spam
return true;
}
if($time - $_POST['time'] > 12 * 3600){ // user needed more than 12 hours to fill the form -> spam
return true;
}
// check baits
if(!empty($_POST['email'])){
return true;
}
if(!empty($_POST['url'])){
return true;
}
return false;
}
/** prints the contact form
* @return string
*/
//----------------------------------------
function printForm(){
//----------------------------------------
global $errors;
$f = new Template(TEMPLATE_DIR."subparts/contact_lms.html");
$f->removeBlock("SUCCESS");
$f->removeBlock("SPAM");
$f->setVar("ACTION", getCurrentUrl());
if(sizeof($errors) > 0){
$e = "FEHLER:
";
foreach($errors as $i){
$e .= "- $i
";
}
$e .= "
";
$f->setVar("ERRORS", $e);
}
else{
$f->setVar("ERRORS", " ");
}
if($_POST['gender'] == "Frau"){
$f->setVar("GENDER_F", "selected=\"selected\"");
$f->setVar("GENDER_M", "");
}
else{
$f->setVar("GENDER_M", "selected=\"selected\"");
$f->setVar("GENDER_F", "");
}
if(isset($_POST['info'])){
$f->setVar("INFO", "checked=\"checked\"");
}
else{
$f->setVar("INFO", "");
}
$f->setVar("FIRSTNAME", $_POST['firstname']);
$f->setVar("SURNAME", $_POST['surname']);
$f->setVar("STREET", $_POST['street']);
$f->setVar("ZIP", $_POST['zip']);
$f->setVar("CITY", $_POST['city']);
$f->setVar("PHONE", $_POST['phone']);
$f->setVar("MAIL", $_POST['mail']);
$f->setVar("TEXT", $_POST['text']);
$f->setVar("TIME", time());
if ($_GET['id'] == 60) {
$f->setVar("KULTURHAUS_SELECTED", 'selected="selected"');
$f->setVar("LMS_SELECTED", '');
}
else {
$f->setVar("LMS_SELECTED", 'selected="selected"');
$f->setVar("KULTURHAUS_SELECTED", '');
}
return $f->toString();
}
/** prints the success view
* @return string
*/
//------------------------------------------
function printSuccess(){
//------------------------------------------
$f = new Template(TEMPLATE_DIR."subparts/contact_lms.html");
$f->removeBlock("FORM");
$f->removeBlock("SPAM");
return $f->toString();
}
/** prints the spam view
* @return string
*/
//------------------------------------------
function printSpam(){
//------------------------------------------
$f = new Template(TEMPLATE_DIR."subparts/contact_lms.html");
$f->removeBlock("FORM");
$f->removeBlock("SUCCESS");
return $f->toString();
}
/** sends the form data via e-mail
*/
//------------------------------------------
function send(){
//------------------------------------------
$to = "kulturhaus@bruckmuehle.at";
if(isset($_POST['to'])) {
$to = $_POST['to'];
}
$subject = "Kontaktformular bruckmuehle.at";
$headers = "From: kulturhaus@bruckmuehle.at\r\n";
$headers .= "Content-Type: text/plain; charset=\"utf-8\"\r\n";
$body = "Folgende Daten wurden im Kontaktformular ausgefüllt:\n\n";
$body .= "Anrede: $_POST[gender]\n";
$body .= "Vorname: $_POST[firstname]\n";
$body .= "Nachname: $_POST[surname]\n";
$body .= "Stra�e: $_POST[street]\n";
$body .= "PLZ: $_POST[zip]\n";
$body .= "Ort: $_POST[city]\n";
$body .= "Telefon: $_POST[phone]\n";
$body .= "E-Mail: $_POST[mail]\n";
$body .= "Anfrage: " . stripslashes($_POST['text']);
@mail($to, $subject, $body, $headers);
#@mail("contact@mlenzelbauer.at", "Kopie: $subject", $body, $headers);
}
/** saves the customer data to the database
*/
//--------------------------------------------
function saveToDatabase(){
//--------------------------------------------
if (empty($_POST['mail'])) {
return;
}
$query = sprintf("SELECT * FROM bruckm_ticketcustomer WHERE email = %s LIMIT 1", sqlstring($_POST['mail']));
$result = dbQuery($query);
if (mysql_num_rows($result) > 0) {
return;
}
$gender = "m";
if ($_POST['gender'] == "Frau") {
$gender = "f";
}
$newsletter = "false";
if ($_POST['info']) {
$newsletter = "true";
}
$query = sprintf("INSERT INTO bruckm_ticketcustomer (firstname, surname, email, address, zip, city, gender, phone, creationDate, newsletter, info, loose)
VALUES (%s, %s, %s, %s, %d, %s, %s, %s, NOW(), %s, %s, 'true')",
sqlstring($_POST['firstname']),
sqlstring($_POST['surname']),
sqlstring($_POST['mail']),
sqlstring($_POST['street']),
sqlnum($_POST['zip']),
sqlstring($_POST['city']),
sqlstring($gender),
sqlstring($_POST['phone']),
sqlstring($newsletter),
sqlstring($newsletter));
dbQuery($query);
}
/** converts the $_POST value to "ja" or "nein"
* @param value checkbox value
* @return "ja" or "nein"
*/
//--------------------------------------------
function yesOrNo($value){
//--------------------------------------------
if(isset($value) && !empty($value)){
return "ja";
}
return "nein";
}
?>