|
|
@ -186,7 +186,7 @@
|
|
|
|
if($oldid == 6)
|
|
|
|
if($oldid == 6)
|
|
|
|
{
|
|
|
|
{
|
|
|
|
$max = maxpoints();
|
|
|
|
$max = maxpoints();
|
|
|
|
$newpoints = intval($_POST['points']);
|
|
|
|
$awarded = $newpoints = intval($_POST['points']);
|
|
|
|
if($newpoints > $max)
|
|
|
|
if($newpoints > $max)
|
|
|
|
$newpoints = $max;
|
|
|
|
$newpoints = $max;
|
|
|
|
$query = "select sum(`points`) as `total` from `notary` where `to`='".$_SESSION['_config']['notarise']['id']."' group by `to`";
|
|
|
|
$query = "select sum(`points`) as `total` from `notary` where `to`='".$_SESSION['_config']['notarise']['id']."' group by `to`";
|
|
|
@ -246,7 +246,7 @@
|
|
|
|
|
|
|
|
|
|
|
|
$query = "insert into `notary` set `from`='".$_SESSION['profile']['id']."',
|
|
|
|
$query = "insert into `notary` set `from`='".$_SESSION['profile']['id']."',
|
|
|
|
`to`='".$_SESSION['_config']['notarise']['id']."',
|
|
|
|
`to`='".$_SESSION['_config']['notarise']['id']."',
|
|
|
|
`points`='$newpoints',
|
|
|
|
`points`='$newpoints', `awardeded`='$awarded',
|
|
|
|
`location`='".mysql_escape_string(stripslashes($_POST['location']))."',
|
|
|
|
`location`='".mysql_escape_string(stripslashes($_POST['location']))."',
|
|
|
|
`date`='".mysql_escape_string(stripslashes($_POST['date']))."',
|
|
|
|
`date`='".mysql_escape_string(stripslashes($_POST['date']))."',
|
|
|
|
`when`=NOW()";
|
|
|
|
`when`=NOW()";
|
|
|
@ -270,7 +270,7 @@
|
|
|
|
$addpoints = 1;
|
|
|
|
$addpoints = 1;
|
|
|
|
$query = "insert into `notary` set `from`='".$_SESSION['profile']['id']."',
|
|
|
|
$query = "insert into `notary` set `from`='".$_SESSION['profile']['id']."',
|
|
|
|
`to`='".$_SESSION['profile']['id']."',
|
|
|
|
`to`='".$_SESSION['profile']['id']."',
|
|
|
|
`points`='$addpoints',
|
|
|
|
`points`='$addpoints', `awarded`='$addpoints',
|
|
|
|
`location`='".mysql_escape_string(stripslashes($_POST['location']))."',
|
|
|
|
`location`='".mysql_escape_string(stripslashes($_POST['location']))."',
|
|
|
|
`date`='".mysql_escape_string(stripslashes($_POST['date']))."',
|
|
|
|
`date`='".mysql_escape_string(stripslashes($_POST['date']))."',
|
|
|
|
`method`='Administrative Increase',
|
|
|
|
`method`='Administrative Increase',
|
|
|
|