function xtc_hide_session_id()
{
    global $session_started;
    if ($session_started == true && defined('SID') && xtc_not_null(SID)) {
        return xtc_draw_hidden_field(xtc_session_name(), xtc_session_id());
    }
}
 function _paymentDataFormProcess($active_genre_identifier)
 {
     $payment_smarty = new Smarty();
     $payment_smarty->template_dir = DIR_FS_EXTERNAL . 'payone/templates/';
     $error = parent::get_error();
     if ($error != '') {
         $payment_smarty->assign('error', $error['error']);
     }
     $genre_config = $this->config[$active_genre_identifier];
     $payment_smarty->assign('genre_specific', $genre_config['genre_specific']);
     $standard_parameters = parent::_standard_parameters('creditcardcheck');
     $standard_parameters['responsetype'] = 'REDIRECT';
     $standard_parameters['storecarddata'] = 'yes';
     $standard_parameters['encoding'] = 'UTF-8';
     $standard_parameters['successurl'] = (ENABLE_SSL == true ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG . FILENAME_CHECKOUT_PROCESS . '?' . xtc_session_name() . '=' . xtc_session_id();
     $standard_parameters['errorurl'] = (ENABLE_SSL == true ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG . FILENAME_CHECKOUT_CONFIRMATION . '?' . xtc_session_name() . '=' . xtc_session_id() . '&conditions=true&payment_error=' . $this->code;
     $standard_parameters['hash'] = $this->payone->computeHash($standard_parameters, $this->global_config['key']);
     // not in hash but needed as hidden field
     $cctypes = $this->payone->getTypesForGenre($active_genre_identifier);
     for ($i = 0, $n = count($cctypes); $i < $n; $i++) {
         if ($cctypes[$i]['typekey'] == $_SESSION[$this->code]['cardtype']) {
             $standard_parameters['cardtype'] = $cctypes[$i]['shorttype'];
             break;
         }
     }
     $ccexpires_years = array();
     for ($y = 0, $base = date('y'); $y < 10; $y++) {
         $ccexpires_years[] = $base + $y;
     }
     $payment_smarty->assign('ccexpires_years', $ccexpires_years);
     $ccexpires_months = array();
     for ($m = 1; $m <= 12; $m++) {
         $ccexpires_months[] = sprintf('%02d', $m);
     }
     $payment_smarty->assign('ccexpires_months', $ccexpires_months);
     $hidden = array();
     foreach ($standard_parameters as $key => $value) {
         $hidden[] = xtc_draw_hidden_field($key, $value);
     }
     $payment_smarty->assign('hidden', implode("\n", $hidden) . "\n");
     $payment_smarty->assign('payonecss', DIR_WS_EXTERNAL . 'payone/css/payone.css');
     $payment_smarty->caching = 0;
     $module_form = $payment_smarty->fetch('checkout_payone_cc_form.html');
     return $module_form;
 }
 function get_html()
 {
     global $PHP_SELF;
     $config = $this->_payone->getConfig();
     $this->set_content_data('notice', $config['credit_risk']['notice']['text']);
     $this->set_content_data('confirmation', $config['credit_risk']['confirmation']['text']);
     $this->set_content_data('timeofcheck', $config['credit_risk']['timeofcheck']);
     $this->set_content_data('IMGBUTTON_CONFIRM', xtc_image_button('button_confirm.gif', IMAGE_BUTTON_CONFIRM));
     $this->set_content_data('IMGBUTTON_CANCEL', xtc_image_button('small_delete.gif', IMAGE_BUTTON_CANCEL));
     $hidden = xtc_draw_hidden_field('p1crcheck', 'true') . PHP_EOL;
     foreach ($_POST as $key => $value) {
         $hidden .= xtc_draw_hidden_field($key, $value) . PHP_EOL;
     }
     $this->set_content_data('form_action', xtc_draw_form('p1crconfirm', xtc_href_link(basename($PHP_SELF), '', 'SSL')) . $hidden);
     $this->set_content_data('payonecss', DIR_WS_EXTERNAL . 'payone/css/payone.css');
     $t_html_output = $this->_payone->build_html('checkout_payone_cr.html', $this->content);
     return $t_html_output;
 }
                ?>
">
                    </form>
                  </div>
                  <?php 
            }
            if ((in_array('captured', $status_array) || in_array('completed', $status_array)) && $admin_info_array['total'] > $amount_array['refund']) {
                ?>
                  <div class="pp_capture pp_box">
                    <div class="pp_boxheading"><?php 
                echo TEXT_PAYPAL_REFUND;
                ?>
</div>
                    <?php 
                echo xtc_draw_form('capture', FILENAME_ORDERS, xtc_get_all_get_params());
                echo xtc_draw_hidden_field('cmd', 'refund');
                echo '<div class="refund_row">';
                echo '<div class="' . (10 - $count['refund'] > 0 ? 'info_message' : 'error_message') . '">' . TEXT_PAYPAL_REFUND_LEFT . ' ' . (10 - $count['refund']) . '</div>';
                echo '<br/>';
                echo '<label for="refund_comment" style="vertical-align: top; margin-top: 5px;">' . TEXT_PAYPAL_REFUND_COMMENT . '</label>';
                echo xtc_draw_textarea_field('refund_comment', '', '60', '8', '', 'id="refund_comment"');
                echo '<br/>';
                echo '<label for="refund_price">' . TEXT_PAYPAL_REFUND_AMOUNT . '</label>';
                echo xtc_draw_input_field('refund_price', '', 'id="refund_price" style="width: 135px"');
                echo '</div>';
                ?>
                    <br />
                    <input type="submit" class="button" name="refund_submit" value="<?php 
                echo TEXT_PAYPAL_REFUND_SUBMIT;
                ?>
">
Beispiel #5
0
              <?php 
    echo xtc_draw_form('orders', FILENAME_ORDERS, '', 'get');
    ?>
                <?php 
    echo HEADING_TITLE_SEARCH . ' ' . xtc_draw_input_field('oID', '', 'size="12"') . xtc_draw_hidden_field('action', 'edit') . xtc_draw_hidden_field(xtc_session_name(), xtc_session_id());
    ?>
              </form>
</td>
  </tr>
  <tr>
    <td class="main" valign="top">Customers</td>
    <td class="main" valign="top" align="right"><?php 
    echo xtc_draw_form('status', FILENAME_ORDERS, '', 'get');
    ?>
                <?php 
    echo HEADING_TITLE_STATUS . ' ' . xtc_draw_pull_down_menu('status', array_merge(array(array('id' => '', 'text' => TEXT_ALL_ORDERS)), array(array('id' => '0', 'text' => TEXT_VALIDATING)), $orders_statuses), '', 'onChange="this.form.submit();"') . xtc_draw_hidden_field(xtc_session_name(), xtc_session_id());
    ?>
              </form></td>
  </tr>
</table>




        </td>
      </tr>
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
              <tr class="dataTableHeadingRow">
 function process_button()
 {
     global $order;
     $payment_type = $this->title;
     $process_button_string = xtc_draw_hidden_field('paymentType', $payment_type);
     if (MODULE_PAYMENT_BILLSAFE_2HP_LAYER == 'true') {
         if (MODULE_PAYMENT_BILLSAFE_2HP_SERVER == 'Live') {
             $lisb = 'false';
         } else {
             $lisb = 'true';
         }
         $process_button_string .= '<script type="text/javascript" src="https://content.billsafe.de/lpg/js/client.js"></script>
     <script type="text/javascript"><!--
       var formElement = document.getElementById(\'checkout_confirmation\');
