affiliate.php | searchcode

/catalog/model/affiliate/affiliate.php

https://gitlab.com/dadangnh/sb1-bon
PHP | 180 lines | 133 code | 45 blank | 2 comment | 10 complexity | ae5621deff68f1b08f2d97f6a2ca132f MD5 | raw file

<?php

class ModelAffiliateAffiliate extends Model {

	public function addAffiliate($data) {

		$this->db->query("INSERT INTO " . DB_PREFIX . "affiliate SET firstname = '" . $this->db->escape($data['firstname']) . "', lastname = '" . $this->db->escape($data['lastname']) . "', email = '" . $this->db->escape($data['email']) . "', telephone = '" . $this->db->escape($data['telephone']) . "', fax = '" . $this->db->escape($data['fax']) . "', salt = '" . $this->db->escape($salt = token(9)) . "', password = '" . $this->db->escape(sha1($salt . sha1($salt . sha1($data['password'])))) . "', company = '" . $this->db->escape($data['company']) . "', website = '" . $this->db->escape($data['website']) . "', address_1 = '" . $this->db->escape($data['address_1']) . "', address_2 = '" . $this->db->escape($data['address_2']) . "', city = '" . $this->db->escape($data['city']) . "', postcode = '" . $this->db->escape($data['postcode']) . "', country_id = '" . (int)$data['country_id'] . "', zone_id = '" . (int)$data['zone_id'] . "', code = '" . $this->db->escape(uniqid()) . "', commission = '" . (float)$this->config->get('config_affiliate_commission') . "', tax = '" . $this->db->escape($data['tax']) . "', payment = '" . $this->db->escape($data['payment']) . "', cheque = '" . $this->db->escape($data['cheque']) . "', paypal = '" . $this->db->escape($data['paypal']) . "', bank_name = '" . $this->db->escape($data['bank_name']) . "', bank_branch_number = '" . $this->db->escape($data['bank_branch_number']) . "', bank_swift_code = '" . $this->db->escape($data['bank_swift_code']) . "', bank_account_name = '" . $this->db->escape($data['bank_account_name']) . "', bank_account_number = '" . $this->db->escape($data['bank_account_number']) . "', status = '1', approved = '" . (int)!$this->config->get('config_affiliate_approval') . "', date_added = NOW()");



		$affiliate_id = $this->db->getLastId();



		$this->load->language('mail/affiliate');



		$subject = sprintf($this->language->get('text_subject'), html_entity_decode($this->config->get('config_name'), ENT_QUOTES, 'UTF-8'));



		$message  = sprintf($this->language->get('text_welcome'), html_entity_decode($this->config->get('config_name'), ENT_QUOTES, 'UTF-8')) . "\n\n";



		if (!$this->config->get('config_affiliate_approval')) {

			$message .= $this->language->get('text_login') . "\n";

		} else {

			$message .= $this->language->get('text_approval') . "\n";

		}



		$message .= $this->url->link('affiliate/login', '', true) . "\n\n";

		$message .= $this->language->get('text_services') . "\n\n";

		$message .= $this->language->get('text_thanks') . "\n";

		$message .= html_entity_decode($this->config->get('config_name'), ENT_QUOTES, 'UTF-8');



		$mail = new Mail();

		$mail->protocol = $this->config->get('config_mail_protocol');

		$mail->parameter = $this->config->get('config_mail_parameter');

		$mail->smtp_hostname = $this->config->get('config_mail_smtp_hostname');

		$mail->smtp_username = $this->config->get('config_mail_smtp_username');

		$mail->smtp_password = html_entity_decode($this->config->get('config_mail_smtp_password'), ENT_QUOTES, 'UTF-8');

		$mail->smtp_port = $this->config->get('config_mail_smtp_port');

		$mail->smtp_timeout = $this->config->get('config_mail_smtp_timeout');



		$mail->setTo($this->request->post['email']);

		$mail->setFrom($this->config->get('config_email'));

		$mail->setSender(html_entity_decode($this->config->get('config_name'), ENT_QUOTES, 'UTF-8'));

		$mail->setSubject($subject);

		$mail->setText($message);

		$mail->send();



		// Send to main admin email if new affiliate email is enabled

		if (in_array('affiliate', (array)$this->config->get('config_mail_alert'))) {

			$message  = $this->language->get('text_signup') . "\n\n";

