Changeset 626094

Timestamp:

11/16/2012 12:05:52 PM (12 years ago)

Author:

lauweijie7715

Message:

version 3.2

Location:

cubepoints/trunk

Files:

• cp_admin_add_points.php (modified) (3 diffs)
• cp_admin_manage.php (modified) (1 diff)
• cp_widgets.php (modified) (1 diff)
• cubepoints.php (modified) (2 diffs)
• modules/backup.php (modified) (1 diff)
• modules/custom_points.php (modified) (1 diff)
• modules/donate/donate.js (modified) (1 diff)
• modules/donate/donate.php (modified) (4 diffs)
• modules/my_points.php (modified) (2 diffs)
• modules/paid_content.php (modified) (1 diff)
• modules/paypal/paypal.php (modified) (6 diffs)
• modules/ranks.php (modified) (1 diff)
• modules/reset.php (modified) (1 diff)
• modules/youtube/youtube.php (modified) (1 diff)
• readme.txt (modified) (3 diffs)

cubepoints/trunk/cp_admin_add_points.php

@@ -59 +59 @@
         });
         jQuery("#cp_add_points_user").autocomplete({
-            url: "<?php echo bloginfo('url').'/wp-admin/admin-ajax.php'; ?>",
+            url: ajaxurl,
             extraParams: { action: 'cp_add_points_user_suggest' },
             matchSubset: 0,
@@ -91 +91 @@
             }
             this.cp_add_points_ajax_query = jQuery.ajax({
-                url: "<?php echo bloginfo('url').'/wp-admin/admin-ajax.php'; ?>",
+                url: ajaxurl,
                 data: { 'q': q, 'action': 'cp_add_points_user_query' },
                 cache: false,
@@ -154 +154 @@
                 jQuery('#cp_add_points_loading').show(100);
                 this.cp_add_points_ajax_query = jQuery.ajax({
-                    url: "<?php echo bloginfo('url').'/wp-admin/admin-ajax.php'; ?>",
+                    url: ajaxurl,
                     type: "POST",
                     data: { 'id': id, 'points': points, 'description': description, 'action': 'cp_add_points_user_update' },

cubepoints/trunk/cp_admin_manage.php

@@ -71 +71 @@
 
                 jQuery.post(
-                    '<?php echo bloginfo('url').'/wp-admin/admin-ajax.php'; ?>', 
+                    ajaxurl, 
                     { 
                         action: 'cp_manage_form_submit',

