X-Git-Url: http://git.hcoop.net/clinton/MarylandElectronicPetitionSignature.git/blobdiff_plain/4379fae0eb5556d79f810f609893ed73064599b3..defa1cf8f303437931cdddc61d5c595f87df3c1e:/presign.php diff --git a/presign.php b/presign.php index cfba0cf..5237e89 100644 --- a/presign.php +++ b/presign.php @@ -1,4 +1,5 @@ query($q); + $d = mysqli_fetch_array($r,MYSQLI_ASSOC); + return $d['petition_name']; +} $signed_name_as = $petition->real_escape_string($_POST['signed_name_as']); $date_of_birth = $petition->real_escape_string($_COOKIE['pDOB']); $signed_name_as_circulator = $petition->real_escape_string($_POST['signed_name_as_circulator']); $contact_phone = $petition->real_escape_string($_COOKIE['pPHONE']); +$shared_email = $petition->real_escape_string($_COOKIE['email']); $signature_status = $petition->real_escape_string($_COOKIE['signature_status']); $bot_check = $petition->real_escape_string($_SERVER['HTTP_USER_AGENT']); +$VoterList_table = $petition->real_escape_string($_COOKIE['VoterList_table']); +$php_session_id = session_id(); +global $time_on_site; +if (empty($_COOKIE['start_time'])){ + setcookie("start_time", time()); + $time_on_site = 0; +}else{ + $now = time(); + $time_on_site = $now - $_COOKIE['start_time']; +} +$petition->query("insert into signatures (shared_email,VoterList_table,php_session_id,bot_check,VTRID,ip_address,date_of_birth,date_time_signed,just_date,petition_id,signed_name_as,signed_name_as_circulator,contact_phone,signature_status) +values ('$shared_email','$VoterList_table','$php_session_id','$bot_check','$VTRID','$ip','$date_of_birth',NOW(),NOW(),'$petition_id','$signed_name_as','$signed_name_as_circulator','$contact_phone','$signature_status')") or die(mysqli_error($petition)); + +$last = $petition->insert_id; -$petition->query("insert into signatures (bot_check,VTRID,ip_address,date_of_birth,date_time_signed,just_date,petition_id,signed_name_as,signed_name_as_circulator,contact_phone,signature_status) values ('$bot_check','$VTRID','$ip','$date_of_birth',NOW(),NOW(),'$petition_id','$signed_name_as','$signed_name_as_circulator','$contact_phone','$signature_status')") or die(mysqli_error($petition)); +$petition->query("update presign set presign_status = 'SIGNED' where php_session_id = '$php_session_id' and presign_status = 'NEW' "); if($petition_id == '' || $petition_id == '0'){ slack_general_admin("MISSING petition_id",'md-petition-signed'); echo "

AN ERROR HAS OCCURED - PLEASE TRY AGAIN HERE

"; die(); // do not clear invite!!! } -slack_general_admin("$signed_name_as Petition $petition_id",'md-petition-signed'); -$last = $petition->insert_id; + + +slack_general_admin("$signed_name_as ".id2petition($petition_id)." sig #".$last,'md-petition-signed'); setcookie("last", $last); setcookie("invite_used", $_COOKIE['invite']); setcookie("invite", ""); // clear invite + + + + $q="SELECT ip_address, petition_id,VTRID, COUNT(*) as count FROM signatures where signature_status = 'verified' group by ip_address, petition_id, VTRID"; $r = $petition->query($q); while($d = mysqli_fetch_array($r)){ if ($d['count'] > 1){ - $msg = "*ALERT* https://www.md-petition.com/admin/abuse.php?ip_address=$d[ip_address] https://www.md-petition.com/admin/abuse.php?VTRID=$d[VTRID] $d[petition_id] $d[count]"; + $msg = "*ALERT* https://www.md-petition.com/admin/analytics.php $d[ip_address] $d[VTRID] ".id2petition($d['petition_id'])." *$d[count]*"; slack_general_admin($msg,'md-petition-signed'); } } -header('Location: sign.php'); + +$q = "select exit_page from petitions where petition_id = '$petition_id'"; +$r = $petition->query($q); +$d = mysqli_fetch_array($r,MYSQLI_ASSOC); +if ($d['exit_page'] != ''){ + header('Location: '.$d['exit_page']); + die(); +} + +header('Location: sign.php?s='.$last); ?>