			$message .= $this->language->get('text_store') . ' ' . html_entity_decode($this->config->get('config_name'), ENT_QUOTES, 'UTF-8') . "\n";

			$message .= $this->language->get('text_firstname') . ' ' . $data['firstname'] . "\n";

			$message .= $this->language->get('text_lastname') . ' ' . $data['lastname'] . "\n";



			if ($data['website']) {

				$message .= $this->language->get('text_website') . ' ' . $data['website'] . "\n";

			}



			if ($data['company']) {

				$message .= $this->language->get('text_company') . ' '  . $data['company'] . "\n";

			}



			$message .= $this->language->get('text_email') . ' '  .  $data['email'] . "\n";

			$message .= $this->language->get('text_telephone') . ' ' . $data['telephone'] . "\n";



			$mail->setTo($this->config->get('config_email'));

			$mail->setSubject(html_entity_decode($this->language->get('text_new_affiliate'), ENT_QUOTES, 'UTF-8'));

			$mail->setText($message);

			$mail->send();



			// Send to additional alert emails if new affiliate email is enabled

			$emails = explode(',', $this->config->get('config_alert_email'));



			foreach ($emails as $email) {

				if (utf8_strlen($email) > 0 && filter_var($email, FILTER_VALIDATE_EMAIL)) {

					$mail->setTo($email);

					$mail->send();

				}

			}

		}



		return $affiliate_id;

	}



	public function editAffiliate($data) {

		$affiliate_id = $this->affiliate->getId();



		$this->db->query("UPDATE " . DB_PREFIX . "affiliate SET firstname = '" . $this->db->escape($data['firstname']) . "', lastname = '" . $this->db->escape($data['lastname']) . "', email = '" . $this->db->escape($data['email']) . "', telephone = '" . $this->db->escape($data['telephone']) . "', fax = '" . $this->db->escape($data['fax']) . "', company = '" . $this->db->escape($data['company']) . "', website = '" . $this->db->escape($data['website']) . "', address_1 = '" . $this->db->escape($data['address_1']) . "', address_2 = '" . $this->db->escape($data['address_2']) . "', city = '" . $this->db->escape($data['city']) . "', postcode = '" . $this->db->escape($data['postcode']) . "', country_id = '" . (int)$data['country_id'] . "', zone_id = '" . (int)$data['zone_id'] . "' WHERE affiliate_id = '" . (int)$affiliate_id . "'");

	}



	public function editPayment($data) {

		$affiliate_id = $this->affiliate->getId();



		$this->db->query("UPDATE " . DB_PREFIX . "affiliate SET tax = '" . $this->db->escape($data['tax']) . "', payment = '" . $this->db->escape($data['payment']) . "', cheque = '" . $this->db->escape($data['cheque']) . "', paypal = '" . $this->db->escape($data['paypal']) . "', bank_name = '" . $this->db->escape($data['bank_name']) . "', bank_branch_number = '" . $this->db->escape($data['bank_branch_number']) . "', bank_swift_code = '" . $this->db->escape($data['bank_swift_code']) . "', bank_account_name = '" . $this->db->escape($data['bank_account_name']) . "', bank_account_number = '" . $this->db->escape($data['bank_account_number']) . "' WHERE affiliate_id = '" . (int)$affiliate_id . "'");

	}



	public function editPassword($email, $password) {

		$this->db->query("UPDATE " . DB_PREFIX . "affiliate SET salt = '" . $this->db->escape($salt = token(9)) . "', password = '" . $this->db->escape(sha1($salt . sha1($salt . sha1($password)))) . "' WHERE LOWER(email) = '" . $this->db->escape(utf8_strtolower($email)) . "'");

	}



	public function getAffiliate($affiliate_id) {

		$query = $this->db->query("SELECT * FROM " . DB_PREFIX . "affiliate WHERE affiliate_id = '" . (int)$affiliate_id . "'");



		return $query->row;

	}



	public function getAffiliateByEmail($email) {

		$query = $this->db->query("SELECT * FROM " . DB_PREFIX . "affiliate WHERE LOWER(email) = '" . $this->db->escape(utf8_strtolower($email)) . "'");



		return $query->row;

	}



	public function getAffiliateByCode($code) {

		$query = $this->db->query("SELECT * FROM " . DB_PREFIX . "affiliate WHERE code = '" . $this->db->escape($code) . "'");



		return $query->row;

