this->settings['REGISTER']['COIN']['TYPE']); $this->DB->Arguments($column, $this->settings['REGISTER']['COIN']['NUMBER'], $_POST['Login']); $this->DB->Query("UPDATE " . COIN_CORE . ".dbo." . COIN_TABLE . " SET %s = %d WHERE " . COIN_LOGIN . "= '%s'"); $coinBonus = TRUE; $bonusCount++; } if ($this->settings['REGISTER']['VAULT_BONUS']['SWITCH'] == true && $_POST['VaultBonus'] != NULL) { if (array_key_exists($_POST['VaultBonus'], $this->settings['REGISTER']['VAULT_BONUS']['OPTIONS'])) { $this->loadVaultBonus($_POST['VaultBonus'], $_POST['Login']); $vaultBonus = TRUE; $bonusCount++; } } if ($this->settings['REGISTER']['CONFIRM_MAIL'] == true) { $dechex = create_function("\$integer", "return str_pad(dechex(\$integer >= 255 ? 255 : \$integer), 2, 0, STR_PAD_LEFT);"); $currentId = $this->DB->GetCurrentId("CTM_ValidingAccounts") + 1; $confirmCode = $dechex($currentId); $confirmCode .= ":" . $dechex(0xff - strlen($_POST['Account']) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(strlen($_POST['Mail']) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(mt_rand(0, 150)); $confirmCode .= ":" . $dechex(mt_rand(151, 255)); $confirmCode .= ":" . $dechex(0xff / intval(date("d")) + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(0xff / intval(date("m")) + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode .= ":" . $dechex(intval(date("Y")) / 0xff + intval(date("H")) + intval(date("m")) + intval(date("s")) + mt_rand(0, 50)); $confirmCode = strtoupper($confirmCode); $link = gerateFullLink("?/register/confirm"); $this->DB->Arguments($_POST['Login'], utf8_encode($_POST['Name']), $_POST['Mail'], $confirmCode); $this->DB->Query("INSERT INTO dbo.CTM_ValidatingAccounts (Account,Name,Mail,ConfirmCode) VALUES ('%s','%s','%s','%s')"); $this->email->arguments = array("NAME" => htmlEncode($_POST['Name']), "LOGIN" => $_POST['Login'], "EMAIL" => $_POST['Mail'], "SECURE_QUESTION" => htmlEncode($_POST['SecureQuestion']), "SECURE_ANSWER" => htmlEncode($_POST['SecureAnswer']), "VALIDATION_LINK" => $currentId, "VALIDATION_CODE" => $confirmCode, "SYSTEM_LINK" => $link); $this->email->LoadTemplate("RegisterNewMember"); $this->email->GetMailContent($mail); $this->mailer->AddAddress($_POST['Mail'], $_POST['Name']); $this->mailer->SetSubject($mail['subject']); $this->mailer->SetBody($mail['content']); if ($this->mailer->SendMail() == true) { $finishRegister = TRUE; $this->lang->setArguments("Register,Register,Messages,Success,NotCompleted", $_POST['Mail']); $success = "<strong>" . $this->lang->words['Register']['Register']['Messages']['Success'][1] . "</strong><br /><br />\n"; $success .= $this->lang->words['Register']['Register']['Messages']['Success']['NotCompleted']; } else { CTM_MuOnline::Lib('Member')->DeleteAccount($_POST['Login']); $this->lang->setArguments("Register,Register,Messages,Error_SendMail", CoreVariables::ErrorsCode()->SendMailError); setResult(showMessage($this->lang->words['Register']['Register']['Messages']['Error_SendMail'], 2)); } } else { $finishRegister = TRUE; $success = "<strong>" . $this->lang->words['Register']['Register']['Messages']['Success'][1] . "</strong><br /><br />\n"; $success .= "» " . $this->lang->words['Register']['Register']['Messages']['Success'][2] . "<strong> " . htmlEncode($_POST['Name']) . "</strong><br />\n"; $success .= "» " . $this->lang->words['Register']['Register']['Messages']['Success'][3] . "<strong> " . strtolower($_POST['Login']) . "</strong><br />\n"; $success .