       var lpg = new BillSAFE.LPG.client({form: formElement, conditions: {installment: [{element: \'paymentType\', value: \'' . $payment_type . '\'}]}, sandbox: ' . $lisb . '});
     //--></script>';
     }
     return $process_button_string;
 }
 function process_button()
 {
     global $_POST;
     $process_button_string = xtc_draw_hidden_field('banktransfer_blz', $this->iban_mode ? $this->banktransfer_bic : $this->banktransfer_blz) . xtc_draw_hidden_field('banktransfer_bankname', $this->banktransfer_bankname) . xtc_draw_hidden_field('banktransfer_number', $this->iban_mode ? $this->banktransfer_iban : $this->banktransfer_number) . xtc_draw_hidden_field('banktransfer_owner', $this->banktransfer_owner) . xtc_draw_hidden_field('banktransfer_owner_email', $this->banktransfer_owner_email) . xtc_draw_hidden_field('banktransfer_status', $this->banktransfer_status) . xtc_draw_hidden_field('banktransfer_prz', $this->banktransfer_prz) . (isset($_POST['banktransfer_fax']) ? xtc_draw_hidden_field('banktransfer_fax', $this->banktransfer_fax) : '');
     return $process_button_string;
 }
// load the selected payment module
require_once DIR_WS_CLASSES . 'payment.php';
$payment_modules = new payment($payment_class);
$smarty->assign('PAYMENT_INFO', $payment_modules->success());
// BOF - GTB - 2011-04-12 - changes for Guest Account
// $smarty->assign('FORM_ACTION', xtc_draw_form('order', xtc_href_link(FILENAME_CHECKOUT_SUCCESS, 'action=update', 'SSL')));
$smarty->assign('FORM_ACTION', xtc_draw_form('order', xtc_href_link(FILENAME_CHECKOUT_SUCCESS, 'action=update', 'SSL')) . xtc_draw_hidden_field('account_type', $_SESSION['account_type']));
// EOF - GTB - 2011-04-12 - changes for Guest Account
//BOF - Dokuman - 2009-11-23 - Make the print preview clickable, i.e. change mouse cursor to hand symbol
$smarty->assign('BUTTON_CONTINUE', xtc_image_submit('button_continue.gif', IMAGE_BUTTON_CHECKOUT_START_PAGE));
//$smarty->assign('BUTTON_PRINT', '<img src="'.'templates/'.CURRENT_TEMPLATE.'/buttons/'.$_SESSION['language'].'/button_print.gif" style="cursor:pointer" onclick="window.open(\''.xtc_href_link(FILENAME_PRINT_ORDER, 'oID='.$orders['orders_id']).'\', \'popup\', \'toolbar=0, width=640, height=600\')" />');
//BOF - Tomcraft - 2010-04-03 - unified popups with scrollbars and make them resizable
//$smarty->assign('BUTTON_PRINT', '<a style="cursor:pointer" onclick="javascript:window.open(\''.xtc_href_link(FILENAME_PRINT_ORDER, 'oID='.$orders['orders_id']).'\', \'popup\', \'toolbar=0, width=640, height=600\')"><img src="'.'templates/'.CURRENT_TEMPLATE.'/buttons/'.$_SESSION['language'].'/button_print.gif" alt="'.TEXT_PRINT.'" /></a>');
//BOF - GTB - 2010-09-15 - change Print Button to Form for Guests
//$smarty->assign('BUTTON_PRINT', '<a style="cursor:pointer" onclick="javascript:window.open(\''.xtc_href_link(FILENAME_PRINT_ORDER, 'oID='.$orders['orders_id']).'\', \'popup\', \'toolbar=no,location=no,directories=no,status=no,menubar=no,scrollbars=yes,resizable=yes,copyhistory=no, width=640, height=600\')"><img src="'.'templates/'.CURRENT_TEMPLATE.'/buttons/'.$_SESSION['language'].'/button_print.gif" alt="'.TEXT_PRINT.'" /></a>');
$smarty->assign('FORM_ACTION_PRINT', xtc_draw_form('print_order', xtc_href_link(FILENAME_PRINT_ORDER, 'oID=' . $orders['orders_id'], 'SSL'), 'post', 'target="popup" onsubmit="javascript:window.open(\'' . xtc_href_link(FILENAME_PRINT_ORDER, 'oID=' . $orders['orders_id'], 'SSL') . '\', \'popup\', \'toolbar=no,location=no,directories=no,status=no,menubar=no,scrollbars=yes,resizable=yes,copyhistory=no, ' . POPUP_PRINT_ORDER_SIZE . '\')"') . xtc_draw_hidden_field('customer_id', $_SESSION['customer_id']));
$smarty->assign('BUTTON_PRINT', xtc_image_submit('print.gif', TEXT_PRINT));
//EOF - GTB - 2010-09-15 - change Print Button to Form for Guests
//EOF - Tomcraft - 2010-04-03 - unified popups with scrollbars and make them resizable
//EOF - Dokuman - 2009-11-23 - Make the print preview clickable, i.e. change mouse cursor to hand symbol
$smarty->assign('FORM_END', '</form>');
// GV Code Start
$gv_query = xtc_db_query("select amount from " . TABLE_COUPON_GV_CUSTOMER . " where customer_id='" . $_SESSION['customer_id'] . "'");
if ($gv_result = xtc_db_fetch_array($gv_query)) {
    if ($gv_result['amount'] > 0) {
        $smarty->assign('GV_SEND_LINK', xtc_href_link(FILENAME_GV_SEND));
    }
}
// GV Code End
// Google Conversion tracking
if (GOOGLE_CONVERSION == 'true') {
function showSpecialsBox()
{
    global $pInfo;
    //web28 - 2010-07-27 - show products_price
    // include localized categories specials strings
    require_once DIR_FS_LANGUAGES . $_SESSION['language'] . '/admin/categories_specials.php';
    //BOF web28 - 2010-07-27 - show products_price
    if (PRICE_IS_BRUTTO == 'true') {
        $products_price_sp = xtc_round($pInfo->products_price * ((100 + xtc_get_tax_rate($pInfo->products_tax_class_id)) / 100), PRICE_PRECISION);
        $products_price_netto_sp = TEXT_NETTO . '<strong>' . $pInfo->products_price * (xtc_get_tax_rate($sInfo->products_tax_class_id) + 100) / 100 . '</strong>  ';
    } else {
        $products_price_sp = xtc_round($pInfo->products_price, PRICE_PRECISION);
        $products_price_netto_sp = '';
    }
    //EOF web28 - 2010-07-27 - show products_price
    // if editing an existing product
    if (isset($_GET['pID'])) {
        $specials_query = "SELECT p.products_tax_class_id,\n                                p.products_id,\n                                p.products_price,\n                                pd.products_name,\n                                s.specials_id,\n                                s.specials_quantity,\n                                s.specials_new_products_price,\n                                s.specials_date_added,\n                                s.specials_last_modified,\n                                s.expires_date,\n                                s.status\n                           FROM " . TABLE_PRODUCTS . " p,\n                                " . TABLE_PRODUCTS_DESCRIPTION . " pd,\n                                " . TABLE_SPECIALS . " s\n                          WHERE p.products_id = pd.products_id\n                            AND pd.language_id = '" . (int) $_SESSION['languages_id'] . "'\n                            AND p.products_id = s.products_id\n                            AND s.products_id = '" . (int) $_GET['pID'] . "'";
        //DokuMan - 2011-11-8 - added missing s.status from SP1b
        $specials_query = xtDBquery($specials_query);
        // if there exists already a special for this product
        if (xtc_db_num_rows($specials_query, true) > 0) {
            $special = xtc_db_fetch_array($specials_query, true);
            $sInfo = new objectInfo($special);
        }
    }
    $price = $sInfo->products_price;
    $new_price = $sInfo->specials_new_products_price;
    $new_price_netto = '';
    //web28 - 2010-07-27 - show special_price netto
    if (PRICE_IS_BRUTTO == 'true') {
