|
Server : Apache/2.4.62 System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64 User : www ( 80) PHP Version : 8.3.8 Disable Function : NONE Directory : /domains/abtechsci/mmc15/Membership/extensions/ |
Upload File : |
<?php
/************* Membership V2.0 *******************/
/*
Released by AwesomePHP.com, under the GPL License, a
copy of it should be attached to the zip file, or
you can view it on http://AwesomePHP.com/gpl.txt
*/
/************* Membership V2.0 *******************/
//Call Database & Connect
require_once('headers/database.php');
connect();
//Call functions
require_once('headers/functions.php');
//Get Admin Values
$get_cd = mysql_query("SELECT * FROM `memb_config`");
while($each = mysql_fetch_assoc($get_cd)){$$each['config_name'] = $each['config_value'];}
if($_GET['m'] == 1){ $message = $LANGUAGE['LOGIN_NEEDED'];}
//If retrieving password
if($_POST['S_ID'] == 2){
//Check standard fields
if(is_valid_email($_POST['user_email']) == false){$message = $LANGUAGE['INVALID_EMAIL'];}
if($message == NULL && $_POST['user_password'] == NULL){$message = $LANGUAGE['INVALID_PASS'];}
//Check Cpatcha
if($message == NULL){
$realanswer = trim(encode_decode(hex2bin($_POST['registration_id']),$CF_ENCDEC));
if($CF_CAPTHCA == 'IMAGE'){
if($_POST['answer'] != $realanswer){
$message = $LANGUAGE['ENTER_VER_CODE'];
}
} else {
if($realanswer != '*' AND $realanswer != $_POST['answer']){
$message = $LANGUAGE['INVALID_ANSWER'];
}
}
}
//Everything OK, procceed
if($message == NULL){
$_POST['user_email'] = mysql_escape_string($_POST['user_email']);
$_POST['user_password'] = mysql_escape_string($_POST['user_password']);
$get_user = mysql_fetch_assoc(mysql_query("SELECT * FROM `memb_userlist` WHERE `user_email`='$_POST[user_email]' AND
`user_password`='$_POST[user_password]'"));
if($get_user['user_email'] != $_POST['user_email']){ $message = $LANGUAGE['INVALID_CREDENTIALS']; }
if($_POST['membership_id'] != $get_user['membership_id'] && $message == NULL){
$message = $LANGUAGE['NOT_MEMBER'];
}
if($message == NULL){
// Check if membership is active (if not free)
$get_memb = mysql_fetch_assoc(mysql_query("SELECT * FROM `memb_memberships`
WHERE `membership_id`='$_POST[membership_id]'"));
if($get_memb['membership_free'] != 1){
$get_payment_date = mysql_fetch_assoc(mysql_query("SELECT `rate_id`,`payment_date` FROM `memb_payments`
WHERE `membership_id`='$_POST[membership_id]' ORDER BY `payment_date` DESC LIMIT 1"));
$get_plan_length = mysql_fetch_assoc(mysql_query("SELECT `rate_term`,`rate_term_c` FROM `memb_memberships_rates`
WHERE `rate_id`='$get_payment_date[rate_id]'"));
$paidForDays = getDays($get_plan_length['rate_term'],$get_plan_length['rate_term_c']);
$getDifference = getDifference(date("Y-m-d G:i:s"),$get_payment_date['payment_date'],3);
if($getDifference > $paidForDays){
$message = $LANGUAGE['MEMBERSHIP_EXPIRED'];
$update = mysql_query("UPDATE `memb_userlist` SET `membership_id`='1'
WHERE `user_id`='$get_user[user_id]' LIMIT 1");
}
}
}
if($message == NULL){
@session_start();
$usersession = generate_session(100);
$host_name = '.'.str_replace('www.','',$_SERVER['HTTP_HOST']);
if($_POST['persistent'] == 'yes'){
setcookie("usersession", $usersession, time()+($_POST['persistentFor']*7*24*60*60), "/", $host_name, 0);
}
$_SESSION['usersession'] = $usersession;
$user_ip = get_ip();
$insert_session = @mysql_query("INSERT INTO `memb_usersessions`
(`session_id`,`user_id`,`session_date`) VALUES ('$usersession','$get_user[user_id]',NOW())");
$update_acces = @mysql_query("UPDATE `user_list` SET `last_access`= NOW(),`last_ip`='$user_ip'
WHERE `user_id`='$get_user[user_id]' LIMIT 1");
header('Location: '.$CF_URLINC.'profile.php');
exit();
}
}
}
// get memberships
$query = mysql_query("SELECT * FROM `memb_memberships`");
while($em = mysql_fetch_assoc($query)){
$membershipList[] = $em;
}
//Disconnect Database
disconnect_data();
?>