= "» " . $this->lang->words['Register']['Register']['Messages']['Success'][4] . "<strong> " . $_POST['Mail'] . "</strong>\n"; } if ($finishRegister == true) { if ($bonusCount > 0) { $success .= "<br /><br />\n"; $success .= "<strong>" . $this->lang->words['Register']['Register']['Messages']['Success'][5] . "</strong><br /><br />\n"; if ($VIPBonus) { $this->lang->setTags("Register,Register,Messages,Success,6", $this->settings['REGISTER']['VIP']['TIME'], constant("VIP_NAME_" . $this->settings['REGISTER']['VIP']['TYPE'])); $success .= "» " . $this->lang->words['Register']['Register']['Messages']['Success'][6] . "<br />\n"; } if ($coinBonus) { $this->lang->setTags("Register,Register,Messages,Success,7", $this->settings['REGISTER']['COIN']['NUMBER'], constant("COIN_NAME_" . $this->settings['REGISTER']['COIN']['TYPE'])); $success .= "» " . $this->lang->words['Register']['Register']['Messages']['Success'][7] . "<br />\n"; } if ($vaultBonus) { $success .= "» " . htmlEncode($this->settings['REGISTER']['VAULT_BONUS']['OPTIONS'][$_POST['VaultBonus']]) . "<br />\n"; } } $success .= "<br />\n"; $success .= $this->lang->words['Register']['Register']['Messages']['Success'][8]; CTM_Captcha::gerateCaptchaText(); setResult(showMessage($success, 3)); } } } }
/** * Option: Invoices * Invoices of payments * * @return void */ public function Invoices() { switch ($_GET['section'] ? $_GET['section'] : $this->URLData[2]) { case "list": $this->DB->Arguments(USER_ACCOUNT); $this->DB->Query("SELECT Id, Document, Status, StartDate, [Value], CoinQuantity FROM dbo.CTM_Invoices WHERE Account = '%s' ORDER BY Id DESC", $all_invoices_q); $invoices_opened = array(); $invoices_finalized = array(); $invoices_canceled = array(); if ($this->DB->CountRows($all_invoices_q) > 0) { while ($all_invoices = $this->DB->FetchObject($all_invoices_q)) { switch ($all_invoices->Status) { case 0: $var_name = "invoices_opened"; $status = "<span style='color: #C00;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Pending'] . "</span>"; break; case 1: $var_name = "invoices_opened"; $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['InProgress'] . "</span>"; break; case 2: $var_name = "invoices_finalized"; $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Paid'] . "</span>"; break; case 3: $var_name = "invoices_finalized"; $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Rejected'] . "</span>"; break; case 4: $var_name = "invoices_canceled"; $status = "<span style='color: #CCC;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Canceled'] . "</span>"; break; } ${$var_name}[$all_invoices->Id] = array("document" => $all_invoices->Document, "quantity" => number_format($all_invoices->CoinQuantity, 0, false, ".") . " " . COIN_NAME_1, "value" => CTM_Text::MoneyFormat(MONEY_SYMBOL, $all_invoices->Value), "date" => date("d/m/Y - h:i a", $all_invoices->StartDate), "status" => $status); } } $GLOBALS['userpanel']['invoices']['auto_load_invoice'] = $_GET['showinvoice'] ? $_GET['showinvoice'] : $this->URLData[3]; $GLOBALS['userpanel']['invoices']['list_invoices'] = array("opened" => $invoices_opened, "finalized" => $invoices_finalized, "canceled" => $invoices_canceled); unset($invoices_opened); unset($invoices_finalized); unset($invoices_canceled); return $this->LoadPage("option_invoices_list", true); break; case "show": $invoice_id = intval($_GET['id'] ? $_GET['id'] : $this->URLData[3]); $section = $_GET['do'] ? $_GET['do'] : $this->URLData[4]; $this->DB->Arguments($invoice_id, USER_ACCOUNT); $this->DB->Query("SELECT * FROM dbo.CTM_Invoices WHERE Id = %d AND Account = '%s'", $get_invoice); if ($this->DB->CountRows($get_invoice) < 1) { return exit(showMessage(sprintf($this->lang->words['UserPanel']['Invoices']['ErrorMessage'], CoreVariables::ErrorsCode()->PaymentNotFound), 2)); } $invoice = $this->DB->FetchObject($get_invoice); if ($section) { switch ($section) { case "payment": $this->DB->Arguments($invoice_id, USER_ACCOUNT); $this->DB->Query("SELECT * FROM dbo.CTM_Payments WHERE InvoiceId = %d AND Account = '%s'", $get_payment); if ($this->DB->CountRows($get_payment) < 1) { if ($invoice->Status != 0 && $invoice->Status != 3) { exit(showMessage($this->lang->words['UserPanel']['Invoices']['ShowInvoice']['Messages']['InvoiceInProgress'], 0)); } $method = strlen($_GET['method']) > 0 ? $_GET['method'] : $this->URLData[5]; if (strlen($method) < 1 || !array_key_exists($method, $this->settings['PAYMENTMETHOD']['FORM'])) { $GLOBALS['userpanel']['payments']['confirm_payment']['invoice_id'] = $invoice_id; if ($_GET['write'] == true) { exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['SelectMethod'], 2)); } return $this->LoadPage("option_payments_confirm", true); } else { $error = $this->LoadClass("Error", "class_sources"); $method = intval($method); if ($_GET['write'] == true) { if (empty($_POST['Date'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['DateVoid'], 0); } if (empty($_POST['Hour'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['HourVoid'], 0); } if (empty($_POST['Value'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['ValueVoid'], 0); } if (empty($_POST['Local'])) { $error->addError($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['LocalVoid'], 0); } foreach ($this->settings['PAYMENTMETHOD']['FORM'][$method][1] as $key => $value) { if (empty($_POST[$key])) { $error->addError(htmlEncode($value), 0); } } if ($error->count[0] > 0) { $_error = "<strong>" . $this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['VoidMessage'] . "<strong><br />"; exit(showMessage($_error . "<br />" . $error->showError(0), 1)); } else { if ($_POST['u_sendFile'] == 1) { if ($_POST['u_ready'] == 1) { $name = str_pad($this->DB->GetCurrentId("CTM_Payments") + 1, 10, 0, STR_PAD_LEFT); $size = $this->settings['WEBDATA']['UPLOADS']['FILESIZE']['PAYMENT_ANNEX']; $dir = CTM_ROOT_PATH . $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['PAYMENT_ANNEX']; Uploadify::set("Filedata", $size, array("gif", "jpg", "jpeg", "png"), $name, $dir, $session); exit("<script>startUpload('{$name}', '{$session}');</script>"); } else { $data = unserialize(base64_decode($_POST['u_fileUploaded'])); $annex = $data['parsed_file_name']; if (!$data) { exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['AnnexError'], 2)); } elseif ($data['error_no'] == 2) { $this->lang->setArguments("UserPanel,Payments,ConfirmPayment,Messages,ErrorFormat", "<b>JPEG</b>, <b>GIF</b>, <b>PNG</b>"); exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['ErrorFormat'], 2)); } elseif ($data['error_no'] == 3) { $this->lang->setArguments("UserPanel,Payments,ConfirmPayment,Messages,ErrorSize", "<b>" . $data['max_file_size'] . "</b>"); exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['ErrorSize'], 2)); } elseif ($data['error_no'] != 0) { exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['AnnexError'], 2)); } } } $payment_data = array(); foreach ($this->settings['PAYMENTMETHOD']['FORM'][$method][1] as $key => $value) { $payment_data[$key] = utf8_encode($_POST[$key]); } $columns_insert = array("Account" => USER_ACCOUNT, "InvoiceId" => $invoice_id, "Status" => 0, "ConfirmDate" => time(), "Method" => $method, "Date" => $_POST['Date'], "Hour" => $_POST['Hour'], "Value" => $_POST['Value'], "Local" => utf8_encode($_POST['Local']), "ConfirmData" => serialize($payment_data), "Message" => htmlEncode(nl2br(strip_tags($_POST['Message']))), "Annex" => $annex); $this->DB->ForceDataType("InvoiceId", "integer"); $this->DB->ForceDataType("Status", "integer"); $this->DB->ForceDataType("ConfirmDate", "integer"); $this->DB->ForceDataType("Method", "integer"); $this->DB->ForceDataType("Message", empty($_POST['Message']) ? "null" : "string"); $this->DB->ForceDataType("Annex", empty($annex) ? "null" : "string"); $this->DB->Insert("CTM_Payments", $columns_insert); $this->DB->Arguments($invoice_id); $this->DB->ForceDataType("Status", "integer"); $this->DB->Update("CTM_Invoices", array("Status" => 1, "PaymentMethod" => "bank"), "Id = %d"); return exit(showMessage($this->lang->words['UserPanel']['Payments']['ConfirmPayment']['Messages']['Success'], 3)); } } $inputs = array(); foreach ($this->settings['PAYMENTMETHOD']['FORM'][$method][1] as $key => $value) { $inputs[$key] = htmlEncode($value); } $GLOBALS['userpanel']['payments']['confirm_payment'] = array("invoice_id" => $invoice_id, "method_name" => htmlEncode($this->settings['PAYMENTMETHOD']['FORM'][$method][0]), "method_id" => $method, "method_fields" => $inputs); return $this->LoadPage("option_payments_confirm_form", true); } } else { $payment = $this->DB->FetchObject($get_payment); switch ($payment->Status) { case 0: $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['Payments']['Status']['Opened'] . "</span>"; break; case 1: $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['Payments']['Status']['Confirmed'] . "</span>"; break; case 2: $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['Payments']['Status']['Rejected'] . "</span>"; break; } if (!($payment_data = unserialize($payment->ConfirmData))) { $payment_data = array(); } $GLOBALS['userpanel']['payments']['show_payment'] = array("id" => $payment_id, "method" => htmlEncode($this->settings['PAYMENTMETHOD']['FORM'][$payment->Method][0]), "confirm_date" => date("d/m/Y - h:i a", $payment->ConfirmDate), "status" => $status, "quantity" => number_format($payment->Quantity, 0, false, ".") . " " . COIN_NAME_1, "date" => $payment->Date, "hour" => $payment->Hour, "value" => $payment->Value, "local" => utf8_decode($payment->Local), "message" => htmlDecode($payment->Message), "payment_data" => $payment_data); if (strlen($payment->Annex) > 1) { $GLOBALS['userpanel']['payments']['show_payment']['annex'] = array("link" => $this->settings['WEBDATA']['UPLOADS']['DIRECTORY']['PAYMENT_ANNEX'] . $payment->Annex, "name" => $payment->Annex); } return $this->LoadPage("option_payments_show", true); } break; } } switch ($invoice->Status) { case 0: $status = "<span style='color: #C00;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Pending'] . "</span>"; break; case 1: $status = "<span style='color: blue;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['InProgress'] . "</span>"; break; case 2: $status = "<span style='color: green;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Paid'] . "</span>"; break; case 3: $status = "<span style='color: red;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Rejected'] . "</span>"; break; case 4: $status = "<span