cubepoints/trunk/cp_widgets.php

@@ -4 +4 @@
  */
 
-add_action('widgets_init', 'cp_widgets');
-
-function cp_widgets(){
-
-    /** CubePoints Widget */
-    class cp_pointsWidget extends WP_Widget {
-     
-        // constructor
-        function cp_pointsWidget() {
-            parent::WP_Widget('cp_pointsWidget', 'CubePoints', array('description' => 'Display the points of the current logged in user.'));    
-        }
-     
-        // widget main
-        function widget($args, $instance) {
-            extract($args, EXTR_SKIP);
-            if (!(!is_user_logged_in()&&$instance['text_alt']=='')) {
+/** CubePoints Points Widget declaration */
+class cp_pointsWidget extends WP_Widget {
+ 
+    // constructor
+    function cp_pointsWidget() {
+        parent::WP_Widget('cp_pointsWidget', 'CubePoints', array('description' => 'Display the points of the current logged in user.'));    
+    }
+ 
+    // widget main
+    function widget($args, $instance) {
+        extract($args, EXTR_SKIP);
+        if (!(!is_user_logged_in() && $instance['text_alt']=='')) {
             echo $before_widget;
             $title = empty($instance['title']) ? ' ' : apply_filters('widget_title', $instance['title']);
             if ( !empty( $title ) ) { echo $before_title . $title . $after_title; };
-            if(is_user_logged_in()) {
+            if (is_user_logged_in()) {
+                // Set default text, in case something messes up and resets the text to display to be null
+                if($instance['text'] == '') {
+                    $instance['text'] = 'Points: %points%';
+                }
                 $string = str_replace('%points%', '<span class="cp_points_display">'.cp_displayPoints(0,1,1).'</span>', $instance['text']);
-            }
-            else{
+            } else {
                 $string = $instance['text_alt'];
             }
+            
+            //start output
+            do_action('cp_pointsWidget_before');
+            if($instance['html']==''){
             ?>
-            <?php do_action('cp_pointsWidget_before'); ?>
-            <?php if($instance['html']==''){ ?>
-            <ul>
-                    <li><?php echo $string; ?></li>
-                    <?php do_action('cp_pointsWidget'); ?>
-            </ul>
+                <ul>
+                        <li><?php echo $string; ?></li>
+                        <?php do_action('cp_pointsWidget'); ?>
+                </ul>
             <?php
             } else { 
                 echo str_replace('%text%',$string,$instance['html']);
             }
-            ?>
-            <?php do_action('cp_pointsWidget_after'); ?>
-            <?php
+            do_action('cp_pointsWidget_after');
             echo $after_widget;
-            }
-        }
-     
-        // widget settings update
-        function update($new_instance, $old_instance) {
-            $instance = $old_instance;
-            $instance['title'] = strip_tags($new_instance['title']);
-            $instance['text'] = trim($new_instance['text']);
-            $instance['text_alt'] = trim($new_instance['text_alt']);
-            $instance['html'] = trim($new_instance['html']);
-            return $instance;
-        }
-     
-        // widget settings form
-        function form($instance) {
-            $default =  array( 'title' => __('My Points', 'cp') , 'text' => __('Points', 'cp') . ': %points%' , 'text_alt' => __('You need to be logged in to view your points.', 'cp'), 'advanced' => '' );
-            $instance = wp_parse_args( (array) $instance, $default );
-     
-            $field = 'title';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('Title', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
-            
-            $field = 'text';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('Text', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
-            
-            echo "\r\n".'<small><strong>'.__('Note', 'cp').':</strong> '.__('%points% would be replaced with the points of the logged in user', 'cp').'</small><br /><br />';
-            
-            $field = 'text_alt';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('Text if user not logged in', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
-            
-            echo "\r\n".'<small><strong>'.__('Note', 'cp').':</strong> '.__('Leave this field blank to hide the widget if no user is logged in', 'cp').'</small><br /><br />';
-            
-            $field = 'html';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-      if ( !isset($instance[$field]) ) $instance[$field] = '';
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('HTML Code (advanced)', 'cp').': <textarea class="widefat" id="'.$field_id.'" name="'.$field_name.'" >'.esc_attr( $instance[$field] ).'</textarea><label></p>';
-
-            echo "\r\n".'<small><strong>'.__('Note', 'cp').':</strong> '.__('This field should be left blank for most users! You may use this field to customize the appearance of this widget.', 'cp').'<br /><br /><strong>'.__('Shortcode', 'cp').':</strong> %text%</small>';
-            
         }
     }
-    // register widget
+ 
+    // widget settings update
+    function update($new_instance, $old_instance) {
+        $instance = $old_instance;
+        $instance['title'] = strip_tags($new_instance['title']);
+        $instance['text'] = trim($new_instance['text']);
+        $instance['text_alt'] = trim($new_instance['text_alt']);
+        $instance['html'] = trim($new_instance['html']);
+        return $instance;
+    }
+ 
+    // widget settings form
+    function form($instance) {
+        $default =  array( 'title' => __('My Points', 'cp') , 'text' => __('Points', 'cp') . ': %points%' , 'text_alt' => __('You need to be logged in to view your points.', 'cp'), 'advanced' => '' );
+        $instance = wp_parse_args( (array) $instance, $default );
+ 
+        $field = 'title';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('Title', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
+        
+        $field = 'text';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('Text', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
+        
+        echo "\r\n".'<small><strong>'.__('Note', 'cp').':</strong> '.__('%points% would be replaced with the points of the logged in user', 'cp').'</small><br /><br />';
+        
+        $field = 'text_alt';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('Text if user not logged in', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
+        
+        echo "\r\n".'<small><strong>'.__('Note', 'cp').':</strong> '.__('Leave this field blank to hide the widget if no user is logged in', 'cp').'</small><br /><br />';
+        
+        $field = 'html';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        if ( !isset($instance[$field]) ) $instance[$field] = '';
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('HTML Code (advanced)', 'cp').': <textarea class="widefat" id="'.$field_id.'" name="'.$field_name.'" >'.esc_attr( $instance[$field] ).'</textarea><label></p>';
+
+        echo "\r\n".'<small><strong>'.__('Note', 'cp').':</strong> '.__('This field should be left blank for most users! You may use this field to customize the appearance of this widget.', 'cp').'<br /><br /><strong>'.__('Shortcode', 'cp').':</strong> %text%</small>';
+    }
+}
+
+/** CubePoints Top Users Widget */
+class cp_topUsersWidget extends WP_Widget {
+ 
+    // constructor
+    function cp_topUsersWidget() {
+        parent::WP_Widget('cp_topUsersWidget', 'CubePoints Top Users', array('description' => 'Use this widget to showcase the users with the most points.'));  
+    }
+ 
+    // widget main
+    function widget($args, $instance) {
+        extract($args, EXTR_SKIP);
+        echo $before_widget;
+        $title = empty($instance['title']) ? '&nbsp;' : apply_filters('widget_title', $instance['title']);
+        if ( !empty( $title ) ) { echo $before_title . $title . $after_title; };
+
+        //set default values
+        if($instance['num'] == '' || $instance['num'] == 0) { $instance['num'] = 1; }
+        if($instance['text'] == '') { $instance['text'] = '%user% (%points%)';}
+
+        $top = cp_getAllPoints($instance['num'],get_option('cp_topfilter'));
+        do_action('cp_topUsersWidget_before');
+        echo apply_filters('cp_topUsersWidget_before','<ul>');
+        $line = apply_filters('cp_topUsersWidget_line','<li class="cp_topUsersWidget top_%place%" style="%style%">%string%</li>');
+        $line = str_replace('%style%', $instance['style'], $line);
+        foreach($top as $x=>$y){
+            $user = get_userdata($y['id']);
+            $string = str_replace('%string%', '', $instance['text']);
+            $string = str_replace('%string%',$string,$line);
+            $string = apply_filters('cp_displayUserInfo',$string,$y,$x+1);
+            echo $string;
+        }
+        echo apply_filters('cp_topUsersWidget_after','</ul>');
+        do_action('cp_topUsersWidget_after');
+        echo $after_widget;
+    }
+ 
+    // widget settings update
+    function update($new_instance, $old_instance) {
+        $instance = $old_instance;
+        $instance['title'] = strip_tags($new_instance['title']);
+        $instance['num'] = ((int) $new_instance['num'] > 0 ) ? (int) $new_instance['num'] : 1 ;
+        $instance['text'] = trim($new_instance['text']);
+        $instance['style'] = trim($new_instance['style']);
+        return $instance;
+    }
+ 
+    // widget settings form
+    function form($instance) {
+        $default =  array( 'title' => __('Top Users', 'cp') , 'num' => 3 , 'text' => '%user% (%points%)', 'style' => 'list-style:none;' );
+        $instance = wp_parse_args( (array) $instance, $default );
+ 
+        $field = 'title';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('Title', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
+        
+        $field = 'num';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('Number of top users to show', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
+        
+        $field = 'text';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('Text', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
+
+        echo "\r\n".'<small><strong>'.__('Shortcodes', 'cp') . ':</strong><br />';
+        echo __('Number of points', 'cp') . ' - %points%' . '<br />';
+        echo __('Points (number only)', 'cp') . ' - %npoints%' . '<br />';
+        echo __('User display name', 'cp') . ' - %username%' . '<br />';
+        echo __('User login ID', 'cp') . ' - %user%' . '<br />';
+        echo __('User ID', 'cp') . ' - %userid%' . '<br />';
+        echo __('User ranking', 'cp') . ' - %place%' . '<br />';
+        echo __('Email MD5 hash', 'cp') . ' - %emailhash%' . '<br />';
+        echo '<br /></small>';
+        
+        $field = 'style';
+        $field_id = $this->get_field_id($field);
+        $field_name = $this->get_field_name($field);
+        echo "\r\n".'<p><label for="'.$field_id.'">'.__('Style', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
+        echo "\r\n".'<small><strong>'.__('Note', 'cp') . ':</strong> '.__('This adds the following style to the list element. Shortcodes from above may be used here. The %emailhash% shortcode, for example, could be used to display gravatars.', 'cp').'</small><br />';
+    }
+}
+
+add_action('widgets_init', 'cp_widgets');
+
+function cp_widgets(){  
+    // register points widget
     register_widget("cp_pointsWidget");
 