        $price_netto = xtc_round($price, PRICE_PRECISION);
        if ($price > 0) {
            $new_price_netto = TEXT_NETTO . '<strong>' . xtc_round($new_price, PRICE_PRECISION) . '</strong>';
            //web28 - 2010-07-27 - show special_price netto
        }
        $price = $price * (xtc_get_tax_rate($sInfo->products_tax_class_id) + 100) / 100;
        $new_price = $new_price * (xtc_get_tax_rate($sInfo->products_tax_class_id) + 100) / 100;
    }
    $price = xtc_round($price, PRICE_PRECISION);
    $new_price = xtc_round($new_price, PRICE_PRECISION);
    // build the expires date in the format YYYY-MM-DD
    if (isset($_GET['pID']) and xtc_db_num_rows($specials_query, true) > 0 and $sInfo->expires_date != 0) {
        $expires_date = substr($sInfo->expires_date, 0, 4) . "-" . substr($sInfo->expires_date, 5, 2) . "-" . substr($sInfo->expires_date, 8, 2);
    } else {
        $expires_date = "";
    }
    if ($sInfo->status == 1) {
        $status = 'checked="checked"';
    } else {
        $status = '';
    }
    // tell the storing script if to update existing special,
    // or to insert a new one
    echo xtc_draw_hidden_field('specials_action', isset($_GET['pID']) && xtc_db_num_rows($specials_query, true) > 0 ? "update" : "insert");
    echo xtc_draw_hidden_field('tax_rate', xtc_get_tax_rate($pInfo->products_tax_class_id));
    //web28 - 2010-07-27 - add hidden field
    echo xtc_draw_hidden_field('products_price_hidden', $pInfo->products_price);
    //web28 - 2010-07-27 - FIX wrong specials price
    if (isset($_GET['pID']) and xtc_db_num_rows($specials_query, true) > 0) {
        echo xtc_draw_hidden_field('specials_id', $sInfo->specials_id);
    }
    ?>

<script type="text/javascript">
  var specialExpires = new ctlSpiffyCalendarBox("specialExpires", "new_product", "specials_expires","btnDate2","<?php 
    echo $expires_date;
    ?>
",2);
</script>
<script language="JavaScript" type="text/JavaScript">
  function showSpecial() {
    //alert(document.getElementById("special").style.display);
  if (document.getElementById("special").style.display =="none" || document.getElementById("special").style.display =="") {
    document.getElementById("special").style.display="block";
    document.getElementById('butSpecial').innerHTML= '<a href="JavaScript:showSpecial()" class="btn btn-default">&laquo; Sonderangebot</a>';
  } else {
    document.getElementById("special").style.display="none";
    document.getElementById('butSpecial').innerHTML= '<a href="JavaScript:showSpecial()" class="btn btn-default">Sonderangebot &raquo;</a>';
    }
  }
</script>
<style type='text/css'>#special{display: none;}</style>
<noscript>
<style type="text/css">#special{display: block;}</style>
</noscript>
  <div id="special">
    <div style="padding: 8px 0px 3px 5px;">
          <div class="main">
            <strong><?php 
    echo SPECIALS_TITLE;
    ?>
</strong>
          </div>
    </div>
    <div class='col-xs-12' style="width: 100%; border: 1px solid; border-color: #aaaaaa; padding:5px; background-color: #f3f3f3;">   
            <?php 
    if (!isset($_GET['pID'])) {
        ?>
            <div class="col-xs-12 col-sm-9 col-md-5 col-lg-5">
              <div class="main col-xs-12 col-sm-4"><?php 
        echo TEXT_SPECIALS_NO_PID;
        ?>
</div>             
            </div>
            <div class='clearfix' ></div>
            <?php 
    } else {
        ?>
            <div class="col-xs-12 col-xs-12 col-sm-9 col-md-5 col-lg-5 ">
              <div class="main col-xs-12 col-sm-4"><?php 
        echo TEXT_PRODUCTS_PRICE;
        ?>
</div>
              <div class="main col-xs-12 col-sm-4"><?php 
        echo $products_price_sp;
        echo $products_price_netto_sp;
        ?>
</div>
            </div>   
            <div class='clearfix' ></div>
            <div class="col-xs-12 col-xs-12 col-sm-9 col-md-5 col-lg-5">
              <div class="main col-xs-12 col-sm-4" >
                <?php 
        echo TEXT_SPECIALS_SPECIAL_PRICE;
        ?>
              </div>
              <div class="main col-xs-12 col-sm-4" >
                <?php 
        echo xtc_draw_input_field('specials_price', $new_price, 'style="width: 135px"') . '&nbsp;&nbsp;&nbsp;' . $new_price_netto;
        ?>
              </div>
              <div class="main col-xs-12 col-sm-4" >
                <?php 
        if (isset($_GET['pID']) and xtc_db_num_rows($specials_query, true) > 0) {
            ?>
                <input type="checkbox" name="specials_delete" value="true" id="input_specials_delete"  onclick="if(this.checked==true)return confirm('<?php 
            echo TEXT_INFO_DELETE_INTRO;
            ?>
');"style="vertical-align:middle;"/><label for="input_specials_delete">&nbsp;<?php 
            echo TEXT_INFO_HEADING_DELETE_SPECIALS;
            ?>
</label>
                <?php 
        }
        ?>
              </div>
            </div>
            <div class='clearfix' ></div>
            <div class="col-xs-12 col-xs-12 col-sm-9 col-md-5 col-lg-5">
              <div class="main col-xs-12 col-sm-4">
                <?php 
        echo TEXT_SPECIALS_SPECIAL_QUANTITY;
        ?>
&nbsp;
              </div>
              <div class="main col-xs-12 col-sm-4">
                <?php 
        echo xtc_draw_input_field('specials_quantity', $sInfo->specials_quantity, 'style="width: 135px"');
        ?>
              </div>
            </div>
            <div class='clearfix' ></div>
            <?php 
        if (isset($_GET['pID']) and xtc_db_num_rows($specials_query, true) > 0) {
            ?>
              <div class="col-xs-12 col-xs-12 col-sm-9 col-md-5 col-lg-5">
                <div class="main col-xs-12 col-sm-4"><?php 
            echo TEXT_INFO_DATE_ADDED;
            ?>
</div>
                <div class="main col-xs-12 col-sm-4"><?php 
            echo xtc_date_short($sInfo->specials_date_added);
            ?>
</div>
                <div class="main col-xs-12 col-sm-4">&nbsp;</div>
              </div>
            <div class='clearfix' ></div>
              <div class="col-xs-12 col-xs-12 col-sm-9 col-md-5 col-lg-5">
                <div class="main col-xs-12 col-sm-4"><?php 
            echo TEXT_INFO_LAST_MODIFIED;
            ?>
</div>
                <div class="main col-xs-12 col-sm-4"><?php 
            echo xtc_date_short($sInfo->specials_last_modified);
            ?>
</div>
                <div class="main col-xs-12 col-sm-4">&nbsp;</div>
              </div>
            <div class='clearfix' ></div>
            <?php 
        }
        ?>
            <div class="col-xs-12 col-xs-12 col-sm-9 col-md-5 col-lg-5"> 
              <div class="main col-xs-12 col-sm-4">
                <?php 
        echo TEXT_SPECIALS_EXPIRES_DATE;
        ?>
              </div>
              <div class="main col-xs-12 col-sm-4">
                <script type="text/javascript">specialExpires.writeControl(); specialExpires.dateFormat="yyyy-MM-dd";</script>
                <noscript>
                <?php 
        echo xtc_draw_input_field('specials_expires', $expires_date, 'style="width: 135px"');
