protected function check_login() { if (User::is_empty_users()) { return; } if (!_SESSION('logged', false) || _SESSION('logged_ip') != $_SERVER['REMOTE_ADDR']) { $this->vars['error'] = ''; if (_POST('enter')) { $username = strtolower(trim(_POST('data'))); $pwd_hash = User::password_to_hash(trim(_POST('value'))); $user = strlen($username) ? Node::get_by_model_path('User', $username) : null; if ($user != null && $user->pwd_hash == $pwd_hash) { $_SESSION['logged'] = true; $_SESSION['logged_ip'] = $_SERVER['REMOTE_ADDR']; $this->redirect($_SERVER['REQUEST_URI']); return; } else { $this->vars['error'] = Loc::get('cms/admin/invalid-login-or-password'); } } $this->template_name = dirname(__FILE__) . '/login.tpl'; $this->_flow = PAGE_FLOW_RENDER; return; } }
protected function check_login() { if (User::is_empty_users()) { return; } if (!_SESSION('logged', false) || _SESSION('logged_ip') != $_SERVER['REMOTE_ADDR']) { $this->template_name = dirname(__FILE__) . '/login-required.tpl'; $this->_flow = PAGE_FLOW_RENDER; return; } }
protected function check_login() { if (User::is_empty_users()) { return; } if (!_SESSION('logged', false) || _SESSION('logged_ip') != $_SERVER['REMOTE_ADDR']) { echo '<html><head><title></title><body onload="window.parent.location=window.parent.location;"></body></html>'; $this->break_flow(); return; } }
public function cache_get($name, $def = '') { $arr = _SESSION('page.' . $this->script_name(), array()); return array_key_exists($name, $arr) ? $arr[$name] : $def; }
function DoExpressCheckoutPayment() { if (!empty(_SESSION('ppl_products')) && !empty(_SESSION('ppl_charges'))) { $products = _SESSION('ppl_products'); $charges = _SESSION('ppl_charges'); $padata = '&TOKEN=' . urlencode(_GET('token')); $padata .= '&PAYERID=' . urlencode(_GET('PayerID')); $padata .= '&PAYMENTREQUEST_0_PAYMENTACTION=' . urlencode("SALE"); //set item info here, otherwise we won't see product details later foreach ($products as $p => $item) { $padata .= '&L_PAYMENTREQUEST_0_NAME' . $p . '=' . urlencode($item['ItemName']); $padata .= '&L_PAYMENTREQUEST_0_NUMBER' . $p . '=' . urlencode($item['ItemNumber']); $padata .= '&L_PAYMENTREQUEST_0_DESC' . $p . '=' . urlencode($item['ItemDesc']); $padata .= '&L_PAYMENTREQUEST_0_AMT' . $p . '=' . urlencode($item['ItemPrice']); $padata .= '&L_PAYMENTREQUEST_0_QTY' . $p . '=' . urlencode($item['ItemQty']); } $padata .= '&PAYMENTREQUEST_0_ITEMAMT=' . urlencode($this->GetProductsTotalAmount($products)); $padata .= '&PAYMENTREQUEST_0_TAXAMT=' . urlencode($charges['TotalTaxAmount']); $padata .= '&PAYMENTREQUEST_0_SHIPPINGAMT=' . urlencode($charges['ShippinCost']); $padata .= '&PAYMENTREQUEST_0_HANDLINGAMT=' . urlencode($charges['HandalingCost']); $padata .= '&PAYMENTREQUEST_0_SHIPDISCAMT=' . urlencode($charges['ShippinDiscount']); $padata .= '&PAYMENTREQUEST_0_INSURANCEAMT=' . urlencode($charges['InsuranceCost']); $padata .= '&PAYMENTREQUEST_0_AMT=' . urlencode($this->GetGrandTotal($products, $charges)); $padata .= '&PAYMENTREQUEST_0_CURRENCYCODE=' . urlencode(PPL_CURRENCY_CODE); //We need to execute the "DoExpressCheckoutPayment" at this point to Receive payment from user. $httpParsedResponseAr = $this->PPHttpPost('DoExpressCheckoutPayment', $padata); //vdump($httpParsedResponseAr); //Check if everything went ok.. if ("SUCCESS" == strtoupper($httpParsedResponseAr["ACK"]) || "SUCCESSWITHWARNING" == strtoupper($httpParsedResponseAr["ACK"])) { echo '<h2>Success</h2>'; echo 'Your Transaction ID : ' . urldecode($httpParsedResponseAr["PAYMENTINFO_0_TRANSACTIONID"]); /* //Sometimes Payment are kept pending even when transaction is complete. //hence we need to notify user about it and ask him manually approve the transiction */ if ('Completed' == $httpParsedResponseAr["PAYMENTINFO_0_PAYMENTSTATUS"]) { echo '<div style="color:green">Payment Received! Your product will be sent to you very soon!