	}



	public function getTotalAffiliatesByEmail($email) {

		$query = $this->db->query("SELECT COUNT(*) AS total FROM " . DB_PREFIX . "affiliate WHERE LOWER(email) = '" . $this->db->escape(utf8_strtolower($email)) . "'");



		return $query->row['total'];

	}



	public function addTransaction($affiliate_id, $amount = '', $order_id = 0) {

		$affiliate_info = $this->getAffiliate($affiliate_id);



		if ($affiliate_info) {

			$this->load->language('mail/affiliate');



			$this->db->query("INSERT INTO " . DB_PREFIX . "affiliate_transaction SET affiliate_id = '" . (int)$affiliate_id . "', order_id = '" . (float)$order_id . "', description = '" . $this->db->escape($this->language->get('text_order_id') . ' #' . $order_id) . "', amount = '" . (float)$amount . "', date_added = NOW()");



			$affiliate_transaction_id = $this->db->getLastId();



			$message  = sprintf($this->language->get('text_transaction_received'), $this->currency->format($amount, $this->config->get('config_currency'))) . "\n\n";

			$message .= sprintf($this->language->get('text_transaction_total'), $this->currency->format($this->getTransactionTotal($affiliate_id), $this->config->get('config_currency')));



			$mail = new Mail();

			$mail->protocol = $this->config->get('config_mail_protocol');

			$mail->parameter = $this->config->get('config_mail_parameter');

			$mail->smtp_hostname = $this->config->get('config_mail_smtp_hostname');

			$mail->smtp_username = $this->config->get('config_mail_smtp_username');

			$mail->smtp_password = html_entity_decode($this->config->get('config_mail_smtp_password'), ENT_QUOTES, 'UTF-8');

			$mail->smtp_port = $this->config->get('config_mail_smtp_port');

			$mail->smtp_timeout = $this->config->get('config_mail_smtp_timeout');



			$mail->setTo($affiliate_info['email']);

			$mail->setFrom($this->config->get('config_email'));

			$mail->setSender(html_entity_decode($this->config->get('config_name'), ENT_QUOTES, 'UTF-8'));

			$mail->setSubject(sprintf($this->language->get('text_transaction_subject'), html_entity_decode($this->config->get('config_name'), ENT_QUOTES, 'UTF-8')));

			$mail->setText($message);

			$mail->send();



			return $affiliate_transaction_id;

		}

	}



	public function deleteTransaction($order_id) {

		$this->db->query("DELETE FROM " . DB_PREFIX . "affiliate_transaction WHERE order_id = '" . (int)$order_id . "'");

	}



	public function getTransactionTotal($affiliate_id) {

		$query = $this->db->query("SELECT SUM(amount) AS total FROM " . DB_PREFIX . "affiliate_transaction WHERE affiliate_id = '" . (int)$affiliate_id . "'");



		return $query->row['total'];

	}

	

	public function addLoginAttempt($email) {

		$query = $this->db->query("SELECT * FROM " . DB_PREFIX . "affiliate_login WHERE email = '" . $this->db->escape(utf8_strtolower((string)$email)) . "' AND ip = '" . $this->db->escape($this->request->server['REMOTE_ADDR']) . "'");



		if (!$query->num_rows) {

			$this->db->query("INSERT INTO " . DB_PREFIX . "affiliate_login SET email = '" . $this->db->escape(utf8_strtolower((string)$email)) . "', ip = '" . $this->db->escape($this->request->server['REMOTE_ADDR']) . "', total = 1, date_added = '" . $this->db->escape(date('Y-m-d H:i:s')) . "', date_modified = '" . $this->db->escape(date('Y-m-d H:i:s')) . "'");

		} else {

			$this->db->query("UPDATE " . DB_PREFIX . "affiliate_login SET total = (total + 1), date_modified = '" . $this->db->escape(date('Y-m-d H:i:s')) . "' WHERE affiliate_login_id = '" . (int)$query->row['affiliate_login_id'] . "'");

		}

	}



	public function getLoginAttempts($email) {

		$query = $this->db->query("SELECT * FROM `" . DB_PREFIX . "affiliate_login` WHERE email = '" . $this->db->escape(utf8_strtolower($email)) . "'");



		return $query->row;

	}



	public function deleteLoginAttempts($email) {

		$this->db->query("DELETE FROM `" . DB_PREFIX . "affiliate_login` WHERE email = '" . $this->db->escape(utf8_strtolower($email)) . "'");

	}	

}