        ?>
                </noscript>
              </div>
              <div class="main col-xs-12 col-sm-4">
                <?php 
        if (isset($_GET['pID']) and xtc_db_num_rows($specials_query, true) > 0) {
            ?>
                <input type="checkbox" name="specials_status" value="1" id="input_specials_status"  style="vertical-align:middle;" <?php 
            echo $status;
            ?>
/><label for="input_specials_status">&nbsp;<?php 
            echo TEXT_EDIT_STATUS;
            ?>
</label>
                <?php 
        }
        ?>
              </div>
            </div>
            <div class='clearfix' ></div>
            <div class="col-xs-12">
              <div class="main" style="padding:3px; background: #D8D8D8;">
                <?php 
        echo TEXT_SPECIALS_PRICE_TIP;
        ?>
              </div>
            </div>
            <?php 
    }
    ?>
    </div>
  </div>
<?php 
}
 if ($_SESSION['customers_status']['customers_status_id'] != 0) {
     xtc_db_query("-- product_info.php\n        UPDATE " . TABLE_PRODUCTS_DESCRIPTION . "\n           SET products_viewed = products_viewed+1\n         WHERE products_id = '" . $product->data['products_id'] . "'\n           AND language_id = " . $_SESSION['languages_id']);
 }
 // Get manufacturer name etc. for the product page
 $manufacturer_query = xtc_db_query("SELECT m.manufacturers_id,\n                                             m.manufacturers_name,\n                                             m.manufacturers_image,\n                                             mi.manufacturers_url\n                                        FROM " . TABLE_MANUFACTURERS . " m\n                                   LEFT JOIN " . TABLE_MANUFACTURERS_INFO . " mi\n                                          ON (m.manufacturers_id = mi.manufacturers_id\n                                         AND mi.languages_id = '" . (int) $_SESSION['languages_id'] . "'),\n                                             " . TABLE_PRODUCTS . " p\n                                       WHERE p.products_id = '" . $product->data['products_id'] . "'\n                                         AND p.manufacturers_id = m.manufacturers_id");
 if (xtc_db_num_rows($manufacturer_query)) {
     $manufacturer = xtc_db_fetch_array($manufacturer_query);
     $info_smarty->assign('MANUFACTURER_IMAGE', !empty($manufacturer['manufacturers_image']) ? DIR_WS_IMAGES . $manufacturer['manufacturers_image'] : '');
     $info_smarty->assign('MANUFACTURER', $manufacturer['manufacturers_name']);
     $info_smarty->assign('MANUFACTURER_LINK', xtc_href_link(FILENAME_DEFAULT, xtc_manufacturer_link($manufacturer['manufacturers_id'], $manufacturer['manufacturers_name'])));
 }
 // build products price
 $products_price = $xtPrice->xtcGetPrice($product->data['products_id'], $format = true, 1, $product->data['products_tax_class_id'], $product->data['products_price'], 1);
 // check if customer is allowed to add to cart
 if ($_SESSION['customers_status']['customers_status_show_price'] != '0' && ($_SESSION['customers_status']['customers_fsk18'] == '1' && $product->data['products_fsk18'] == '0' || $_SESSION['customers_status']['customers_fsk18'] != '1')) {
     $add_pid_to_qty = xtc_draw_hidden_field('products_id', $product->data['products_id']);
     $info_smarty->assign('ADD_QTY', xtc_draw_input_field('products_qty', '1', $hide_qty ? '' : 'size="3"', $hide_qty ? 'hidden' : 'text') . ' ' . $add_pid_to_qty);
     $info_smarty->assign('ADD_CART_BUTTON', xtc_image_submit('button_in_cart.gif', IMAGE_BUTTON_IN_CART));
 }
 // show expiry date of active special products
 $special_expires_date_query = "SELECT expires_date\n                                   FROM " . TABLE_SPECIALS . "\n                                  WHERE products_id = '" . $product->data['products_id'] . "'\n                                    AND status = '1'";
 $special_expires_date_query = xtDBquery($special_expires_date_query);
 $sDate = xtc_db_fetch_array($special_expires_date_query, true);
 $info_smarty->assign('PRODUCTS_EXPIRES', $sDate['expires_date'] != '0000-00-00 00:00:00' ? xtc_date_short($sDate['expires_date']) : '');
 // FSK18
 $info_smarty->assign('PRODUCTS_FSK18', $product->data['products_fsk18'] == '1' ? 'true' : '');
 //get shippingstatus image and name
 if (ACTIVATE_SHIPPING_STATUS == 'true') {
     $info_smarty->assign('SHIPPING_NAME', $main->getShippingStatusName($product->data['products_shippingtime']));
     $info_smarty->assign('SHIPPING_IMAGE', $main->getShippingStatusImage($product->data['products_shippingtime']));
     // BOF - Tutorial: Umsetzung der EU-Verbraucherrichtlinie vom 13.06.2014
            xtc_db_query("UPDATE " . TABLE_CUSTOMERS_INFO . " SET customers_info_date_account_last_modified = now() WHERE customers_info_id = '" . (int) $_SESSION['customer_id'] . "'");
            $messageStack->add_session('account', SUCCESS_PASSWORD_UPDATED, 'success');
            xtc_redirect(xtc_href_link(FILENAME_ACCOUNT, '', 'SSL'));
        } else {
            $error = true;
            $messageStack->add('account_password', ERROR_CURRENT_PASSWORD_NOT_MATCHING);
        }
    }
}
$breadcrumb->add(NAVBAR_TITLE_1_ACCOUNT_PASSWORD, xtc_href_link(FILENAME_ACCOUNT, '', 'SSL'));
$breadcrumb->add(NAVBAR_TITLE_2_ACCOUNT_PASSWORD, xtc_href_link(FILENAME_ACCOUNT_PASSWORD, '', 'SSL'));
require DIR_WS_INCLUDES . 'header.php';
if ($messageStack->size('account_password') > 0) {
    $smarty->assign('error', $messageStack->output('account_password'));
}
$smarty->assign('FORM_ACTION', xtc_draw_form('account_password', xtc_href_link(FILENAME_ACCOUNT_PASSWORD, '', 'SSL'), 'post', 'onsubmit="return check_form(account_password);"') . xtc_draw_hidden_field('action', 'process'));
$smarty->assign('INPUT_ACTUAL', xtc_draw_password_fieldNote(array('name' => 'password_current', 'text' => '&nbsp;' . (xtc_not_null(ENTRY_PASSWORD_CURRENT_TEXT) ? '<span class="inputRequirement">' . ENTRY_PASSWORD_CURRENT_TEXT . '</span>' : ''))));
$smarty->assign('INPUT_NEW', xtc_draw_password_fieldNote(array('name' => 'password_new', 'text' => '&nbsp;' . (xtc_not_null(ENTRY_PASSWORD_NEW_TEXT) ? '<span class="inputRequirement">' . ENTRY_PASSWORD_NEW_TEXT . '</span>' : ''))));
$smarty->assign('INPUT_CONFIRM', xtc_draw_password_fieldNote(array('name' => 'password_confirmation', 'text' => '&nbsp;' . (xtc_not_null(ENTRY_PASSWORD_CONFIRMATION_TEXT) ? '<span class="inputRequirement">' . ENTRY_PASSWORD_CONFIRMATION_TEXT . '</span>' : ''))));
$smarty->assign('BUTTON_BACK', '<a href="' . xtc_href_link(FILENAME_ACCOUNT, '', 'SSL') . '">' . xtc_image_button('button_back.gif', IMAGE_BUTTON_BACK) . '</a>');
$smarty->assign('BUTTON_SUBMIT', xtc_image_submit('button_continue.gif', IMAGE_BUTTON_CONTINUE));
$smarty->assign('FORM_END', '</form>');
$smarty->assign('language', $_SESSION['language']);
$smarty->caching = 0;
$main_content = $smarty->fetch(CURRENT_TEMPLATE . '/module/account_password.html');
$smarty->assign('language', $_SESSION['language']);