style='color: #CCC;'>" . $this->lang->words['UserPanel']['Invoices']['Status']['Canceled'] . "</span>"; break; } $GLOBALS['userpanel']['invoices']['show_invoice'] = array("id" => $invoice_id, "document" => $invoice->Document, "start_date" => date("d/m/Y - h:i a", $invoice->StartDate), "quantity" => number_format($invoice->CoinQuantity, 0, false, "."), "value" => CTM_Text::MoneyFormat(MONEY_SYMBOL, $invoice->Value), "status" => $status, "canceled" => $invoice->Status == 4); if ($invoice->Status > 0 && $invoice->PaymentMethod != "none") { if (!($payment_data = unserialize($invoice->PaymentData))) { $payment_data = array(); } switch ($invoice->PaymentMethod) { case "bank": $method_name = $this->lang->words['UserPanel']['Invoices']['Methods']['Bank']; break; } $GLOBALS['userpanel']['invoices']['show_invoice']['payment_method'] = array("method" => $method_name, "data" => $payment_data, "key" => $invoice->PaymentMethod); } $this->lang->setArguments("UserPanel,Invoices,ShowInvoice,Title", $invoice_id); return $this->LoadPage("option_invoices_show", true); break; case "open": if ($this->settings['USERPANEL']['FINANCIAL']['INVOICES']['LIMIT_OPENED'] > 0) { $this->DB->Arguments(USER_ACCOUNT); $this->DB->Query("SELECT 1 FROM dbo.CTM_Invoices WHERE Account = '%s' AND Status < 2", $count_invoices); if ($this->DB->CountRows($count_invoices) >= $this->settings['USERPANEL']['FINANCIAL']['INVOICES']['LIMIT_OPENED']) { $limit = $this->settings['USERPANEL']['FINANCIAL']['INVOICES']['LIMIT_OPENED']; exit(showMessage(sprintf($this->lang->words['UserPanel']['Invoices']['OpenInvoice']['Messages']['LimitReached'], $limit), 2)); } } if ($_GET['write'] == true) { if (empty($_POST['Quantity'])) { exit(showMessage($this->lang->words['UserPanel']['Invoices']['OpenInvoice']['Messages']['QuantityVoid'], 1)); } if (!is_numeric($_POST['Quantity'])) { exit(showMessage($this->lang->words['UserPanel']['Invoices']['OpenInvoice']['Messages']['QuantitySyntax'], 2)); } $_POST['Quantity'] = ltrim($_POST['Quantity'], 0); $money_value = COIN_PRICE * $_POST['Quantity']; if (strstr($money_value, ".")) { list($note, $coin) = explode(".", $money_value); if (strlen($coin) > 2) { $coin = substr($coin, 0, 2); } while ($coin % 5 != 0 && $coin > 0) { if ($coin < 5 && $coin > 0) { $coin = 5; } else { $coin++; } } if (strlen($coin) == 1) { $coin = "0" . $coin; } $final_money = $note . "." . $coin; } else { $final_money = $money_value . ".00"; } if ($_GET['confirm'] == true) { $insert_columns = array("Account" => USER_ACCOUNT, "StartDate" => time(), "EndDate" => 0, "Value" => $final_money, "CoinQuantity" => $_POST['Quantity'], "Status" => 0); $this->DB->Insert("CTM_Invoices", $insert_columns); $last_id = $this->DB->GetLastedId(); $this->DB->Update("CTM_Invoices", array("Document" => INVOICE_PREFIX . $last_id), "Id = " . $last_id); exit("<script>runOpenInvoice({$last_id});</script>"); } else { exit("<script>showConfirmMessage('" . CTM_Text::MoneyFormat(MONEY_SYMBOL, $final_money) . "');</script>"); } } $GLOBALS['default_value'] = str_replace(MONEY_SYMBOL . " ", NULL, CTM_Text::MoneyFormat(MONEY_SYMBOL, COIN_PRICE)); return $this->LoadPage("option_invoices_open", true); break; default: if ($_GET['showinvoice']) { $GLOBALS['userpanel']['invoices']['auto_load_invoice'] = $_GET['showinvoice']; } elseif (strstr($this->URLData[2], "showinvoice-")) { $GLOBALS['userpanel']['invoices']['auto_load_invoice'] = str_replace("showinvoice-", NULL, $this->URLData[2]); } break; } }