-    
-    /** CubePoints Top Users Widget */
-    class cp_topUsersWidget extends WP_Widget {
-     
-        // constructor
-        function cp_topUsersWidget() {
-            parent::WP_Widget('cp_topUsersWidget', 'CubePoints Top Users', array('description' => 'Use this widget to showcase the users with the most points.'));  
-        }
-     
-        // widget main
-        function widget($args, $instance) {
-            extract($args, EXTR_SKIP);
-            echo $before_widget;
-            $title = empty($instance['title']) ? '&nbsp;' : apply_filters('widget_title', $instance['title']);
-            if ( !empty( $title ) ) { echo $before_title . $title . $after_title; };
-            $top = cp_getAllPoints($instance['num'],get_option('cp_topfilter'));
-            do_action('cp_topUsersWidget_before');
-            echo apply_filters('cp_topUsersWidget_before','<ul>');
-            $line = apply_filters('cp_topUsersWidget_line','<li class="cp_topUsersWidget top_%place%" style="%style%">%string%</li>');
-            $line = str_replace('%style%', $instance['style'], $line);
-            foreach($top as $x=>$y){
-                $user = get_userdata($y['id']);
-                $string = str_replace('%string%', '', $instance['text']);
-                $string = str_replace('%string%',$string,$line);
-                $string = apply_filters('cp_displayUserInfo',$string,$y,$x+1);
-                echo $string;
-            }
-            echo apply_filters('cp_topUsersWidget_after','</ul>');
-            do_action('cp_topUsersWidget_after');
-            echo $after_widget;
-        }
-     
-        // widget settings update
-        function update($new_instance, $old_instance) {
-            $instance = $old_instance;
-            $instance['title'] = strip_tags($new_instance['title']);
-            $instance['num'] = ((int) $new_instance['num'] > 0 ) ? (int) $new_instance['num'] : 1 ;
-            $instance['text'] = trim($new_instance['text']);
-            $instance['style'] = trim($new_instance['style']);
-            return $instance;
-        }
-     
-        // widget settings form
-        function form($instance) {
-            $default =  array( 'title' => __('Top Users', 'cp') , 'num' => 3 , 'text' => '%user% (%points%)', 'style' => 'list-style:none;' );
-            $instance = wp_parse_args( (array) $instance, $default );
-     
-            $field = 'title';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('Title', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
-            
-            $field = 'num';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('Number of top users to show', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
-            
-            $field = 'text';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('Text', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
-
-            echo "\r\n".'<small><strong>'.__('Shortcodes', 'cp') . ':</strong><br />';
-            echo __('Number of points', 'cp') . ' - %points%' . '<br />';
-            echo __('Points (number only)', 'cp') . ' - %npoints%' . '<br />';
-            echo __('User display name', 'cp') . ' - %username%' . '<br />';
-            echo __('User login ID', 'cp') . ' - %user%' . '<br />';
-            echo __('User ID', 'cp') . ' - %userid%' . '<br />';
-            echo __('User ranking', 'cp') . ' - %place%' . '<br />';
-            echo __('Email MD5 hash', 'cp') . ' - %emailhash%' . '<br />';
-            echo '<br /></small>';
-            
-            $field = 'style';
-            $field_id = $this->get_field_id($field);
-            $field_name = $this->get_field_name($field);
-            echo "\r\n".'<p><label for="'.$field_id.'">'.__('Style', 'cp').': <input type="text" class="widefat" id="'.$field_id.'" name="'.$field_name.'" value="'.esc_attr( $instance[$field] ).'" /><label></p>';
-            echo "\r\n".'<small><strong>'.__('Note', 'cp') . ':</strong> '.__('This adds the following style to the list element. Shortcodes from above may be used here. The %emailhash% shortcode, for example, could be used to display gravatars.', 'cp').'</small><br />';
-        }
-    }
-    // register widget
+    // register top users widget
     register_widget("cp_topUsersWidget");
     

cubepoints/trunk/cubepoints.php

@@ -4 +4 @@
 Plugin URI: http://cubepoints.com
 Description: CubePoints is a point management system designed for WordPress blogs. Users can earn points by posting comments on your site. To display user's points, just put <code>&lt;?php cp_displayPoints(); ?&gt;</code> in your template or activate the sidebar widget.
-Version: 3.1.1
+Version: 3.2
 Author: Jonathan Lau & Peter Zhang
 Author URI: http://cubepoints.com
@@ -12 +12 @@
 
 /** Define constants */
-define('CP_VER', '3.1.1');
+define('CP_VER', '3.2');
 define('CP_DB', $wpdb->base_prefix . 'cp');
 define('CP_PATH', WP_PLUGIN_URL.'/'.str_replace(basename( __FILE__),"",plugin_basename(__FILE__)));

cubepoints/trunk/modules/backup.php

@@ -55 +55 @@
 
     function cp_module_backup_data_add_admin_page(){
-        add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('Backup and Restore','cp'), __('Backup & Restore','cp'), 8, 'cp_modules_backup_admin', 'cp_modules_backup_admin');
+        add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('Backup and Restore','cp'), __('Backup & Restore','cp'), 'manage_options', 'cp_modules_backup_admin', 'cp_modules_backup_admin');
     }
     add_action('cp_admin_pages','cp_module_backup_data_add_admin_page');

cubepoints/trunk/modules/custom_points.php

@@ -71 +71 @@
 
     /* Add CubePoints comment action hook */
-    add_action('cp_newComment', 'cp_module_customp_newComment');
+    add_action('cp_comment_add', 'cp_module_customp_newComment');
         function cp_module_customp_newComment($cid) {
             if (is_user_logged_in()) {