$smarty->assign('main_content', $main_content);
$smarty->caching = 0;
if (!defined('RM')) {
    $smarty->load_filter('output', 'note');
}
</div>
          </div>
          <?php 
if (!isset($_GET['action'])) {
    echo '<div class="pageHeading flt-l" style="margin: 3px 40px;"><a class="button" href="' . xtc_href_link(basename($PHP_SELF), 'action=new') . '">' . BUTTON_INSERT . '</a></div>';
}
include_once DIR_FS_EXTERNAL . 'paypal/modules/admin_menu.php';
?>
          <div class="clear div_box mrg5" style="margin-top:-1px;">
            <table class="clear tableConfig">
            <?php 
if (isset($_GET['action']) && $_GET['action'] == 'edit') {
    $list = $paypal->get_profile($_GET['id']);
    echo xtc_draw_form('config', basename($PHP_SELF), xtc_get_all_get_params(array('action')) . 'action=update');
    for ($i = 0, $n = count($list); $i < $n; $i++) {
        echo xtc_draw_hidden_field('config[id]', $list[$i]['id']);
        ?>
                    <tr>
                      <td class="dataTableConfig col-left"><?php 
        echo TEXT_PAYPAL_PROFILE_STATUS;
        ?>
</td>
                      <td class="dataTableConfig col-middle"><?php 
        echo draw_on_off_selection('config[status]', $status_array, $list[$i]['status']);
        ?>
</td>
                      <td class="dataTableConfig col-right"><?php 
        echo TEXT_PAYPAL_PROFILE_STATUS_INFO;
        ?>
</td>
                    </tr>
echo '<a class="btn btn-default" href="javascript:SwitchCheck()" onclick="this.blur()">' . BUTTON_REVERSE_SELECTION . '</a>&nbsp;';
echo '<a class="btn btn-default" href="javascript:SwitchProducts()" onclick="this.blur()">' . BUTTON_SWITCH_PRODUCTS . '</a>&nbsp;';
echo '<a class="btn btn-default" href="javascript:SwitchCategories()" onclick="this.blur()">' . BUTTON_SWITCH_CATEGORIES . '</a>&nbsp;';
?>
            </div>
            </div>

          <!-- categories & products column ENDS -->
          <?php 
$heading = array();
$contents = array();
switch ($action) {
    case 'copy_to':
        //close multi-action form, not needed here
        $heading[] = array('text' => '</form><b>' . TEXT_INFO_HEADING_COPY_TO . '</b>');
        $contents = array('form' => xtc_draw_form('copy_to', FILENAME_CATEGORIES, 'action=copy_to_confirm&cPath=' . $cPath) . xtc_draw_hidden_field('products_id', $pInfo->products_id));
        $contents[] = array('text' => TEXT_INFO_COPY_TO_INTRO);
        $contents[] = array('text' => '<br />' . TEXT_INFO_CURRENT_CATEGORIES . '<br /><b>' . xtc_output_generated_category_path($pInfo->products_id, 'product') . '</b>');
        if (QUICKLINK_ACTIVATED == 'true') {
            $contents[] = array('text' => '<hr noshade>');
            $contents[] = array('text' => '<b>' . TEXT_MULTICOPY . '</b><br />' . TEXT_MULTICOPY_DESC);
            $cat_tree = xtc_get_category_tree('0', '', '0');
            $tree = '';
            for ($i = 0; $n = sizeof($cat_tree), $i < $n; $i++) {
                $tree .= '<input type="checkbox" name="cat_ids[]" value="' . $cat_tree[$i]['id'] . '"><font size="1">' . $cat_tree[$i]['text'] . '</font><br />';
            }
            $contents[] = array('text' => $tree . '<br /><hr noshade>');
            $contents[] = array('text' => '<b>' . TEXT_SINGLECOPY . '</b><br />' . TEXT_SINGLECOPY_DESC);
        }
        $contents[] = array('text' => '<br />' . TEXT_CATEGORIES . '<br />' . xtc_draw_pull_down_menu('categories_id', xtc_get_category_tree('0', '', '0'), $current_category_id));
        $contents[] = array('text' => '<br />' . TEXT_HOW_TO_COPY . '<br />' . xtc_draw_radio_field('copy_as', 'link', true) . ' ' . TEXT_COPY_AS_LINK . '<br />' . xtc_draw_radio_field('copy_as', 'duplicate') . ' ' . TEXT_COPY_AS_DUPLICATE);
    $groups_array = array();
    $groups_query = xtc_db_query("select distinct affiliate_banners_group from " . TABLE_AFFILIATE_BANNERS . " order by affiliate_banners_group");
    while ($groups = xtc_db_fetch_array($groups_query)) {
        $groups_array[] = array('id' => $groups['affiliate_banners_group'], 'text' => $groups['affiliate_banners_group']);
    }
    ?>
      <tr>
        <td><?php 
    echo xtc_draw_separator('pixel_trans.gif', '1', '10');
    ?>
</td>
      </tr>
      <tr><?php 
    echo xtc_draw_form('new_banner', FILENAME_AFFILIATE_BANNER_MANAGER, 'page=' . $_GET['page'] . '&action=' . $form_action, 'post', 'enctype="multipart/form-data"');
    if ($form_action == 'update') {
        echo xtc_draw_hidden_field('affiliate_banners_id', $abID);
    }
    ?>
        <td><table border="0" cellspacing="2" cellpadding="2">
          <tr>
            <td class="main"><?php 
    echo TEXT_BANNERS_TITLE;
    ?>
</td>
            <td class="main"><?php 
    echo xtc_draw_input_field('affiliate_banners_title', $abInfo->affiliate_banners_title, '', true);
    ?>
</td>
          </tr>
          <tr>
            <td colspan="2"><?php 
<tr>
<td class="dataTableHeadingContent" width="10%" align="left">&nbsp;</td>
<td class="dataTableHeadingContent" width="30%" align="left">&nbsp;</td>
<td class="dataTableHeadingContent" width="30%" align="left">&nbsp;</td>
<td class="dataTableHeadingContent" width="30%" align="left">&nbsp;</td>
</tr>
</table>
</div>
</form>
<br />
<br />
<?php 
    echo xtc_draw_form('adress_edit', FILENAME_ORDERS_EDIT, 'action=address_edit', 'post');
    echo xtc_draw_hidden_field('oID', $_GET['oID']);
    echo xtc_draw_hidden_field('cID', $order->customer['ID']);
    ?>
<div class='col-xs-12 hidden-lg hidden-md'>
<table border="0" width="100%" cellspacing="0" cellpadding="2">
<tr class="dataTableHeadingRow">
    <td class="dataTableHeadingContent" width="10%" align="left">&nbsp;</td>
    <td class="dataTableHeadingContent" width="30%" align="left"><?php 
    echo TEXT_INVOICE_ADDRESS;
    ?>
</td>
</tr>
<tr class="dataTableRow">
    <td class="dataTableContent" align="left">
    <?php 
    echo TEXT_COMPANY;
    ?>
 function process_button()
 {
     global $HTTP_POST_VARS, $order, $xtPrice;
     $_SESSION['pi']['coupon'] = $GLOBALS['ot_coupon']->output;
     $payment_type = 'RATEPAY';
     if ($_SESSION['customers_status']['customers_status_show_price_tax'] == 0 && $_SESSION['customers_status']['customers_status_add_tax_ot'] == 1) {
         $this->amount = $order->info['total'] + $order->info['tax'];
     } else {
         $this->amount = $order->info['total'];
     }
     $this->amount = round($xtPrice->xtcCalculateCurrEx($this->amount, $_SESSION['currency']), $xtPrice->get_decimal_places($_SESSION['currency']));
     $this->amount = number_format($this->amount, 2, '.', '');
     $currency = $_SESSION['currency'];
     $process_button_string = xtc_draw_hidden_field('paymentType', $payment_type);
     return $process_button_string;
 }
            break;
        }
    }
}
if (!isset($_GET['action']) && $new != false) {
    echo '<div class="pageHeading flt-l" style="margin: 3px 40px;"><a class="button" href="' . xtc_href_link(basename($PHP_SELF), 'action=new') . '">' . BUTTON_INSERT . '</a></div>';
}
