amountbonus.php

<?php
require "include/bittorrent.php";
dbconn();
loggedinorreturn();
if (get_user_class() < UC_MODERATOR)
stderr("Error", "Access denied.");
if ($_SERVER["REQUEST_METHOD"] == "POST")
{
	if ($_POST['doit'] == 'yes') {
		sql_query("UPDATE users SET seedbonus = seedbonus + 25.0 WHERE status='confirmed'");
		stderr("Bonus", "25.0 bonus point is sent to everyone...");
		die;
	}

	if ($_POST["username"] == "" || $_POST["seedbonus"] == "" || $_POST["seedbonus"] == "")
	stderr("Error", "Missing form data.");
	$username = sqlesc($_POST["username"]);
	$seedbonus = sqlesc($_POST["seedbonus"]);

	sql_query("UPDATE users SET seedbonus=seedbonus + $seedbonus WHERE username=$username") or sqlerr(__FILE__, __LINE__);
	$res = sql_query("SELECT id FROM users WHERE username=$username");
	$arr = mysql_fetch_row($res);
	if (!$arr)
	stderr("Error", "Unable to update account.");
	header("Location: " . get_protocol_prefix() . "$BASEURL/userdetails.php?id=".htmlspecialchars($arr[0]));
	die;
}
stdhead("Update Users Upload Amounts");
?>
<h1>Update Users Bonus Amounts</h1>
<?php
begin_main_frame("",false, 30);
begin_main_frame("Add to Specific User",false,30);
echo "<form method=\"post\" action=\"amountbonus.php\">";
print("<table width=100% border=1 cellspacing=0 cellpadding=5>\n");
?>
<tr><td class="rowhead">User name</td><td class="rowfollow"><input type="text" name="username" size="30"/></td></tr>
<tr><td class="rowhead">Bonus</td><td class="rowfollow"><input type="text" name="seedbonus" size="5"/></td></tr>
<tr><td colspan="2" class="toolbox" align="center"><input type="submit" value="Okay" class="btn"/></td></tr>
<?php end_table();?>
</form>
<?php end_main_frame();?>
<?php begin_main_frame("Send 25.0 bonus point to everyone",false,30);?>
<form action="amountbonus.php" method="post">
<table width=100% border=1 cellspacing=0 cellpadding=5>
<tr><td class="rowfollow" width="100%">
Are you sure you want to give all confirmed users 25.0 extra bonus point?<br /><br /></td></tr>
<tr><td class="toolbox" align="center"><input type = "hidden" name = "doit" value = "yes" />
<input type="submit" class="btn" value="Yes" />
</td></tr>
<?php end_table();?>
</form>
<?php
end_main_frame();
end_main_frame();
stdfoot();
init 2020-12-26 01:42:23 +08:00			`<?php`
			`require "include/bittorrent.php";`
			`dbconn();`
			`loggedinorreturn();`
			`if (get_user_class() < UC_MODERATOR)`
			`stderr("Error", "Access denied.");`
			`if ($_SERVER["REQUEST_METHOD"] == "POST")`
			`{`
			`if ($_POST['doit'] == 'yes') {`
			`sql_query("UPDATE users SET seedbonus = seedbonus + 25.0 WHERE status='confirmed'");`
			`stderr("Bonus", "25.0 bonus point is sent to everyone...");`
			`die;`
			`}`

			`if ($_POST["username"] == "" \|\| $_POST["seedbonus"] == "" \|\| $_POST["seedbonus"] == "")`
			`stderr("Error", "Missing form data.");`
			`$username = sqlesc($_POST["username"]);`
			`$seedbonus = sqlesc($_POST["seedbonus"]);`

			`sql_query("UPDATE users SET seedbonus=seedbonus + $seedbonus WHERE username=$username") or sqlerr(__FILE__, __LINE__);`
			`$res = sql_query("SELECT id FROM users WHERE username=$username");`
			`$arr = mysql_fetch_row($res);`
			`if (!$arr)`
			`stderr("Error", "Unable to update account.");`
			`header("Location: " . get_protocol_prefix() . "$BASEURL/userdetails.php?id=".htmlspecialchars($arr[0]));`
			`die;`
			`}`
			`stdhead("Update Users Upload Amounts");`
			`?>`
			`<h1>Update Users Bonus Amounts</h1>`
			`<?php`
			`begin_main_frame("",false, 30);`
			`begin_main_frame("Add to Specific User",false,30);`
			`echo "<form method=\"post\" action=\"amountbonus.php\">";`
			`print("<table width=100% border=1 cellspacing=0 cellpadding=5>\n");`
			`?>`
			`<tr><td class="rowhead">User name</td><td class="rowfollow"><input type="text" name="username" size="30"/></td></tr>`
			`<tr><td class="rowhead">Bonus</td><td class="rowfollow"><input type="text" name="seedbonus" size="5"/></td></tr>`
			`<tr><td colspan="2" class="toolbox" align="center"><input type="submit" value="Okay" class="btn"/></td></tr>`
			`<?php end_table();?>`
			`</form>`
			`<?php end_main_frame();?>`
			`<?php begin_main_frame("Send 25.0 bonus point to everyone",false,30);?>`
			`<form action="amountbonus.php" method="post">`
			`<table width=100% border=1 cellspacing=0 cellpadding=5>`
			`<tr><td class="rowfollow" width="100%">`
			`Are you sure you want to give all confirmed users 25.0 extra bonus point?<br /><br /></td></tr>`
			`<tr><td class="toolbox" align="center"><input type = "hidden" name = "doit" value = "yes" />`
			`<input type="submit" class="btn" value="Yes" />`
			`</td></tr>`
			`<?php end_table();?>`
			`</form>`
			`<?php`
			`end_main_frame();`
			`end_main_frame();`
			`stdfoot();`