cubepoints/trunk/modules/donate/donate.js

@@ -1 @@
-function cp_module_donate_do(){
-    jQuery.ajax({
-        url: cp_donate.ajax_url,
-        type: "POST",
-        cache: false,
-        dataType: "json",
-        data: {action: "cp_module_donate_do", recipient: jQuery('#cp_recipient').val(), points: jQuery('#cp_points').val(), message: jQuery('#cp_message').val()},
-        success: function(data){
-            if(data.success==true){
-                Boxy.alert(data.message);
-                thebox.hide();
-                thebox.unload();
-                jQuery('.cp_points_display').html(data.pointsd);
+// Numeric only control handler
+jQuery.fn.ForceNumericOnly =
+function()
+{
+    return this.each(function()
+    {
+        jQuery(this).keydown(function(e)
+        {
+            var key = e.charCode || e.keyCode || 0;
+            // allow backspace, tab, delete, arrows, numbers and keypad numbers ONLY
+            return (
+                key == 8 || 
+                key == 9 ||
+                key == 46 ||
+                (key >= 37 && key <= 40) ||
+                (key >= 48 && key <= 57) ||
+                (key >= 96 && key <= 105));
+        });
+    });
+};
+
+function cp_module_donate(s){
+    showDropdownSearch(s);
+}
+
+function showDropdownSearch(s){
+    var html0 = '<div id="optionsearch">'+
+                '<h3>' + cp_donate.title + '</h3>'+
+                '<div class="textinput"><label for="cp_searchquery"> ' + cp_donate.searchText + ' <span id="optionsearchstatus">' + cp_donate.searchingText + '</span></label><input type="search" id="cp_searchquery" name="cp_searchquery" value="" placeholder="' + cp_donate.searchPlaceholder + '"></div>'+
+                '<div id="searchoptionswrapper"><div id="searchnoresult">'+ cp_donate.nothingFound +'</div><table id="searchoptions" class="radioTable" cellpadding="0" cellspacing="0"><tbody></tbody></table></div>'+
+            '</div>',
+        html1 = '<h3>' + cp_donate.title + '</h3>' +
+                '<div class="textinput"><label for="cp_donateAmount"> ' + cp_donate.amountToDonate + '</label><input type="search" id="cp_donateAmount" name="cp_donateAmount" value="" placeholder="' + cp_donate.donateAmountPlaceholder + '"></div>',
+        html2 = '<h3>' + cp_donate.title + '</h3>' +
+                '<div class="textinput"><label for="cp_donateComment"> ' + cp_donate.donateComment + '</label><input type="search" id="cp_donateComment" name="cp_donateComment" value="" placeholder="' + cp_donate.donateCommentPlaceholder + '"></div>',
+        html3 = '<h3>' + cp_donate.title + '</h3>' +
+                '<span id="cp_donateFeedback">Please wait...</span>';
+    
+    var donatePrompt = {
+        state0: {
+            html: html0,
+            buttons: { Cancel:false,Next:true },
+            submit: function(e,v,m,f){
+                if(v){
+                    if(f.selectedUser == undefined){
+                        var e = jQuery.Event("keydown");
+                        e.which = 13;
+                        jQuery("#cp_searchquery").trigger(e);
+                        return false;
+                    }
+                    jQuery.prompt.goToState('state1');
+                    return false;
+                }
             }
-            else{
-                Boxy.alert(data.message);
+        },
+        state1: {
+            html: html1,
+            buttons: { Cancel:false,Next:true },
+            submit: function(e,v,m,f){
+                if(v){
+                    if(f.cp_donateAmount == ''){
+                        $imp.find('input').focus();
+                        return false;
+                    }
+                    jQuery.prompt.goToState('state2');
+                    return false;
+                }
+            }
+        },
+        state2: {
+            html: html2,
+            buttons: { Cancel:false,Donate:true },
+            submit: function(e,v,m,f){
+                if(v){
+                    jQuery.ajax({
+                        url: cp_donate.ajax_url,
+                        type: "POST",
+                        cache: false,
+                        dataType: "json",
+                        data: {action: "cp_module_donate_do", recipient: f.selectedUser, points: f.cp_donateAmount, message: f.cp_donateComment},
+                        success: function(data){
+                            if(data.success==true){
+                                jQuery.prompt.getStateContent('state3').find('#cp_donateFeedback').text(data.message);
+                                jQuery('.cp_points_display').html(data.pointsd);
+                                return false;
+                            }
+                            else{
+                                jQuery.prompt.getStateContent('state3').find('#cp_donateFeedback').text(data.message);
+                                return false;
+                            }
+                        }
+                    });
+                    jQuery.prompt.goToState('state3');
+                    return false;
+                }
+            }
+        },
+        state3: {
+            html: html3,
+            buttons: { Ok:true },
+            submit: function(e,v,m,f){
+                if(v){
+                    return true;
+                }
             }
         }
+    };
+    
+    var $imp = jQuery.prompt(donatePrompt);
+
+    if(cp_donate.logged_in != '1'){
+        jQuery.prompt.getStateContent('state3').find('#cp_donateFeedback').text(cp_donate.notLoggedInText);
+        jQuery.prompt.goToState('state3');
+    }
+    
+    jQuery("#cp_donateAmount").ForceNumericOnly();
+    
+    var $so = jQuery('#searchoptions', $imp);
+    
+    $so.on('click', 'tr', function(){
+        jQuery('tr.checked', $so).removeClass('checked');
+        jQuery(this).addClass('checked');
+        jQuery(this).find('input').attr('checked', true);
     });
+
+    jQuery('#cp_searchquery', $imp).focus().keydown(function(event){
+        var $i = jQuery(this),
+            query = $i.val(),
+            html = "",
+            counter = 0,
+            $sos = jQuery('#optionsearchstatus',$imp);
+            
+        if(event.which == 13 || event.keyCode == 13 && jQuery.trim(query) !== ''){
+
+            $sos.css('display','inline');
+            
+            var request = jQuery.ajax({
+                url: cp_donate.ajax_url,
+                type: "POST",
+                data: {action: 'cp_donate_search', q: query}
+            });
+            
+            request.done(function(msg) {
+                jQuery(msg).each(function(i,user){
+                    var currval = user.id,
+                        tval = null,
+                        currtxt = user.ul;
+                    html += '<tr class="row'+ (counter++ % 2) + (currval == tval? ' checked':'')+'">'+
+                            '<td class="td-radio"><input type="radio" name="selectedUser" id="selectedUser_'+ counter +'" value="'+ currval +'"'+ (currval == tval? ' checked':'') +'></td>'+
+                            '<td class="td-label"><label for="selectedUser_'+ counter +'">'+ currtxt +'</label></td>'+
+                        '</tr>';
+                });
+                $so.find('tbody').html(html);
+                $so.find('tr:eq(0)').addClass('checked').find('input').attr('checked',true);
+                if(counter == 0){
+                    jQuery('#searchnoresult',$imp).show();
+                    jQuery('#searchoptions',$imp).hide();
+                }
+                else{
+                    jQuery('#searchnoresult',$imp).hide();
+                    jQuery('#searchoptions',$imp).show();
+                }
+                jQuery('#searchoptionswrapper',$imp).slideDown('slow', function(){
+                    $sos.hide();
+                });
+            });
+
+            request.fail(function(jqXHR, textStatus) {
+                jQuery.prompt.getStateContent('state3').find('#cp_donateFeedback').text(cp_donate.somethingWentWrongText);
+                jQuery.prompt.goToState('state3');
+            });
+
+            return false;
+        }// end if enter key
+
+    });
+
+    if(s){
+        jQuery.prompt.getStateContent('state0').find('#cp_searchquery').val(s);
+        var e = jQuery.Event("keydown");
+        e.which = 13;
+        jQuery("#cp_searchquery").trigger(e);
+    }
+    
+    return false;
 }
-function cp_module_donate(){
-    confirmation = cp_donate.confirmation;
-    thebox = new Boxy('<form name="cp_donate" id="cp_donate" method="post" onsubmit="Boxy.confirm(confirmation,function(){cp_module_donate_do();});return false;"><label for="cp_recipient">'+cp_donate.recipient+':</label><br /><input type="text" id="cp_recipient" name="cp_recipient" style="width:300px;" /><br /><br /><label for="cp_points">'+cp_donate.amount+':</label><br /><input type="text" id="cp_points" name="cp_points" style="width:300px;" /><br /><br /><label for="cp_message">'+cp_donate.message+':</label><br /><textarea id="cp_message" name="cp_message" style="width:300px;height:50px;"></textarea><br /><br /><input type="submit" value="'+cp_donate.donate_points+'" style="width:300px;" /></form>', {title: cp_donate.donate, modal: true});
-}

