From: Steve Sutton <steve@gaslightmedia.com>
Date: Wed, 19 Dec 2018 21:30:50 +0000 (-0500)
Subject: update for member click throu
X-Git-Tag: v1.5.26^2
X-Git-Url: http://cvs2.gaslightmedia.com/gitweb/index.cgi?a=commitdiff_plain;h=2bde49b8ef365184e87acaf44fb2febc7a9838a6;p=web%2FGaylordGolfMecca.git

update for member click throu
---

diff --git a/Toolkit/Members/memberClickThru.php b/Toolkit/Members/memberClickThru.php
index dfabd8d..9cad7c6 100644
--- a/Toolkit/Members/memberClickThru.php
+++ b/Toolkit/Members/memberClickThru.php
@@ -14,17 +14,27 @@
  * @link      <>
  */
 
-$includeFunctions = false;
+$dont_include_functions = true;
 /**
  * Description for require_once
  */
 require_once '../../setup.phtml';
-$memberId = filter_input(INPUT_GET, 'member_id', FILTER_VALIDATE_INT);
-if ($memberId) {
-    $exposure = new Toolkit_Members_Exposure($memberId, 'click');
-	$exposure->runUpdate();
+if ( $member_id = filter_var( $_REQUEST['member_id'], FILTER_VALIDATE_INT, array( 'min_range' => 1, 'max_range' => 9999 ) ) ) {
+    $exposure = new Toolkit_Members_Exposure($_GET['member_id'], 'click');
+    $dbh = Toolkit_Database::getInstance();
+    // Grab url instead of using href from GET.
+    $sql = "
+    SELECT url
+      FROM member
+     WHERE member_id = :mid";
+	$stmt = $dbh->prepare($sql);
+    $stmt->bindParam(':mid', $member_id, PDO::PARAM_INT);
+    $stmt->execute();
+    $url = $stmt->fetchColumn();
+    if ( $url ) {
+        $href = str_replace("http://", "", $url);
+        header("Location: http://" . $href);
+    }
+    exit;
 }
-if ($_GET['href']) {
-    $href = str_replace("http://", "", $_GET['href']);
-    header("Location: http://" . $href);
-}
\ No newline at end of file
+?>
diff --git a/Toolkit/Members/memberDBGoogleMap.php b/Toolkit/Members/memberDBGoogleMap.php
index dab973f..269c149 100644
--- a/Toolkit/Members/memberDBGoogleMap.php
+++ b/Toolkit/Members/memberDBGoogleMap.php
@@ -56,7 +56,7 @@ $sql .= " ORDER BY m.member_name ASC";
 try {
     $members = array();
     $urlFormat
-        = MEDIA_BASE_URL . 'Toolkit/Members/memberClickThru.php?member_id=%s&href=%s';
+        = MEDIA_BASE_URL . 'Toolkit/Members/memberClickThru.php?member_id=%s';
     $addToPlannerFormat
         = MEDIA_BASE_URL . 'trip-planner-wish-list/%s/%s/';
     $viewPlannerFormat
@@ -68,8 +68,7 @@ try {
         if (!is_null($row['lat']) && !is_null($row['lon'])) {
             $websiteUrl = sprintf(
                 $urlFormat,
-                $row['member_id'],
-                urlencode(str_replace('http://', '', $row['url']))
+                $row['member_id']
             );
             $viewPlannerUrl = sprintf(
                 $viewPlannerFormat,