protected function check_login()
{
if (User::is_empty_users()) {
return;
}
if (!_SESSION('logged', false) || _SESSION('logged_ip') != $_SERVER['REMOTE_ADDR']) {
$this->vars['error'] = '';
if (_POST('enter')) {
$username = strtolower(trim(_POST('data')));
$pwd_hash = User::password_to_hash(trim(_POST('value')));
$user = strlen($username) ? Node::get_by_model_path('User', $username) : null;
if ($user != null && $user->pwd_hash == $pwd_hash) {
$_SESSION['logged'] = true;
$_SESSION['logged_ip'] = $_SERVER['REMOTE_ADDR'];
$this->redirect($_SERVER['REQUEST_URI']);
return;
} else {
$this->vars['error'] = Loc::get('cms/admin/invalid-login-or-password');
}
}
$this->template_name = dirname(__FILE__) . '/login.tpl';
$this->_flow = PAGE_FLOW_RENDER;
return;
}
}
protected function check_login()
{
if (User::is_empty_users()) {
return;
}
if (!_SESSION('logged', false) || _SESSION('logged_ip') != $_SERVER['REMOTE_ADDR']) {
$this->template_name = dirname(__FILE__) . '/login-required.tpl';
$this->_flow = PAGE_FLOW_RENDER;
return;
}
}
protected function check_login()
{
if (User::is_empty_users()) {
return;
}
if (!_SESSION('logged', false) || _SESSION('logged_ip') != $_SERVER['REMOTE_ADDR']) {
echo '<html><head><title></title><body onload="window.parent.location=window.parent.location;"></body></html>';
$this->break_flow();
return;
}
}
public function cache_get($name, $def = '')
{
$arr = _SESSION('page.' . $this->script_name(), array());
return array_key_exists($name, $arr) ? $arr[$name] : $def;
}
function DoExpressCheckoutPayment()
{
if (!empty(_SESSION('ppl_products')) && !empty(_SESSION('ppl_charges'))) {
$products = _SESSION('ppl_products');
$charges = _SESSION('ppl_charges');
$padata = '&TOKEN=' . urlencode(_GET('token'));
$padata .= '&PAYERID=' . urlencode(_GET('PayerID'));
$padata .= '&PAYMENTREQUEST_0_PAYMENTACTION=' . urlencode("SALE");
//set item info here, otherwise we won't see product details later
foreach ($products as $p => $item) {
$padata .= '&L_PAYMENTREQUEST_0_NAME' . $p . '=' . urlencode($item['ItemName']);
$padata .= '&L_PAYMENTREQUEST_0_NUMBER' . $p . '=' . urlencode($item['ItemNumber']);
$padata .= '&L_PAYMENTREQUEST_0_DESC' . $p . '=' . urlencode($item['ItemDesc']);
$padata .= '&L_PAYMENTREQUEST_0_AMT' . $p . '=' . urlencode($item['ItemPrice']);
$padata .= '&L_PAYMENTREQUEST_0_QTY' . $p . '=' . urlencode($item['ItemQty']);
}
$padata .= '&PAYMENTREQUEST_0_ITEMAMT=' . urlencode($this->GetProductsTotalAmount($products));
$padata .= '&PAYMENTREQUEST_0_TAXAMT=' . urlencode($charges['TotalTaxAmount']);
$padata .= '&PAYMENTREQUEST_0_SHIPPINGAMT=' . urlencode($charges['ShippinCost']);
$padata .= '&PAYMENTREQUEST_0_HANDLINGAMT=' . urlencode($charges['HandalingCost']);
$padata .= '&PAYMENTREQUEST_0_SHIPDISCAMT=' . urlencode($charges['ShippinDiscount']);
$padata .= '&PAYMENTREQUEST_0_INSURANCEAMT=' . urlencode($charges['InsuranceCost']);
$padata .= '&PAYMENTREQUEST_0_AMT=' . urlencode($this->GetGrandTotal($products, $charges));
$padata .= '&PAYMENTREQUEST_0_CURRENCYCODE=' . urlencode(PPL_CURRENCY_CODE);
//We need to execute the "DoExpressCheckoutPayment" at this point to Receive payment from user.
$httpParsedResponseAr = $this->PPHttpPost('DoExpressCheckoutPayment', $padata);
//vdump($httpParsedResponseAr);
//Check if everything went ok..
if ("SUCCESS" == strtoupper($httpParsedResponseAr["ACK"]) || "SUCCESSWITHWARNING" == strtoupper($httpParsedResponseAr["ACK"])) {
echo '<h2>Success</h2>';
echo 'Your Transaction ID : ' . urldecode($httpParsedResponseAr["PAYMENTINFO_0_TRANSACTIONID"]);
/*
//Sometimes Payment are kept pending even when transaction is complete.