cubepoints/trunk/modules/donate/donate.php

@@ -3 +3 @@
 /** Donate Module */
 
-cp_module_register(__('Donate', 'cp') , 'donate' , '1.1', 'CubePoints', 'http://cubepoints.com', 'http://cubepoints.com' , __('This module allows your users to donate points to each other.', 'cp'), 1);
+cp_module_register(__('Donate', 'cp') , 'donate' , '1.2', 'CubePoints', 'http://cubepoints.com', 'http://cubepoints.com' , __('This module allows your users to donate points to each other.', 'cp'), 1);
 
 if(cp_module_activated('donate')){
 
+    add_action( 'wp_ajax_cp_donate_search', 'cp_module_donate_ajax_search' );
+    function cp_module_donate_ajax_search() {
+
+        header( "Content-Type: application/json" );
+        
+        if( $_REQUEST['q']=='' ){
+            $response = json_encode( array() );
+            echo $response;
+            exit;
+        }
+        
+        global $wpdb;
+        $users = $wpdb->get_results('SELECT ID, user_login, first_name, last_name, md5(user_email) as email_hash FROM `' . $wpdb->prefix . 'users`
+                                        LEFT JOIN (
+                                            SELECT
+                                                user_id,
+                                                meta_value as first_name
+                                            FROM `' . $wpdb->prefix . 'usermeta`
+                                            WHERE ( meta_key =  \'first_name\' )
+                                        ) AS A
+                                        ON id = A.user_id
+                                        LEFT JOIN (
+                                            SELECT
+                                                user_id,
+                                                meta_value as last_name
+                                            FROM `' . $wpdb->prefix . 'usermeta`
+                                            WHERE ( meta_key =  \'last_name\' )
+                                        ) AS B
+                                        ON id = B.user_id
+                                        WHERE
+                                            user_login  LIKE \''. $wpdb->escape($_REQUEST['q']) .'%\'
+                                            OR CONCAT_WS(\' \', first_name, last_name) LIKE \''. $wpdb->escape($_REQUEST['q']) .'%\'
+                                            OR CONCAT_WS(\' \', last_name, first_name) LIKE \''. $wpdb->escape($_REQUEST['q']) .'%\'
+                                            OR CONCAT_WS(\' \', first_name, last_name) LIKE \'% '. $wpdb->escape($_REQUEST['q']) .'%\'
+                                            OR CONCAT_WS(\' \', last_name, last_name) LIKE \'% '. $wpdb->escape($_REQUEST['q']) .'%\'
+                                        ORDER BY CASE
+                                            WHEN user_login  LIKE \''. $wpdb->escape($_REQUEST['q']) .'%\' THEN 1 ELSE 2 END 
+                                        LIMIT 30');
+        $response = array();
+        
+        foreach($users as $u){
+            $response[] = array(
+                            'id' => $u->ID,
+                            'ul' => $u->user_login,
+                            'fn' => $u->first_name,
+                            'ln' => $u->last_name,
+                            'eh' => $u->email_hash
+                            );
+        }
+        $response = json_encode($response);
+        echo $response;
+        exit;
+        
+    }
+
     function cp_module_donate_scripts(){
     
-        wp_register_script('boxy',
-           CP_PATH . 'assets/boxy/javascripts/jquery.boxy.js',
+        wp_register_script('impromptu',
+           CP_PATH . 'modules/donate/jquery-impromptu.4.0.min.js',
            array('jquery'),
-           '0.1.4' );
+           '4.0' );
 
-        wp_register_style('boxy', CP_PATH . 'assets/boxy/stylesheets/boxy.css');
+        wp_register_style('cp_donate', CP_PATH . 'modules/donate/donate.css');
 
-        wp_enqueue_script('boxy');
-        wp_enqueue_style('boxy');
+        wp_enqueue_script('impromptu');
+        wp_enqueue_style('cp_donate');
         