include_once DIR_FS_EXTERNAL . 'paypal/modules/admin_menu.php';
?>
          <div class="clear div_box mrg5" style="margin-top:-1px;">
            <table class="clear tableConfig">
            <?php 
if (isset($_GET['action']) && $_GET['action'] == 'edit') {
    $list = $paypal->edit_webhook($_GET['id']);
    echo xtc_draw_form('config', basename($PHP_SELF), xtc_get_all_get_params(array('action')) . 'action=update');
    echo xtc_draw_hidden_field('config[id]', $_GET['id']);
    for ($i = 0, $t = count($list); $i < $t; $i++) {
        ?>
                  <tr>
                    <td class="dataTableConfig col-left"><?php 
        echo $list[$i]['name'];
        ?>
</td>
                    <td class="dataTableConfig col-middle">
                      <?php 
        echo '<div class="check">' . xtc_draw_checkbox_field('config[data][' . $i . '][name]', $list[$i]['name'], $list[$i]['status'] === true ? 'checked="checked"' : '') . '</div>';
        echo '<div class="drop">' . xtc_draw_pull_down_menu('config[data][' . $i . '][orders_status]', $orders_statuses, $list[$i]['orders_status'], 'style="width: 300px;"') . '</div>';
        ?>
                    </td>
                    <td class="dataTableConfig col-right"><?php 
        echo $list[$i]['description'];
    if ($confirmation = $payment_modules->confirmation()) {
        $payment_info = $confirmation['title'];
        for ($i = 0, $n = sizeof($confirmation['fields']); $i < $n; $i++) {
            $payment_info .= '<table>
								<tr>
						                <td>' . xtc_draw_separator('pixel_trans.gif', '10', '1') . '</td>
						                <td class="main">' . $confirmation['fields'][$i]['title'] . '</td>
						                <td>' . xtc_draw_separator('pixel_trans.gif', '10', '1') . '</td>
						                <td class="main">' . stripslashes($confirmation['fields'][$i]['field']) . '</td>
						              </tr></table>';
        }
        $smarty->assign('PAYMENT_INFORMATION', $payment_info);
    }
}
if (xtc_not_null($order->info['comments'])) {
    $smarty->assign('ORDER_COMMENTS', nl2br(htmlspecialchars($order->info['comments'])) . xtc_draw_hidden_field('comments', $order->info['comments']));
}
// Call Refresh Hook
$payment_modules->refresh();
if (isset(${$_SESSION}['payment']->form_action_url) && !${$_SESSION}['payment']->tmpOrders && $_SESSION['payment'] != 'no_payment') {
    $form_action_url = ${$_SESSION}['payment']->form_action_url;
} else {
    $form_action_url = xtc_href_link(FILENAME_CHECKOUT_PROCESS, '', 'SSL');
}
// BOF GM_MOD saferpay
// we need a source for our js to be loaded befor form
$sPreForm = '';
if (method_exists(${$_SESSION}['payment'], 'confirm_pre_form')) {
    $sPreForm = ${$_SESSION}['payment']->confirm_pre_form();
}
$smarty->assign('CHECKOUT_FORM', $sPreForm . xtc_draw_form('checkout_confirmation', $form_action_url, 'post'));
 /**
  * Build osCommerce's hidden fields that are required for it to keep
  * it's _POST variable
  *
  * @param object $addr          KlarnaAddr object
  * @param string $invoiceType   invoice type
  * @param int    $paymentPlan   pclass id
  * @param string $email_address email address
  * @param string $reference     reference
  *
  * @return string   the hidden fields string
  */
 public function hiddenFieldString($addr, $invoiceType, $paymentPlan, $email_address, $reference)
 {
     global $order;
     $pno = $_SESSION['klarna_data']['pno'];
     $gender = $_SESSION['klarna_data']['gender'];
     $process_button_string = xtc_draw_hidden_field('addr_num', 1, true, '') . xtc_draw_hidden_field("klarna_pno", $pno) . xtc_draw_hidden_field("klarna_street", $addr->getStreet()) . xtc_draw_hidden_field("klarna_postno", $addr->getZipCode()) . xtc_draw_hidden_field("klarna_city", $addr->getCity()) . xtc_draw_hidden_field("klarna_phone", $addr->getTelno()) . xtc_draw_hidden_field("klarna_phone2", $addr->getCellno()) . xtc_draw_hidden_field("klarna_email", $email_address) . xtc_draw_hidden_field("klarna_invoice_type", $invoiceType) . xtc_draw_hidden_field("klarna_house", $addr->getHouseNumber()) . xtc_draw_hidden_field("klarna_houseext", $addr->getHouseExt()) . xtc_draw_hidden_field("klarna_reference", $reference) . xtc_draw_hidden_field("klarna_gender", $gender) . xtc_draw_hidden_field("klarna_paymentPlan", $paymentPlan);
     return $process_button_string;
 }
//$breadcrumb->add(NAVBAR_TITLE_1_CHECKOUT_SHIPPING_ADDRESS, xtc_href_link(FILENAME_CHECKOUT_SHIPPING, '', 'SSL'));
$breadcrumb->add(NAVBAR_TITLE_1_CHECKOUT_SHIPPING_ADDRESS, xtc_href_link($link_checkout_shipping, $params, 'SSL'));
// EOF - Tomcraft - 2009-10-03 - Paypal Express Modul
$breadcrumb->add(NAVBAR_TITLE_2_CHECKOUT_SHIPPING_ADDRESS, xtc_href_link(FILENAME_CHECKOUT_SHIPPING_ADDRESS, $params, 'SSL'));
$addresses_count = xtc_count_customer_address_book_entries();
require DIR_WS_INCLUDES . 'header.php';
$smarty->assign('FORM_ACTION', xtc_draw_form('checkout_address', xtc_href_link(FILENAME_CHECKOUT_SHIPPING_ADDRESS, $params, 'SSL'), 'post', 'onsubmit="return check_form_optional(checkout_address);"'));
if ($messageStack->size('checkout_address') > 0) {
    $smarty->assign('error', $messageStack->output('checkout_address'));
}
if ($process == false) {
    $smarty->assign('ADDRESS_LABEL', xtc_address_label($_SESSION['customer_id'], $_SESSION['sendto'], true, ' ', '<br />'));
    include DIR_WS_MODULES . 'checkout_address_layout.php';
}
if ($addresses_count < MAX_ADDRESS_BOOK_ENTRIES) {
    require DIR_WS_MODULES . 'checkout_new_address.php';
}
$smarty->assign('BUTTON_CONTINUE', xtc_draw_hidden_field('action', 'submit') . xtc_image_submit('button_continue.gif', IMAGE_BUTTON_CONTINUE));
if ($process == true) {
    $smarty->assign('BUTTON_BACK', '<a href="' . xtc_href_link(FILENAME_CHECKOUT_SHIPPING_ADDRESS, $params, 'SSL') . '">' . xtc_image_button('button_back.gif', IMAGE_BUTTON_BACK) . '</a>');
}
$smarty->assign('FORM_END', '</form>');
$smarty->assign('language', $_SESSION['language']);
$main_content = $smarty->fetch(CURRENT_TEMPLATE . '/module/checkout_shipping_address.html');
$smarty->assign('main_content', $main_content);
$smarty->caching = 0;
if (!defined('RM')) {
    $smarty->load_filter('output', 'note');
}
$smarty->display(CURRENT_TEMPLATE . '/index.html');
include 'includes/application_bottom.php';
    $widget_result = xtc_db_fetch_array($widgets_query);
    $widgets_array[] = $widget_result;
    $status = WIDGET_STATUS_NOT_ACTIVE_TEXT;
    if ($widget_result['widgets_active']) {
        $status = WIDGET_STATUS_ACTIVE_TEXT;
    }
    $widgets_dropdown[] = array('id' => $widget_result['widgets_id'], 'text' => $widget_conf->name . "(" . $status . ")");
    $widgets_id[] = $widget_result['widgets_id'];
}
$parameters = 'onchange="this.form.submit()"';
echo xtc_draw_form('widget_status', FILENAME_START, '');
echo xtc_draw_hidden_field('action', 'widget_active');
echo '<div class="pull-right">' . xtc_draw_pull_down_menu('widgets', $widgets_dropdown, $selected, $parameters) . '</div>';
echo '</form>';
echo xtc_draw_form('save_widgets_positions', FILENAME_START, '');
