// Have fun customizing this API file to meet your needs.
// ----------------------------------------------------------------
// CONNECT TO THE DATABASE & MAKE SITE CONFIG SETTINGS AVAILABLE
// ----------------------------------------------------------------
require_once "../../API/config.php";
include_once "../../includes/validation_functions.php";
// QUERY THE DATABASE FOR SECRET KEY
// ------------------------------------------------------------------------------
$s_key = mysql_query("select secret from idevaff_config");
$s_key = mysql_fetch_array($s_key);
$s_key = $s_key['secret'];
// CHECK VALID SECRET KEY IS PRESENT AND VALID
// - The variable is already sanitized.
// - The variable is already validated through _GET, or _POST.
// ------------------------------------------------------------------------------
$secret = check_type_api('secret');
if ($secret == $s_key) {
// QUERY & SANITIZE ALL INCOMING DATA
// ----------------------------------------------------------------
$order_number = check_type('order_number');
// CHECK IF ORDER NUMBER EXISTS
// ----------------------------------------------------------------
if ($order_number) {
$check_order_number = mysql_query("select id from idevaff_recurring where tracking = '{$order_number}'");
if (mysql_num_rows($check_order_number)) {
// REMOVE THE COMMISSIONS
// ----------------------------------------------------------------
mysql_query("delete from idevaff_recurring where tracking = '{$order_number}'");
if ($email_html_delivery == true) {
$content = "The API file (terminate_recurring.php) successfully removed a recurring commission.<br/><br />Order Number: " . $order_number . "<br /><br />--------<br />Message Auto-Sent By iDevAffiliate " . $version;
} else {
require_once "../../API/config.php";
require_once "../../includes/validation_functions.php";
// QUERY THE DATABASE FOR SECRET KEY
// ----------------------------------------------------------------
$s_key = mysql_query("select secret from idevaff_config");
$s_key = mysql_fetch_array($s_key);
$s_key = $s_key['secret'];
// CHECK VALID SECRET KEY IS PRESENT AND VALID
// - The variable is already sanitized.
// - The variable is already validated through _GET, or _POST.
// ------------------------------------------------------------------------------
$secret = check_type_api('secret');
if ($secret == $s_key) {
// QUERY & SANITIZE ALL INCOMING DATA
// ----------------------------------------------------------------
$order_number = check_type_api('order_number');
// CHECK IF ORDER NUMBER EXISTS
// ----------------------------------------------------------------
if ($order_number) {
// GATHER COMMISSION DATA
// ----------------------------------------------------------------
$check_order_number = mysql_query("select * from idevaff_sales where tracking = '{$order_number}' and approved = '0'");
if (mysql_num_rows($check_order_number)) {
$commission_data = mysql_fetch_array($check_order_number);
$record = $commission_data['record'];
$aff_id = $commission_data['id'];
$cust_ip = $commission_data['ip'];
$payment = $commission_data['payment'];
$getpaylevel = mysql_query("select level, type from idevaff_affiliates where id = {$aff_id}");
$paylevel = mysql_fetch_array($getpaylevel);
$level = $paylevel['level'];