     }
@@ -27 +82 @@
         $points = $_POST['points'];
         $message = htmlentities(stripslashes($_POST['message']), ENT_QUOTES, 'UTF-8');
-        $user =  get_userdatabylogin($recipient);
+        $user =  get_user_by('id', $recipient);
 
         if(!is_user_logged_in()){
@@ -92 +147 @@
     
     // Handle JS
-    
-    wp_register_script('cp_donate_script', WP_PLUGIN_URL.'/'.str_replace(basename( __FILE__),"",plugin_basename(__FILE__)). 'donate.js', array('jquery'));
-
-    function cp_module_donate_script(){ 
+    function cp_module_donate_script(){
+        wp_register_script('cp_donate_script', WP_PLUGIN_URL.'/'.str_replace(basename( __FILE__),"",plugin_basename(__FILE__)). 'donate.js', array('jquery'));
         wp_enqueue_script('cp_donate_script');
+        wp_localize_script( 'cp_donate_script', 'cp_donate', array(
+            'logged_in' =>  is_user_logged_in() ? '1' : '0',
+            'ajax_url' =>  admin_url( 'admin-ajax.php' ),
+            'title' => __('Points Transfer', 'cp'),
+            'searchText' => __('Type a username and press Enter to search...', 'cp'),
+            'searchingText' => __('Searching, please wait...', 'cp'),
+            'searchPlaceholder' => __('Search...', 'cp'),
+            'nothingFound' => __('Nothing Found', 'cp'),
+            'amountToDonate' => __('Enter amount of points to transfer...', 'cp'),
+            'donateAmountPlaceholder' => __('Amount to transfer...', 'cp'),
+            'donateComment' => __('Leave feedback (to be displayed on recipient\'s profile)', 'cp'),
+            'donateCommentPlaceholder' => __('Enter a message...', 'cp'),
+            'notLoggedInText' => __('You must be logged in to make a transfer!', 'cp'),
+            'somethingWentWrongText' => _('Oops, something went wrong! Please try again later.', 'cp')
+        ) );
     }
 
     add_action('init', 'cp_module_donate_script');
-    
-    wp_localize_script( 'cp_donate_script', 'cp_donate', array(
-        ajax_url=>get_bloginfo('url').'/wp-admin/admin-ajax.php',
-        confirmation=>__('Are you sure you want to donate points?', 'cp'),
-        recipient=>__('Recipient', 'cp'),
-        message=>__('Message', 'cp'),
-        amount=>__('Amount', 'cp'),
-        donate_points=>__('Donate Points', 'cp'),
-        donate=>__('Donate Points', 'cp')
-    ) );
     
     function cp_module_donate_widget(){
@@ -134 +192 @@
         }
         if($data['message']!=''){
-            echo ' <a href="javascript:void(0);" onclick="Boxy.alert(\''.htmlspecialchars($data['message']).'\')">[' . __('Message', 'cp') . ']</a>';
+            echo ' <a href="javascript:void(0);" onclick="jQuery.prompt(\'MESSAGE: '.htmlspecialchars($data['message']).'\')">[' . __('Message', 'cp') . ']</a>';
         }
     }

cubepoints/trunk/modules/my_points.php

@@ -4 +4 @@
 
 cp_module_register(__('My Points', 'cp') , 'mypoints' , '1.0', 'CubePoints', 'http://cubepoints.com', 'http://cubepoints.com' , __('Allow users to see a history of their point transactions.', 'cp'), 1);
-
-function cp_module_mypoints_install(){
-    //add_option('cp_module_mypoints_points', 5);
-}
-add_action('cp_module_mypoints_activate','cp_module_mypoints_install');
 
 if(cp_module_activated('mypoints')){
@@ -16 +11 @@
 
     function cp_module_mypoints_add_admin_page(){
-        add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('My Points','cp'), __('My Points','cp'), 0, 'cp_modules_mypoints_admin', 'cp_modules_mypoints_admin');
+        add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('My Points','cp'), __('My Points','cp'), 'read', 'cp_modules_mypoints_admin', 'cp_modules_mypoints_admin');
     }
     add_action('cp_admin_pages','cp_module_mypoints_add_admin_page');

cubepoints/trunk/modules/paid_content.php

@@ -206 +206 @@
     add_action('init', 'cp_module_pcontent_buy');
     function cp_module_pcontent_buy(){
-        if($_POST['cp_module_pcontent_pay']=='') return;
+        if(!isset($_POST['cp_module_pcontent_pay'])) return;
         $pcontent_enabled = (bool) get_post_meta($_POST['cp_module_pcontent_pay'],'cp_pcontent_points_enable', 1);
         if(!$pcontent_enabled) return;

cubepoints/trunk/modules/paypal/paypal.php

@@ -3 +3 @@
 /** PayPal Top-up Module */
 
-cp_module_register(__('PayPal Top-up', 'cp') , 'paypal' , '1.0', 'CubePoints', 'http://cubepoints.com', 'http://cubepoints.com' , __('Allow users to buy points using PayPal.', 'cp'), 1);
+cp_module_register(__('PayPal Top-up', 'cp') , 'paypal' , '1.2', 'CubePoints', 'http://cubepoints.com', 'http://cubepoints.com' , __('Allow users to buy points using PayPal.', 'cp'), 1);
 
 function cp_module_paypal_install(){
@@ -58 +58 @@
 
 function cp_module_paypal_add_admin_page(){
-    add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('PayPal Top-up','cp'), __('PayPal Top-up','cp'), 8, 'cp_modules_paypal_admin', 'cp_modules_paypal_admin');
+    add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('PayPal Top-up','cp'), __('PayPal Top-up','cp'), 'manage_options', 'cp_modules_paypal_admin', 'cp_modules_paypal_admin');
 }
 add_action('cp_admin_pages','cp_module_paypal_add_admin_page');
@@ -67 +67 @@
 if ($_POST['cp_module_paypal_form_submit'] == 'Y') {
 
-    update_option('cp_module_paypal_account', $_POST['cp_module_paypal_account']);
+    update_option('cp_module_paypal_account', trim($_POST['cp_module_paypal_account']));
     update_option('cp_module_paypal_sandbox', (bool)$_POST['cp_module_paypal_sandbox']);
     update_option('cp_module_paypal_currency', $_POST['cp_module_paypal_currency']);
-    update_option('cp_module_paypal_item', $_POST['cp_module_paypal_item']);
+    update_option('cp_module_paypal_item', trim($_POST['cp_module_paypal_item']));
         if(trim($_POST['cp_module_paypal_cancel'])==''){ $_POST['cp_module_paypal_cancel'] = get_bloginfo('url').'/?cp_module_paypal_return=0'; }
-    update_option('cp_module_paypal_cancel', $_POST['cp_module_paypal_cancel']);
+    update_option('cp_module_paypal_cancel', trim($_POST['cp_module_paypal_cancel']));
         if(trim($_POST['cp_module_paypal_thankyou'])==''){ $_POST['cp_module_paypal_thankyou'] = get_bloginfo('url').'/?cp_module_paypal_return=1'; }
     update_option('cp_module_paypal_thankyou', trim($_POST['cp_module_paypal_thankyou']));   
     update_option('cp_module_paypal_price', ((float)$_POST['cp_module_paypal_price']<=0)?1:(float)$_POST['cp_module_paypal_price']);
     update_option('cp_module_paypal_min', ((int)$_POST['cp_module_paypal_min']<=0)?1:(int)$_POST['cp_module_paypal_min']);
-    update_option('cp_module_paypal_form', stripslashes($_POST['cp_module_paypal_form']));
+    update_option('cp_module_paypal_form', trim(stripslashes($_POST['cp_module_paypal_form'])));
     