echo xtc_draw_hidden_field('action', 'widget_save_position');
echo '<div class="pull-right"><button class="btn btn-default" type="submit" id="submit_position">&nbsp;<span class="glyphicon glyphicon-th"></span>&nbsp;</button></div>';
?>
    
<h1 id="1"><?php 
echo HEADING_TITLE;
?>
</h1>

<div class="grid-stack">
<?php 
#MN: Load all widgets
foreach ($widgets_array as $widget) {
    if ($widget['widgets_active']) {
        echo '<input id = "h_wid' . $widget['widgets_id'] . '" type="hidden" value="' . $widget['widgets_id'] . '" name="widgets_id[]">';
        echo '<input id = "h_wx' . $widget['widgets_id'] . '" type="hidden" value="' . $widget['widgets_x'] . '" name="widgets_x[]">';
    ?>
                  <?php 
    echo HEADING_TITLE_SEARCH . ' ' . xtc_draw_input_field('oID', '', 'size="12"') . xtc_draw_hidden_field('action', 'edit') . xtc_draw_hidden_field(xtc_session_name(), xtc_session_id());
    ?>
                  </form>
                    </div>
                    <div class='col-xs-12'>
                  <?php 
    echo xtc_draw_form('payment_method_status', FILENAME_ORDERS, '', 'get');
    ?>
                  <?php 
    echo HEADING_TITLE_STATUS . ' ' . xtc_draw_pull_down_menu('status', array_merge(array(array('id' => '', 'text' => TEXT_ALL_ORDERS)), array(array('id' => '0', 'text' => TEXT_VALIDATING)), $orders_statuses), isset($_GET['status']) && xtc_not_null($_GET['status']) ? (int) $_GET['status'] : '', 'onchange="this.form.submit();"');
    ?>
 <br />
                  <?php 
    echo HEADING_CHOOSE_PAYMENT . ' ' . xtc_draw_pull_down_menu('payment_method', array_merge(array(array('id' => '', 'text' => TEXT_ALL_PAYMENT_METHODS)), $payment_methods), isset($_GET['payment_method']) && xtc_not_null($_GET['payment_method']) ? $_GET['payment_method'] : '', 'onchange="this.form.submit();"') . xtc_draw_hidden_field(xtc_session_name(), xtc_session_id());
    ?>
                  </form>
                    </div>
                </div>
            </div>
<div class='col-xs-12'><br></div>
            <div class='col-xs-12'>
                <div id='responsive_table' class='table-responsive pull-left col-sm-12'>
                <table class="table table-bordered table-striped">
                    <tr class="dataTableHeadingRow">
                      <td class="dataTableHeadingContent"><?php 
    echo TABLE_HEADING_CUSTOMERS;
    ?>
</td>
                      <td class="dataTableHeadingContent" align="right"><?php 
            if ($content['content_delete'] != 0 or $action == 'new') {
                ?>
                                      <div class="col-xs-12">
                                        <div class="col-sm-2 col-xs-12" ><?php 
                echo TEXT_GROUP;
                ?>
</div>
                                        <div class="col-sm-10 col-xs-12" ><?php 
                echo xtc_draw_input_field('content_group', isset($content['content_group']) ? $content['content_group'] : '', 'size="5"');
                echo TEXT_GROUP_DESC;
                ?>
</div>
                                      </div>
                                      <?php 
            } else {
                echo xtc_draw_hidden_field('content_group', $content['content_group']);
                ?>
                                      <div class="col-xs-12">
                                        <div class="col-sm-2 col-xs-12" ><?php 
                echo TEXT_GROUP;
                ?>
</div>
                                        <div class="col-sm-10 col-xs-12" ><?php 
                echo $content['content_group'];
                ?>
</div>
                                      </div>
                                      <?php 
            }
            $file_flag_sql = xtc_db_query("SELECT file_flag as id, file_flag_name as text FROM " . TABLE_CM_FILE_FLAGS);
            while ($file_flag = xtc_db_fetch_array($file_flag_sql)) {
    ?>
</div>
            </form>
        </div>
        <div class="col-xs-12 smallText text-center">
            <?php 
    echo xtc_draw_form('status', FILENAME_CUSTOMERS, '', 'get');
    $select_data = array();
    //BOF - GTB - 2011-02-03 - show selected customer group
    //$select_data = array (array ('id' => '99', 'text' => TEXT_SELECT), array ('id' => '100', 'text' => TEXT_ALL_CUSTOMERS));
    $select_data = array(array('id' => '', 'text' => TEXT_SELECT), array('id' => '100', 'text' => TEXT_ALL_CUSTOMERS));
    //<td class="smallText" align="right"><?php echo HEADING_TITLE_STATUS . ' ' . xtc_draw_pull_down_menu('status',xtc_array_merge($select_data, $customers_statuses_array), '99', 'onChange="this.form.submit();"').xtc_draw_hidden_field(xtc_session_name(), xtc_session_id()); </td>
    //EOF - GTB - 2011-02-03 - show selected customer group
    ?>
          <?php 
    echo HEADING_TITLE_STATUS . ' ' . xtc_draw_pull_down_menu('status', xtc_array_merge($select_data, $customers_statuses_array), isset($_GET['status']) ? $_GET['status'] : '', 'onChange="this.form.submit();" style="max-width: 200px;"') . xtc_draw_hidden_field(xtc_session_name(), xtc_session_id());
    ?>
             </form>
        </div>
        <div class='col-xs-12'>
            <div id='responsive_table' class='table-responsive pull-left col-sm-12'>
            <table class="table table-bordered">
                <tr class="dataTableHeadingRow">
                  <td class="dataTableHeadingContent hidden-xs hidden-sm" width="40"><?php 
    echo TABLE_HEADING_ACCOUNT_TYPE;
    ?>
</td>
                  <td class="dataTableHeadingContent"><?php 
    echo TABLE_HEADING_CUSTOMERSCID . xtc_sorting(FILENAME_CUSTOMERS, 'customers_cid');
    ?>
</td>
 * @copyright based on Copyright 2002-2003 osCommerce; www.oscommerce.com
 * @copyright Porttions Copyright 2003-2007 Zen Cart Development Team
 * @copyright Porttions Copyright 2004 DevosC.com
 * @license http://www.xt-commerce.com.com/license/2_0.txt GNU Public License V2.0
 *
 * For questions, help, comments, discussion, etc., please join the
 * xt:Commerce Support Forums at www.xt-commerce.com
 *
 */
if (isset($error)) {
    echo $error;
}
echo xtc_draw_form('refund_transaction', FILENAME_PAYPAL, xtc_get_all_get_params(array('action')) . 'action=perform');
echo xtc_draw_hidden_field('txn_id', $ipn_data['txn_id']);
echo xtc_draw_hidden_field('amount', $ipn_data['mc_gross']);
echo xtc_draw_hidden_field('ipn_id', (int) $_GET['paypal_ipn_id']);
?>
<div class="highlightbox">
	<p class="h3"><?php 
echo TEXT_PAYPAL_CAPTURE_TRANSACTION;
?>
</p>
	<p><?php 
echo TEXT_PAYPAL_NOTE_CAPTURE_INFO;
?>
</p>
        <div class="col-xs-12"><hr noshade></div>
		<div class="col-xs-12">
			<div class="col-xs-12 col-sm-3"><?php 
echo TEXT_PAYPAL_TXN_ID;
?>
        // calculate brutto price for display
        if (PRICE_IS_BRUTTO == 'true') {
            $products_price = xtc_round($products['products_price'] * ((100 + $products_tax_rate) / 100), PRICE_PRECISION);
            $products_price = $currencies->format($products_price);
