About
|
|
Author: FR
|
|
Credits:
|
|
|
Brookfresh, Brad Lawryk, Crogon, DaMysterious, EklipzeDesigns, ML, musashi, phpBB Group, phpBB-Auction-Team, php-styles, sanman, Tel, Vampy, wGEric
|
|
Supported Sites
|
|
Statistics
|
User:
|
16752
|
Posts:
|
18401
|
Latest User:
|
Basmacichoib
|
|
|
|
View previous topic :: View next topic |
Author |
Message |
snkenjoi Small-Cap Auctioneer

Joined: 18 Apr 2005 Posts: 1
|
|
Back to top |
|
 |
FR Site Admin

Joined: 26 Jan 2004 Posts: 1764 Location: root directory
|
Posted: Thu Apr 21, 2005 5:15 pm Post subject: |
|
|
Please try the following
OPEN auction_rating.php
FIND
Code: | // Get username
$sql = "SELECT username
FROM " . USERS_TABLE . "
WHERE user_id = " . $HTTP_GET_VARS[POST_USERS_URL];
|
REPLACE WITH
Code: | $user_id = ( isset($HTTP_GET_VARS[POST_USERS_URL]) );
$user_id = htmlspecialchars($user_id);
// Get username
$sql = "SELECT username
FROM " . USERS_TABLE . "
WHERE user_id = " . $user_id;
|
FIND
Code: | WHERE ur.FK_auction_offer_buyer_id = " . $HTTP_GET_VARS[POST_USERS_URL] . " AND
|
REPLACE WITH
Code: | WHERE ur.FK_auction_offer_buyer_id = " . $user_id . " AND
|
FIND
Code: | WHERE ur.FK_auction_offer_seller_id = " . $HTTP_GET_VARS[POST_USERS_URL] . " AND
|
REPLACE WITH
Code: | WHERE ur.FK_auction_offer_seller_id = " . $user_id . " AND
|
FIND
Code: | if ( $userdata['user_id'] == $HTTP_GET_VARS[POST_USERS_URL] )
|
REPLACE WITH
Code: | if ( $userdata['user_id'] == $user_id ) |
_________________ Want to say thank you. Use my Amazon Wishlist
Meet the world on movie-on.com
Last edited by FR on Thu Apr 21, 2005 5:28 pm; edited 2 times in total |
|
Back to top |
|
 |
FR Site Admin

Joined: 26 Jan 2004 Posts: 1764 Location: root directory
|
Posted: Thu Apr 21, 2005 5:20 pm Post subject: |
|
|
OPEN auction_offer
FIND
Code: | // check if user is logged in
if ($userdata['user_id']<0)
{
redirect("login.".$phpEx."?redirect=auction_offer.".$phpEx."?mode=add&" . POST_AUCTION_ROOM_URL . "=" . $HTTP_GET_VARS[POST_AUCTION_ROOM_URL]);
exit;
}
|
Replace with
Code: | $room_id = ( isset($HTTP_GET_VARS[POST_AUCTION_ROOM_URL]) );
$room_id = htmlspecialchars($room_id);
// check if user is logged in
if ($userdata['user_id']<0)
{
redirect("login.".$phpEx."?redirect=auction_offer.".$phpEx."?mode=add&" . POST_AUCTION_ROOM_URL . "=" . $room_id);
exit;
}
|
FIND
Code: | if ($row['PK_auction_room_id'] == $HTTP_GET_VARS[POST_AUCTION_ROOM_URL])
|
REPLACE WITH
Code: | if ($row['PK_auction_room_id'] == $room_id)
|
FIND
Code: | 'S_AUCTION_ADD_OFFER_ACTION' => append_sid("auction_offer.$phpEx?mode=create&" . POST_AUCTION_ROOM_URL . "=" . $HTTP_GET_VARS[POST_AUCTION_ROOM_URL])));
|
REPLACE WITH
Code: | 'S_AUCTION_ADD_OFFER_ACTION' => append_sid("auction_offer.$phpEx?mode=create&" . POST_AUCTION_ROOM_URL . "=" . $room_id)));
|
_________________ Want to say thank you. Use my Amazon Wishlist
Meet the world on movie-on.com |
|
Back to top |
|
 |
FR Site Admin

