/* // create smarty elements $smarty = new Smarty; // include boxes require (DIR_FS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/source/boxes.php'); // include needed functions require_once (DIR_FS_INC.'xtc_render_vvcode.inc.php'); require_once (DIR_FS_INC.'xtc_random_charcode.inc.php'); require_once (DIR_FS_INC.'xtc_encrypt_password.inc.php'); require_once (DIR_FS_INC.'xtc_validate_password.inc.php'); if (isset ($_GET['action']) && ($_GET['action'] == 'process')) { $vlcode = xtc_random_charcode(32); $link = xtc_href_link(FILENAME_NEWSLETTER, 'action=activate&email='.xtc_db_input($_POST['email']) . '&key='.$vlcode, 'NONSSL'); // assign language to template for caching $smarty->assign('language', $_SESSION['language']); $smarty->assign('tpl_path', 'templates/'.CURRENT_TEMPLATE.'/'); $smarty->assign('logo_path', HTTP_SERVER.DIR_WS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/img/'); // assign vars $smarty->assign('EMAIL', xtc_db_input($_POST['email'])); $smarty->assign('LINK', $link); // dont allow cache $smarty->caching = false; // create mails $html_mail = $smarty->fetch(CURRENT_TEMPLATE . '/mail/'.$_SESSION['language'].'/newsletter_mail.html'); $txt_mail = $smarty->fetch(CURRENT_TEMPLATE . '/mail/'.$_SESSION['language'].'/newsletter_mail.txt'); // Check if email exists if (($_POST['check'] == 'inp') && ($_POST['vvcode'] == $_SESSION['vvcode'])) { $check_mail_query = xtc_db_query("select customers_email_address, mail_status from ".TABLE_NEWSLETTER_RECIPIENTS." where customers_email_address = '".xtc_db_input($_POST['email'])."'"); if (!xtc_db_num_rows($check_mail_query)) { if (isset ($_SESSION['customer_id'])) { $customers_id = $_SESSION['customer_id']; $customers_status = $_SESSION['customers_status']['customers_status_id']; $customers_firstname = $_SESSION['customer_first_name']; $customers_lastname = $_SESSION['customer_last_name']; } else { $check_customer_mail_query = xtc_db_query("select customers_id, customers_status, customers_firstname, customers_lastname, customers_email_address from ".TABLE_CUSTOMERS." where customers_email_address = '".xtc_db_input($_POST['email'])."'"); if (!xtc_db_num_rows($check_customer_mail_query)) { $customers_id = '0'; $customers_status = '1'; $customers_firstname = TEXT_CUSTOMER_GUEST; $customers_lastname = ''; } else { $check_customer = xtc_db_fetch_array($check_customer_mail_query); $customers_id = $check_customer['customers_id']; $customers_status = $check_customer['customers_status']; $customers_firstname = $check_customer['customers_firstname']; $customers_lastname = $check_customer['customers_lastname']; } } $sql_data_array = array ('customers_email_address' => xtc_db_input($_POST['email']), 'customers_id' => xtc_db_input($customers_id), 'customers_status' => xtc_db_input($customers_status), 'customers_firstname' => xtc_db_input($customers_firstname), 'customers_lastname' => xtc_db_input($customers_lastname), 'mail_status' => '0', 'mail_key' => xtc_db_input($vlcode), 'date_added' => 'now()'); xtc_db_perform(TABLE_NEWSLETTER_RECIPIENTS, $sql_data_array); $info_message = TEXT_EMAIL_INPUT; if (SEND_EMAILS == true) { xtc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, xtc_db_input($_POST['email']), '', '', EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, '', '', TEXT_EMAIL_SUBJECT, $html_mail, $txt_mail); } } else { $check_mail = xtc_db_fetch_array($check_mail_query); if ($check_mail['mail_status'] == '0') { $info_message = TEXT_EMAIL_EXIST_NO_NEWSLETTER; if (SEND_EMAILS == true) { xtc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, xtc_db_input($_POST['email']), '', '', EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, '', '', TEXT_EMAIL_SUBJECT, $html_mail, $txt_mail); } } else { $info_message = TEXT_EMAIL_EXIST_NEWSLETTER; } } } else { $info_message = TEXT_WRONG_CODE; } if (($_POST['check'] == 'del') && ($_POST['vvcode'] == $_SESSION['vvcode'])) { $check_mail_query = xtc_db_query("select customers_email_address from ".TABLE_NEWSLETTER_RECIPIENTS." where customers_email_address = '".xtc_db_input($_POST['email'])."'"); if (!xtc_db_num_rows($check_mail_query)) { $info_message = TEXT_EMAIL_NOT_EXIST; } else { $del_query = xtc_db_query("delete from ".TABLE_NEWSLETTER_RECIPIENTS." where customers_email_address ='".xtc_db_input($_POST['email'])."'"); $info_message = TEXT_EMAIL_DEL; } } } // Accountaktivierung per Emaillink if (isset ($_GET['action']) && ($_GET['action'] == 'activate')) { $check_mail_query = xtc_db_query("select mail_key from ".TABLE_NEWSLETTER_RECIPIENTS." where customers_email_address = '".xtc_db_input($_GET['email'])."'"); if (!xtc_db_num_rows($check_mail_query)) { $info_message = TEXT_EMAIL_NOT_EXIST; } else { $check_mail = xtc_db_fetch_array($check_mail_query); if (!$check_mail['mail_key'] == $_GET['key']) { $info_message = TEXT_EMAIL_ACTIVE_ERROR; } else { xtc_db_query("update ".TABLE_NEWSLETTER_RECIPIENTS." set mail_status = '1' where customers_email_address = '".xtc_db_input($_GET['email'])."'"); $info_message = TEXT_EMAIL_ACTIVE; } } } // Accountdeaktivierung per Emaillink if (isset ($_GET['action']) && ($_GET['action'] == 'remove')) { $check_mail_query = xtc_db_query("select customers_email_address, mail_key from ".TABLE_NEWSLETTER_RECIPIENTS." where customers_email_address = '".xtc_db_input($_GET['email'])."' and mail_key = '".xtc_db_input($_GET['key'])."'"); if (!xtc_db_num_rows($check_mail_query)) { $info_message = TEXT_EMAIL_NOT_EXIST; } else { $check_mail = xtc_db_fetch_array($check_mail_query); if (!xtc_validate_password($check_mail['customers_email_address'], $_GET['key'])) { $info_message = TEXT_EMAIL_DEL_ERROR; } else { $del_query = xtc_db_query("delete from ".TABLE_NEWSLETTER_RECIPIENTS." where customers_email_address ='".xtc_db_input($_GET['email'])."' and mail_key = '".xtc_db_input($_GET['key'])."'"); $info_message = TEXT_EMAIL_DEL; } } } $breadcrumb->add(NAVBAR_TITLE_NEWSLETTER, xtc_href_link(FILENAME_NEWSLETTER, '', 'NONSSL')); require (DIR_WS_INCLUDES.'header.php'); $smarty->assign('VVIMG', 'Captcha'); $smarty->assign('text_newsletter', TEXT_NEWSLETTER); $smarty->assign('info_message', $info_message); $smarty->assign('FORM_ACTION', xtc_draw_form('sign', xtc_href_link(FILENAME_NEWSLETTER, 'action=process', 'NONSSL'))); $smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input($_POST['email']))); $smarty->assign('INPUT_CODE', xtc_draw_input_field('vvcode', '', 'size="6" maxlength="6"', 'text', false)); $smarty->assign('CHECK_INP', xtc_draw_radio_field('check', 'inp')); $smarty->assign('CHECK_DEL', xtc_draw_radio_field('check', 'del')); $smarty->assign('BUTTON_SEND', xtc_image_submit('button_send.gif', IMAGE_BUTTON_LOGIN)); $smarty->assign('FORM_END', ''); $smarty->assign('language', $_SESSION['language']); $smarty->caching = 0; $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/newsletter.html'); $smarty->assign('main_content', $main_content); $smarty->assign('language', $_SESSION['language']); $smarty->caching = 0; if (!defined(RM)) $smarty->load_filter('output', 'note'); $smarty->display(CURRENT_TEMPLATE.'/index.html'); include ('includes/application_bottom.php'); ?>