https://bugs.cacert.org/view.php?id=827

changes submitted by Dirk Astrath on 10.10.2010 by email
(cherry picked from commit 066d7cbdcebe67345c61a958c5aa258eb5b14c18)

1 files changed, 32 insertions, 28 deletions

diff --git a/pages/wot/10.php b/pages/wot/10.php
index ccf8011..fefc84c 100644
--- a/pages/wot/10.php
+++ b/pages/wot/10.php
@@ -16,6 +16,8 @@
     Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
 */ ?>
 <?
+	$thawte = false;
+
 ?>
 <table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper">
   <tr>
@@ -23,13 +25,20 @@
   </tr>
   <tr>
 <?
-	$query = "SELECT COUNT(1) as `assurances` FROM `notary` WHERE `from`=".intval($_SESSION['profile']['id'])." AND `from` != `to`";
-	
+	$query = "SELECT `users`. *, count(*) AS `list` FROM `users`, `notary`
+			WHERE `users`.`id` = `notary`.`from` AND `notary`.`from` != `notary`.`to`
+			AND `from`='".intval($_SESSION['profile']['id'])."' GROUP BY `notary`.`from`";
 	$res = mysql_query($query);
 	$row = mysql_fetch_assoc($res);
-	$rc = intval($row['assurances']);
-
-	$query = "SELECT COUNT(1) FROM `notary` GROUP BY `from` HAVING COUNT(1) > {$rc}";
+	$rc = intval($row['list']);
+/*
+	$query = "SELECT `users`. *, count(*) AS `list` FROM `users`, `notary`
+			WHERE `users`.`id` = `notary`.`from` AND `notary`.`from` != `notary`.`to`
+			GROUP BY `notary`.`from` HAVING count(*) > '$rc' ORDER BY `notary`.`when` DESC";
+*/
+	$query = "SELECT count(*) AS `list` FROM `users` 
+			inner join `notary` on `users`.`id` = `notary`.`from` 
+			GROUP BY `notary`.`from` HAVING count(*) > '$rc'";
 
 	$rank = mysql_num_rows(mysql_query($query)) + 1;
 ?>
@@ -50,38 +59,32 @@
     <td class="DataTD"><b><?=_("Method")?></b></td>
   </tr>
 <?
-        $points = 0;
-        $query = "select sum(points) as apoints from `notary` where `from`='".intval($_SESSION['profile']['id'])."' and `from`=`to` ";
-        $res = mysql_query($query);
-	$row = mysql_fetch_assoc($res);
-
-	$maxpoints=intval($_SESSION['profile']['points'])-$row['apoints'];
-
-	$points = 0;
-	$query = "SELECT n.`id`, n.`date`, n.`awarded`, n.`from` as `from_id`, u.`fname` AS `from_fname`, u.`lname` AS `from_lname`, n.`location`, n.`method` FROM `notary` n LEFT JOIN `users` u ON n.`from`=u.`id` WHERE n.`to`=".intval($_SESSION['profile']['id'])." ORDER BY n.`when` DESC, n.`id` DESC";
+	$query = "select * from `notary` where `to`='".intval($_SESSION['profile']['id'])."'";
 	$res = mysql_query($query);
 	while($row = mysql_fetch_assoc($res))
 	{
-		$awarded = $row['awarded'];
-		if ($points+$awarded > $maxpoints)
-			$awarded = $maxpoints-$points;
-		$points = $points + $awarded;
+		$fromuser = mysql_fetch_assoc(mysql_query("select * from `users` where `id`='".intval($row['from'])."'"));
 ?>
   <tr>
     <td class="DataTD"><?=$row['id']?></td>
     <td class="DataTD"><?=$row['date']?></td>
-    <td class="DataTD"><a href="wot.php?id=9&amp;userid=<?=intval($row['from_id'])?>"><?=$row['from_fname']." ".$row['from_lname']?></td>
-    <td class="DataTD"><?=$awarded?></td>
+    <td class="DataTD"><a href="wot.php?id=9&amp;userid=<?=intval($row['from'])?>"><?=$fromuser['fname']." ".$fromuser['lname']?></td>
+    <td class="DataTD"><?=$row['points']?></td>
     <td class="DataTD"><?=$row['location']?></td>
     <td class="DataTD"><?=_(sprintf("%s", $row['method']))?></td>
   </tr>
-<? } ?>
-  <tr>
+<?
+  $thawte = ($row['method'] == "Thawte Points Transfer") or $thawte;
+} ?>
     <td class="DataTD" colspan="3"><b><?=_("Total Points")?>:</b></td>
     <td class="DataTD"><?=intval($_SESSION['profile']['points'])?></td>
     <td class="DataTD" colspan="2">&nbsp;</td>
   </tr>
 </table>
+<?
+if ($thawte)
+        echo "<br><strong style='color: red'>Your Thawte-Points will be revoked as of November 16, 2010. Please check new calculation <a href='/wot.php?id=15'></strong>here</a>";
+?>
 <br>
 <table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper">
   <tr>
@@ -97,22 +100,23 @@
   </tr>
 <?
 	$points = 0;
-	$query = "SELECT n.`id`, n.`date`, n.`awarded`, n.`location`, n.`method`, n.`to` AS `to_id`, u.`fname` AS `to_fname`, u.`lname` AS `to_lname` FROM `notary` n LEFT JOIN `users` u ON n.`to`=u.`id` WHERE n.`from`=".intval($_SESSION['profile']['id'])." AND n.`to`!=".intval($_SESSION['profile']['id'])." ORDER BY n.`when` DESC, n.`id` DESC";
+	$query = "select * from `notary` where `from`='".intval($_SESSION['profile']['id'])."' and `to`!='".intval($_SESSION['profile']['id'])."'";
 	$res = mysql_query($query);
 	while($row = mysql_fetch_assoc($res))
 	{
-		$points += $row['awarded'];
-		$name = trim($row['to_fname']." ".$row['to_lname']);
+		$fromuser = mysql_fetch_assoc(mysql_query("select * from `users` where `id`='".intval($row['to'])."'"));
+		$points += $row['points'];
+		$name = trim($fromuser['fname']." ".$fromuser['lname']);
 		if($name == "")
-			$name = '<i>'._("Deleted before Verification").'</i>';
+			$name = _("Deleted before Verification");
 		else
-			$name = "<a href='wot.php?id=9&amp;userid=".intval($row['to_id'])."'>$name</a>";
+			$name = "<a href='wot.php?id=9&amp;userid=".intval($row['to'])."'>$name</a>";
 ?>
   <tr>
     <td class="DataTD"><?=intval($row['id'])?></td>
     <td class="DataTD"><?=$row['date']?></td>
     <td class="DataTD"><?=$name?></td>
-    <td class="DataTD"><?=intval($row['awarded'])?></td>
+    <td class="DataTD"><?=intval($row['points'])?></td>
     <td class="DataTD"><?=$row['location']?></td>
     <td class="DataTD"><?=$row['method']==""?"":_(sprintf("%s", $row['method']))?></td>
   </tr>