 
@@ -197 +197 @@
 
 function cp_module_paypal_pay(){
-    if($_REQUEST['cp_module_paypal_pay']!=''){
+    if(isset($_REQUEST['cp_module_paypal_pay']) && $_REQUEST['cp_module_paypal_pay']!=''){
     header("Cache-Control: no-cache, must-revalidate");
     header("Expires: Sat, 26 Jul 1997 05:00:00 GMT");
@@ -259 +259 @@
     
 function cp_module_paypal_message(){
-        if($_REQUEST['cp_module_paypal_return']!=''){
+        if(isset($_REQUEST['cp_module_paypal_return']) && $_REQUEST['cp_module_paypal_return']!=''){
         if($_REQUEST['cp_module_paypal_return']=='1'){
             cp_module_paypal_showMessage(__('Thank you for your purchase!', 'cp'));
@@ -294 +294 @@
 
 function cp_module_paypal_ipn(){
-    if($_GET['cp_module_paypal_ipn']!=''){
-    // read the post from PayPal system and add 'cmd'
-    $req = 'cmd=_notify-validate';
-
-    foreach ($_POST as $key => $value) {
-    $value = urlencode(stripslashes($value));
-    $req .= "&$key=$value";
-    }
-
-    if(get_option('cp_module_paypal_sandbox')){
-        $loc = 'ssl://www.sandbox.paypal.com';
-    }
-    else{
-        $loc = 'ssl://www.paypal.com';
-    }
-    
-    // post back to PayPal system to validate
-    $header .= "POST /cgi-bin/webscr HTTP/1.0\r\n";
-    $header .= "Content-Type: application/x-www-form-urlencoded\r\n";
-    $header .= "Content-Length: " . strlen($req) . "\r\n\r\n";
-    $fp = fsockopen ($loc, 443, $errno, $errstr, 30);
-
-    // assign posted variables to local variables
-    $item_name = $_POST['item_name'];
-    $item_number = $_POST['item_number'];
-    $payment_status = $_POST['payment_status'];
-    $payment_amount = $_POST['mc_gross'];
-    $payment_currency = $_POST['mc_currency'];
-    $txn_id = $_POST['txn_id'];
-    $receiver_email = $_POST['receiver_email'];
-    $payer_email = $_POST['payer_email'];
-    $custom = $_POST['custom'];
-    list($points,$uid)=explode('|',$custom);
-
-    if (!$fp) {
-    // HTTP ERROR
-    } else {
-    fputs ($fp, $header . $req);
-    while (!feof($fp)) {
-    $res = fgets ($fp, 1024);
-    if (strcmp ($res, "VERIFIED") == 0) {
-    // check the payment_status is Completed
-        if($payment_status!='Completed'){ die(); }
-    // check that txn_id has not been previously processed
-        global $wpdb;
-        $results = $wpdb->get_results('SELECT * FROM `'.CP_DB.'` WHERE `type`=\'paypal\'');
-
-        foreach($results as $result){
-            $data = $result->data;
-            if($data['txn_id']==$txn_id){ die(); }
-        }
-    // check that receiver_email is your Primary PayPal email
-        if($receiver_email!=get_option('cp_module_paypal_account')){ die(); }
-    // check that payment_amount/payment_currency are correct
-        if($payment_currency!=get_option('cp_module_paypal_currency')){ die(); }
-        if((float)$payment_amount!=(float)cp_module_paypal_round_up(get_option('cp_module_paypal_price') * (int)$points, 2)){ die(); }
-    // process payment
-        cp_points('paypal', $uid, (int)$points, serialize(array('txn_id'=>$txn_id,'payer_email'=>$payer_email,'amt'=>$payment_amount)));
-    }
-    else if (strcmp ($res, "INVALID") == 0) {
-    // invalid paypal return
-        die();
-    }
-    }
-    fclose ($fp);
-    }
-    exit();
+    if(isset($_GET['cp_module_paypal_ipn']) && $_GET['cp_module_paypal_ipn']!=''){
+
+        if(get_option('cp_module_paypal_sandbox')){
+            $host = 'www.sandbox.paypal.com';
+        }
+        else{
+            $host = 'www.paypal.com';
+        }
+
+        // read the post from PayPal system and add 'cmd'
+        $req = 'cmd=' . urlencode('_notify-validate');
+         
+        foreach ($_POST as $key => $value) {
+            $value = urlencode(stripslashes($value));
+            $req .= "&$key=$value";
+        }
+        
+        $ch = curl_init();
+        curl_setopt($ch, CURLOPT_URL, 'https://' . $host . '/cgi-bin/webscr');
+        curl_setopt($ch, CURLOPT_HEADER, 0);
+        curl_setopt($ch, CURLOPT_POST, 1);
+        curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);
+        curl_setopt($ch, CURLOPT_POSTFIELDS, $req);
+        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
+        curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);
+        curl_setopt($ch, CURLOPT_HTTPHEADER, array('Host: ' . $host));
+        $res = curl_exec($ch);
+        curl_close($ch);
+
+        // assign posted variables to local variables
+        $item_name = $_POST['item_name'];
+        $item_number = $_POST['item_number'];
+        $payment_status = $_POST['payment_status'];
+        $payment_amount = $_POST['mc_gross'];
+        $payment_currency = $_POST['mc_currency'];
+        $txn_id = $_POST['txn_id'];
+        $receiver_email = $_POST['receiver_email'];
+        $payer_email = $_POST['payer_email'];
+        $custom = $_POST['custom'];
+        list($points,$uid)=explode('|',$custom);
+        
+        if (strcmp ($res, "VERIFIED") == 0) {
+            // check the payment_status is Completed
+            if($payment_status!='Completed'){
+                die();
+            }
+            // check that txn_id has not been previously processed
+            global $wpdb;
+            $results = $wpdb->get_results('SELECT * FROM `'.CP_DB.'` WHERE `type`=\'paypal\'');
+            foreach($results as $result){
+                $data = unserialize($result->data);
+                if($data['txn_id']==$txn_id){
+                    die();
+                }
+            }
+            // check that receiver_email is your Primary PayPal email
+            if($receiver_email!=trim(get_option('cp_module_paypal_account'))){
+                die();
+            }
+            // check that payment_amount/payment_currency are correct
+            if($payment_currency!=get_option('cp_module_paypal_currency')){
+                die();
+            }
+            if((float)$payment_amount!=(float)cp_module_paypal_round_up(get_option('cp_module_paypal_price') * (int)$points, 2)){
+                die();
+            }
+            // process payment
+            cp_points('paypal', $uid, (int)$points, serialize(array('txn_id'=>$txn_id,'payer_email'=>$payer_email,'amt'=>$payment_amount)));
+        }
+        else if (strcmp ($res, "INVALID") == 0) {
+            // invalid IPN
+            die();
+        }
+        exit();
+
     }
 }