//hence we need to notify user about it and ask him manually approve the transiction
*/
if ('Completed' == $httpParsedResponseAr["PAYMENTINFO_0_PAYMENTSTATUS"]) {
echo '<div style="color:green">Payment Received! Your product will be sent to you very soon!</div>';
} elseif ('Pending' == $httpParsedResponseAr["PAYMENTINFO_0_PAYMENTSTATUS"]) {
echo '<div style="color:red">Transaction Complete, but payment may still be pending! ' . 'If that\'s the case, You can manually authorize this payment in your <a target="_new" href="http://www.paypal.com">Paypal Account</a></div>';
}
$this->GetTransactionDetails();
} else {
echo '<div style="color:red"><b>Error : </b>' . urldecode($httpParsedResponseAr["L_LONGMESSAGE0"]) . '</div>';
echo '<pre>';
print_r($httpParsedResponseAr);
echo '</pre>';
}
} else {
// Request Transaction Details
$this->GetTransactionDetails();
}
}
<?php
require_once 's/s.php';
$tpl = new STemplate();
$tpl->vars['show_login_box'] = _SESSION('show_login_box', true);
$tpl->vars['login_error'] = '';
$tpl->vars['user_name'] = _SESSION('user_name');
if (inPOST('try_it')) {
if (_POST('login') != 'test' || _POST('password') != '12345') {
$tpl->vars['login_error'] = 'Invalid credentials. Try test/12345';
} else {
$_SESSION['user_name'] = 'Test test';
$_SESSION['show_login_box'] = false;
header('Location: ?' . (inGET('gimmedebug') ? 'gimmedebug=1' : ''));
return;
}
}
if (inPOST('try_again')) {
$_SESSION['show_login_box'] = true;
header('Location: ?' . (inGET('gimmedebug') ? 'gimmedebug=1' : ''));
return;
}
echo $tpl->process(BASE . 'index.tpl');
if (DEBUG) {
echo_debug();
}
public function fill_def_form_data(&$data, $node, $title_label = null, $path_type = 0, $separate_title = false)
{
$data['title'] = strlen($node->title) ? htmlspecialchars($node->title) : '<em>' . $this->get_new_name_for_node($node) . '</em>';
$data['rows'] = array();
if ($path_type != self::PATH_TYPE_HIDDEN_ALL) {
$data['rows'][] = array('id' => '_title', 'label' => $title_label === null ? Loc::get('cms/admin/title-label') : $title_label, 'type' => 'text', 'value' => $node->title, 'validate' => 'SValidators.required');
}
if ($path_type == self::PATH_TYPE_EDITABLE) {
$data['rows'][] = array('id' => '_name', 'label' => Loc::get('cms/admin/path'), 'type' => 'html', 'value' => join('', array('<table cellspacing="0" cellpadding="0" width="100%" class="s-form-e"><tr>', '<td nowrap="nowrap"><strong>', htmlspecialchars($node->parent_path), '/</strong></td>', '<td width="100%"><input class="s-inp" type="text" name="_name" value="', htmlspecialchars($node->name), '" /></td>', '</tr></table>')));
} elseif ($path_type == self::PATH_TYPE_READONLY) {
if ($node->name != '') {
$data['rows'][] = array('id' => '_name', 'label' => Loc::get('cms/admin/path'), 'type' => 'html', 'value' => htmlspecialchars($node->parent_path) . '/<strong>' . htmlspecialchars($node->name) . '</strong>');
}
} elseif ($path_type == self::PATH_TYPE_NAME) {
if ($node->name != '') {
$data['rows'][] = array('id' => '_name', 'label' => Loc::get('cms/admin/system-name'), 'type' => 'html', 'value' => htmlspecialchars($node->name));
}
}
if ($path_type != self::PATH_TYPE_HIDDEN_ALL && $separate_title) {
$data['rows'][] = array('id' => '_title_separator', 'label' => false, 'type' => 'html', 'value' => '<hr />');
}
foreach ($node->editable_fields as $field => $options) {
if (!is_array($options)) {
$options = array('type' => $options);
}
$options = $options + array('id' => $field, 'value' => $node->attr($field), 'label' => Cms::capitalize_words($field, ' '));
$data['rows'][] = $options;
}
if (_SESSION('s.cms.admin.just-saved')) {
$_SESSION['s.cms.admin.just-saved'] = false;
$data['info'] = Loc::get('cms/admin/saved');
$data['extra']['update_tree'] = true;
$data['extra']['select_node'] = $node->id;
}
}