Joined: 26 Jan 2004 Posts: 1764 Location: root directory
|
Posted: Thu Apr 21, 2005 5:26 pm Post subject: |
|
|
Open auction_my_auctions.php
FIND
Code: |
$sql = "SELECT auction_watchlist_time
FROM " . AUCTION_WATCHLIST_TABLE . "
WHERE FK_auction_offer_id=". $HTTP_GET_VARS[POST_AUCTION_OFFER_URL] . " AND
FK_auction_user_id=" . $userdata['user_id'] . "";
|
REPLACE WITH
Code: | $offer_id = ( isset($HTTP_GET_VARS[POST_AUCTION_OFFER_URL]) );
$offer_id = htmlspecialchars($offer_id);
$sql = "SELECT auction_watchlist_time
FROM " . AUCTION_WATCHLIST_TABLE . "
WHERE FK_auction_offer_id=". $offer_id . " AND
FK_auction_user_id=" . $userdata['user_id'] . "";
|
FIND
Code: | $message = $lang['auction_watchlist_already_in'] . "<br /><br />" . sprintf($lang['Click_return_offer'], "<a href=\"" . append_sid("auction_offer_view.$phpEx?ao=" . $HTTP_GET_VARS[POST_AUCTION_OFFER_URL]) . "\">", "</a>") . "<br /><br />" . sprintf($lang['Click_return_auction_index'], "<a href=\"" . append_sid("auction.$phpEx") . "\">", "</a>");
|
REPLACE WITH
Code: | $message = $lang['auction_watchlist_already_in'] . "<br /><br />" . sprintf($lang['Click_return_offer'], "<a href=\"" . append_sid("auction_offer_view.$phpEx?ao=" . $offer_id) . "\">", "</a>") . "<br /><br />" . sprintf($lang['Click_return_auction_index'], "<a href=\"" . append_sid("auction.$phpEx") . "\">", "</a>");
|
FIND
Code: | VALUES (". $HTTP_GET_VARS[POST_AUCTION_OFFER_URL] . ",
|
REPLACE WITH
Code: | VALUES (". $offer_id . ",
|
FIND
Code: | $message = $lang['auction_watchlist_added_successful'] . "<br /><br />" . sprintf($lang['Click_return_offer'], "<a href=\"" . append_sid("auction_offer_view.$phpEx?ao=" . $HTTP_GET_VARS[POST_AUCTION_OFFER_URL]) . "\">", "</a>") . "<br /><br />" . sprintf($lang['Click_return_auction_index'], "<a href=\"" . append_sid("auction.$phpEx") . "\">", "</a>");
|
REPLACE WITH
Code: | $message = $lang['auction_watchlist_added_successful'] . "<br /><br />" . sprintf($lang['Click_return_offer'], "<a href=\"" . append_sid("auction_offer_view.$phpEx?ao=" . $offer_id) . "\">", "</a>") . "<br /><br />" . sprintf($lang['Click_return_auction_index'], "<a href=\"" . append_sid("auction.$phpEx") . "\">", "</a>");
|
FIND
Code: | $sql = "DELETE FROM " . AUCTION_WATCHLIST_TABLE . "
WHERE FK_auction_offer_id=". $HTTP_GET_VARS[POST_AUCTION_OFFER_URL] . " AND FK_auction_user_id=" . $userdata['user_id'] . "";
|
REPLACE WITH
Code: | $offer_id = ( isset(HTTP_GET_VARS[POST_AUCTION_OFFER_URL]) );
$offer_id = htmlspecialchars($offer_id);
$sql = "DELETE FROM " . AUCTION_WATCHLIST_TABLE . "
WHERE FK_auction_offer_id=". $offer_id . " AND FK_auction_user_id=" . $userdata['user_id'] . "";
|
_________________ Want to say thank you. Use my Amazon Wishlist
Meet the world on movie-on.com |
|
Back to top |
|
 |
|
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
|