cubepoints/trunk/modules/ranks.php

@@ -13 +13 @@
 
     function cp_module_ranks_data_add_admin_page(){
-        add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('Ranks','cp'), __('Ranks','cp'), 8, 'cp_modules_ranks_admin', 'cp_modules_ranks_admin');
+        add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('Ranks','cp'), __('Ranks','cp'), 'manage_options', 'cp_modules_ranks_admin', 'cp_modules_ranks_admin');
     }
     add_action('cp_admin_pages','cp_module_ranks_data_add_admin_page');

cubepoints/trunk/modules/reset.php

@@ -8 +8 @@
 
 function cp_module_resetdata_add_admin_page(){
-    add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('Reset Data','cp'), __('Reset Data','cp'), 8, 'cp_modules_resetdata_admin', 'cp_modules_resetdata_admin');
+    add_submenu_page('cp_admin_manage', 'CubePoints - ' .__('Reset Data','cp'), __('Reset Data','cp'), 'manage_options', 'cp_modules_resetdata_admin', 'cp_modules_resetdata_admin');
 }
 add_action('cp_admin_pages','cp_module_resetdata_add_admin_page');

cubepoints/trunk/modules/youtube/youtube.php

@@ -94 +94 @@
     add_shortcode('cp_youtube','cp_module_youtube_shortcode');
     
-    // enqueue swfobject
-    wp_enqueue_script("swfobject");
-
-    wp_register_script('cp_youtube_common', WP_PLUGIN_URL.'/'.str_replace(basename( __FILE__),"",plugin_basename(__FILE__)). 'cp_youtube.js', array('jquery'));
-    
-    function cp_youtube_scripts(){ 
+    function cp_module_youtube_scripts(){
+        wp_enqueue_script("swfobject");
+        wp_register_script('cp_youtube_common', WP_PLUGIN_URL.'/'.str_replace(basename( __FILE__),"",plugin_basename(__FILE__)). 'cp_youtube.js', array('jquery'));
         wp_enqueue_script('cp_youtube_common');
+        wp_localize_script( 'cp_youtube_common', 'cp_youtube', array(
+            'ajax_url' =>  (!empty($_SERVER['HTTPS'])) ? "https://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'] : "http://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI']
+        ) );
     }
-    
-    add_action('init', 'cp_youtube_scripts');
-
-    // ajax handling
-
-    wp_localize_script( 'cp_youtube_common', 'cp_youtube', array(
-    'ajax_url' =>  (!empty($_SERVER['HTTPS'])) ? "https://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'] : "http://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI']
-    ) );
+    add_action('init', 'cp_module_youtube_scripts');
 
     /** YouTube Log Hook */

cubepoints/trunk/readme.txt

@@ -2 +2 @@
 Contributors: lauweijie7715, petester
 Donate link: http://cubepoints.com/donate/
-Tags: points, comments, post, admin, widget
+Tags: points, comments, post, admin, widget, sidebar, paypal, gamification, rewards
 Requires at least: 2.2
-Tested up to: 3.4.1
-Stable tag: 3.1.1
+Tested up to: 3.4.2
+Stable tag: 3.2
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 
-CubePoints is a point management system designed for WordPress blogs.
+CubePoints is a point management system for WordPress.
 
 == Description ==
 
-CubePoints is a point management system designed for WordPress blogs. Users can earn points by posting comments creating posts, or even by logging in on your site.
-
-Encourage your users to comment on your posts by offering them points which could be used to purchase items / upgrades / etc. Users will be awarded a certain number of points for each comment they make.
-
-A lot of API is available for other plugins/systems to work with CubePoints. For more information, consult the documentation.
+CubePoints is a point management system for sites running on WordPress. Users can earn virtual credits on your site by posting comments, creating posts, or even by logging in each day! Install CubePoints and watch your visitor interaction soar by offering them points which could be used to view certain posts, exchange for downloads or even real items!
+
+CubePoints is modular! And this means that it can be easily extended to offer more ways for your users to earn and spend points. APIs are also available for other plugins to work with CubePoints.
+
+> #### CubePoints Support Forum
+> Please visit the [CubePoints Support Forum](http://cubepoints.com/forums) for additional help with using this plugin. You may also post feature requests, ideas and bug reports there.
 
 == Installation ==
@@ -49 +50 @@
 == Upgrade Notice ==
 
+= 3.2 =
+New "Limit Comment Points" module added. "Donate" module updated. Several bugfixes to the "PayPal Top-up" module, "Custom Points" module and CubePoints core.
+
 = 3.1.1 =
 Translations for 11 locales added. Problems with RTL support, "PayPal Top-up" module & "Comment Spam Control" module fixed.
@@ -83 +87 @@
 
 == Changelog ==
+
+**Version 3.2** *(November 16th, 2012)*
+
++ [Feature] New "Limit Comment Points" module added
++ [Change] Donate module updated with a new frontend interface
++ [Bugfix] Fixed a bug in the "Custom Points" module which prevented it from working
++ [Bugfix] Several bugfixes and and optimisations to the "PayPal Top-up" module
++ [Bugfix] Code that produce E_NOTICE errors fixed
++ [Bugfix] Fixes the issue where ajax requests in the admin back-end (e.g. updating points) fails to run if the administration over SSL is forced
 
 **Version 3.1.1** *(July 13th, 2012)*