<?php
require_once('inc/db_connect.php');
require_once('session/checkuser.php');
function customer_has_email($customerno, $email)
{
$customerno = (int) $customerno;
$email = mysql_real_escape_string($email);
$result = db_query("SELECT NULL FROM kundendaten.kunden WHERE id=".$customerno." AND (email='{$email}' OR email_extern='{$email}' OR email_rechnung='{$email}');");
return (mysql_num_rows($result) > 0);
}
function validate_token($customerno, $token)
{
expire_tokens();
$customerno = (int) $customerno;
$token = mysql_real_escape_string($token);
$result = db_query("SELECT NULL FROM kundendaten.kunden WHERE id={$customerno} AND token='{$token}';");
return (mysql_num_rows($result) > 0);
}
function validate_uid_token($uid, $token)
{
expire_tokens();
$uid = (int) $uid;
$token = mysql_real_escape_string($token);
$result = db_query("SELECT NULL FROM system.usertoken WHERE uid={$uid} AND token='{$token}';");
return (mysql_num_rows($result) > 0);
}
function expire_tokens()
{
$expire = "1 DAY";