</div>'; } elseif ('Pending' == $httpParsedResponseAr["PAYMENTINFO_0_PAYMENTSTATUS"]) { echo '<div style="color:red">Transaction Complete, but payment may still be pending! ' . 'If that\'s the case, You can manually authorize this payment in your <a target="_new" href="http://www.paypal.com">Paypal Account</a></div>'; } $this->GetTransactionDetails(); } else { echo '<div style="color:red"><b>Error : </b>' . urldecode($httpParsedResponseAr["L_LONGMESSAGE0"]) . '</div>'; echo '<pre>'; print_r($httpParsedResponseAr); echo '</pre>'; } } else { // Request Transaction Details $this->GetTransactionDetails(); } }
<?php require_once 's/s.php'; $tpl = new STemplate(); $tpl->vars['show_login_box'] = _SESSION('show_login_box', true); $tpl->vars['login_error'] = ''; $tpl->vars['user_name'] = _SESSION('user_name'); if (inPOST('try_it')) { if (_POST('login') != 'test' || _POST('password') != '12345') { $tpl->vars['login_error'] = 'Invalid credentials. Try test/12345'; } else { $_SESSION['user_name'] = 'Test test'; $_SESSION['show_login_box'] = false; header('Location: ?' . (inGET('gimmedebug') ? 'gimmedebug=1' : '')); return; } } if (inPOST('try_again')) { $_SESSION['show_login_box'] = true; header('Location: ?' . (inGET('gimmedebug') ? 'gimmedebug=1' : '')); return; } echo $tpl->process(BASE . 'index.tpl'); if (DEBUG) { echo_debug(); }
public function fill_def_form_data(&$data, $node, $title_label = null, $path_type = 0, $separate_title = false) { $data['title'] = strlen($node->title) ? htmlspecialchars($node->title) : '<em>' . $this->get_new_name_for_node($node) . '</em>'; $data['rows'] = array(); if ($path_type != self::PATH_TYPE_HIDDEN_ALL) { $data['rows'][] = array('id' => '_title', 'label' => $title_label === null ? Loc::get('cms/admin/title-label') : $title_label, 'type' => 'text', 'value' => $node->title, 'validate' => 'SValidators.required'); } if ($path_type == self::PATH_TYPE_EDITABLE) { $data['rows'][] = array('id' => '_name', 'label' => Loc::get('cms/admin/path'), 'type' => 'html', 'value' => join('', array('<table cellspacing="0" cellpadding="0" width="100%" class="s-form-e"><tr>', '<td nowrap="nowrap"><strong>', htmlspecialchars($node->parent_path), '/</strong></td>', '<td width="100%"><input class="s-inp" type="text" name="_name" value="', htmlspecialchars($node->name), '" /></td>', '</tr></table>'))); } elseif ($path_type == self::PATH_TYPE_READONLY) { if ($node->name != '') { $data['rows'][] = array('id' => '_name', 'label' => Loc::get('cms/admin/path'), 'type' => 'html', 'value' => htmlspecialchars($node->parent_path) . '/<strong>' . htmlspecialchars($node->name) . '</strong>'); } } elseif ($path_type == self::PATH_TYPE_NAME) { if ($node->name != '') { $data['rows'][] = array('id' => '_name', 'label' => Loc::get('cms/admin/system-name'), 'type' => 'html', 'value' => htmlspecialchars($node->name)); } } if ($path_type != self::PATH_TYPE_HIDDEN_ALL && $separate_title) { $data['rows'][] = array('id' => '_title_separator', 'label' => false, 'type' => 'html', 'value' => '<hr />'); } foreach ($node->editable_fields as $field => $options) { if (!is_array($options)) { $options = array('type' => $options); } $options = $options + array('id' => $field, 'value' => $node->attr($field), 'label' => Cms::capitalize_words($field, ' ')); $data['rows'][] = $options; } if (_SESSION('s.cms.admin.just-saved')) { $_SESSION['s.cms.admin.just-saved'] = false; $data['info'] = Loc::get('cms/admin/saved'); $data['extra']['update_tree'] = true; $data['extra']['select_node'] = $node->id; } }