            $products_price_netto = $currencies->format($products['products_price']);
        } else {
            $products_price = $currencies->format($products['products_price']);
            $products_price_netto = '';
        }
        echo xtc_draw_form('product_ins', FILENAME_ORDERS_EDIT, 'action=product_ins', 'post');
        //BOF - web28 - 2011-01-16 - FIX missing sessions id
        //echo xtc_draw_hidden_field(xtc_session_name(), xtc_session_id());
        //EOF - web28 - 2011-01-16 - FIX missing sessions id
        echo xtc_draw_hidden_field('cID', $_POST['cID']);
        echo xtc_draw_hidden_field('oID', $_GET['oID']);
        echo xtc_draw_hidden_field('products_id', $products['products_id']);
        ?>
          <td class="dataTableContent">&nbsp;<?php 
        echo $products['products_id'];
        ?>
</td>
          <td class="dataTableContent">&nbsp;<?php 
        echo $products_status;
        ?>
</td>
          <td class="dataTableContent">&nbsp;<?php 
        echo '<a target="_blank" href="' . xtc_href_link(FILENAME_CATEGORIES, xtc_get_all_get_params(array('cPath', 'action', 'pID', 'cID', 'edit_action', 'search', 'page', 'oID')) . 'pID=' . $products['products_id']) . '&action=new_product' . '">' . xtc_image(DIR_WS_ICONS . 'icon_edit.gif', ICON_EDIT, '', '', $icon_padding) . '</a> ' . $products['products_name'];
        ?>
</td>
          <td class="dataTableContent">&nbsp;<?php 
        echo xtc_product_thumb_image($products['products_image'], $products['products_name'], '', '', $admin_thumbs_size);
} elseif ($_GET['edit_action'] == 'other') {
    include 'orders_edit_other.php';
} elseif ($_GET['edit_action'] == 'options') {
    include 'orders_edit_options.php';
}
?>
                <!-- Bestellung Sichern Anfang //-->
                <!--br /><br /-->
                
                    <div class="col-xs-12">
                      <?php 
echo TEXT_SAVE_ORDER;
echo xtc_draw_form('save_order', FILENAME_ORDERS_EDIT, 'action=save_order', 'post');
echo xtc_draw_hidden_field('customers_status_id', $address[customers_status]);
echo xtc_draw_hidden_field('oID', (int) $_GET['oID']);
echo xtc_draw_hidden_field('cID', (int) $_GET['cID']);
echo '<input type="submit" class="btn btn-default" onclick="this.blur();" value="' . BUTTON_SAVE . '"/>';
//BOF - web28 -2011-06-08 - add back buttons
if (isset($_GET['edit_action'])) {
    echo '&nbsp;&nbsp;&nbsp;';
    echo '<a class="btn btn-default" onclick="this.blur();" href="' . xtc_href_link(FILENAME_ORDERS_EDIT, 'oID=' . (int) $_GET['oID']) . '">' . BUTTON_BACK . '</a>';
} else {
    echo '&nbsp;&nbsp;&nbsp;';
    echo '<a class="btn btn-default" onclick="this.blur();" href="' . xtc_href_link(FILENAME_ORDERS, 'action=edit&oID=' . (int) $_GET['oID']) . '">' . BUTTON_BACK . '</a>';
}
//EOF - web28 -2011-06-08 - add back buttons
?>
                      </form>
                      </div>
                </div>
                <!--br /><br /-->
    $price = $sInfo->products_price;
    $new_price = $sInfo->specials_new_products_price;
    if (PRICE_IS_BRUTTO == 'true') {
        $price_netto = xtc_round($price, PRICE_PRECISION);
        $new_price_netto = xtc_round($new_price, PRICE_PRECISION);
        $price = $price * (xtc_get_tax_rate($sInfo->products_tax_class_id) + 100) / 100;
        $new_price = $new_price * (xtc_get_tax_rate($sInfo->products_tax_class_id) + 100) / 100;
    }
    $price = xtc_round($price, PRICE_PRECISION);
    $new_price = xtc_round($new_price, PRICE_PRECISION);
    echo '<input type="hidden" name="products_up_id" value="' . $sInfo->products_id . '">';
    ?>
      
          <div class="main col-xs-12 col-sm-11"><?php 
    echo $sInfo->products_name ? $sInfo->products_name . ' <small>(' . $xtPrice->xtcFormat($price, true) . ')</small>' : xtc_draw_products_pull_down('products_id', 'style="font-size:10px"', $specials_array);
    echo xtc_draw_hidden_field('products_price', $sInfo->products_price);
    ?>
</div>
	  </div>
          <div class="col-xs-12">
            <div class="main col-xs-12 col-sm-1"><?php 
    echo TEXT_SPECIALS_SPECIAL_PRICE;
    ?>
&nbsp;</div>
            <div class="main  col-xs-12 col-sm-11"><?php 
    echo xtc_draw_input_field('specials_price', $new_price);
    ?>
 </div>
          </div>
          <div class="col-xs-12">
            <div class="main col-xs-12 col-sm-1"><?php 
}
// August 2012 Zollkosten als Muster mit Group ID 15
/*
if($order->delivery['country_id'] !== STORE_COUNTRY):
	if (GROUP_CHECK == 'true') {
		$group_check = "and group_ids LIKE '%c_" . $_SESSION['customers_status']['customers_status_id'] . "_group%'";
	}
	$shop_content_query = "SELECT
                         content_text
                         FROM " . TABLE_CONTENT_MANAGER . "
                         WHERE content_group='15' " . $group_check . "
                         AND languages_id='" . $_SESSION['languages_id'] . "'";
	$shop_content_query = xtc_db_query($shop_content_query);
	$shop_content_data = xtc_db_fetch_array($shop_content_query);
	$smarty->assign('CHECKOUT_ZOLL', $shop_content_data['content_text']);
endif;
*/
$smarty->assign('language', $_SESSION['language']);
if ($kein_versand != 1) {
    $smarty->assign('SHIPPING_BLOCK', $shipping_block);
}
$payment_hidden = xtc_draw_hidden_field('payment', 'paypalexpress') . xtc_draw_hidden_field('act_payment', 'true');
$smarty->assign('PAYMENT_HIDDEN', $payment_hidden);
$smarty->caching = 0;
$main_content = $smarty->fetch(CURRENT_TEMPLATE . '/module/checkout_paypal.html');
$smarty->assign('main_content', $main_content);
if (!defined('RM')) {
    $smarty->load_filter('output', 'note');
}
$smarty->display(CURRENT_TEMPLATE . '/index.html');
include 'includes/application_bottom.php';
    ?>
</td>
            <td class="pageHeading"><?php 
    echo '<a href="' . xtc_href_link(FILENAME_AFFILIATE_PAYMENT, 'pID=' . $pInfo->affiliate_payment_id . '&action=start_billing') . '">' . xtc_image_button('button_affiliate_billing.gif', IMAGE_AFFILIATE_BILLING) . '</a>';
    ?>
</td>
            <td class="pageHeading" align="right"><?php 
    echo xtc_draw_separator('pixel_trans.gif', 1, HEADING_IMAGE_HEIGHT);
    ?>
</td>
            <td align="right"><table border="0" width="100%" cellspacing="0" cellpadding="0">
              <tr><?php 
    echo xtc_draw_form('orders', FILENAME_AFFILIATE_PAYMENT, '', 'get');
    ?>
                <td class="smallText" align="right"><?php 
    echo HEADING_TITLE_SEARCH . ' ' . xtc_draw_input_field('sID', '', 'size="12"') . xtc_draw_hidden_field('action', 'edit');
    ?>
</td>
              </form></tr>
              <tr><?php 
    echo xtc_draw_form('status', FILENAME_AFFILIATE_PAYMENT, '', 'get');
    ?>
                <td class="smallText" align="right"><?php 
    echo HEADING_TITLE_STATUS . ' ' . xtc_draw_pull_down_menu('status', array_merge(array(array('id' => '', 'text' => TEXT_ALL_PAYMENTS)), $payments_statuses), '', 'onChange="this.form.submit();"');
    ?>
</td>
              </form></tr>
            </table></td>
          </tr>
        </table></td>
      </tr>