$r = $dosql->GetOne("SELECT * FROM `#@__infoimg` WHERE classid=" . $row['classid'] . " AND orderid>" . $row['orderid'] . " AND delstate='' AND checkinfo=true ORDER BY orderid ASC"); if ($r < 1) { echo '<li>下一篇:已经没有了</li>'; } else { if ($cfg_isreurl != 'Y') { $gourl = 'caseshow.php?cid=' . $r['classid'] . '&id=' . $r['id']; } else { $gourl = 'caseshow-' . $r['classid'] . '-' . $r['id'] . '-1.html'; } echo '<li>下一篇:<a href="' . $gourl . '">' . $r['title'] . '</a></li>'; } ?> </ul> <ul class="actBox"> <li id="act-pus"><a href="javascript:;" onclick="<?php $c_uname = isset($_COOKIE['username']) ? AuthCode($_COOKIE['username']) : ''; if ($c_uname != '') { echo 'AddUserFavorite()'; } else { echo 'AddFavorite();'; } ?> ">收藏</a></li> <li id="act-pnt"><a href="javascript:;" onclick="window.print();">打印</a></li> </ul> <input type="hidden" name="aid" id="aid" value="<?php echo $id; ?> " /> <input type="hidden" name="molds" id="molds" value="2" /> </div>
} //HTML转义变量 $username = htmlspecialchars($username); $truename = htmlspecialchars($truename); $idcard = htmlspecialchars($idcard); $telephone = htmlspecialchars($telephone); $zipcode = htmlspecialchars($zipcode); $address = htmlspecialchars($address); $buyremark = htmlspecialchars($buyremark); $posttime = time(); $postarea_prov = empty($postarea_prov) ? '-1' : $postarea_prov; $postarea_city = empty($postarea_city) ? '-1' : $postarea_city; $postarea_country = empty($postarea_country) ? '-1' : $postarea_country; $orderinfo = array('truename' => $truename, 'telephone' => $telephone, 'zipcode' => $zipcode, 'postarea_prov' => $postarea_prov, 'postarea_city' => $postarea_city, 'postarea_country' => $postarea_country, 'address' => $address, 'idcard' => $idcard, 'postmode' => $postmode, 'paymode' => $paymode, 'getmode' => $getmode, 'buyremark' => $buyremark, 'posttime' => $posttime); //存入COOKIE setcookie('orderinfo', AuthCode(serialize($orderinfo), 'ENCODE')); header('location:orderenter.php'); exit; } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <?php echo GetHeader(0, 0, '商品订单'); ?> <link href="templates/default/style/webstyle.css" type="text/css" rel="stylesheet" /> <script type="text/javascript" src="templates/default/js/jquery.min.js"></script> <script type="text/javascript" src="templates/default/js/getarea.js"></script> <script type="text/javascript" src="templates/default/js/top.js"></script>
/data/avatar/index.php?uid=<?php echo $r_user['id']; ?> &size=middle" /> <img src="<?php echo $cfg_webpath; ?> /data/avatar/index.php?uid=<?php echo $r_user['id']; ?> &size=small" /> </div> <h3 class="subtitle">上传头像</h3> <div class="upavatar"> <iframe src="data/avatar/upload.php?uid=<?php echo urlencode(AuthCode($r_user['id'], 'ENCODE')); ?> " width="458" height="268" frameborder="0" scrolling="no"></iframe> <div>头像上传成功后,点击完成或刷新页面(可按F5键),才能查看最新的头像效果</div> </div> </div> <div class="cl"></div> </div> <div class="footer"><?php echo $cfg_copyright; ?> </div> <script type="text/javascript"> function updateavatar() { window.location.reload(); }
if (check_app_login('weibo')) { $r = $dosql->GetOne("SELECT `id` FROM `#@__member` WHERE `qqid`='" . $_SESSION['app']['weibo']['idstr'] . "'"); if (isset($r['id'])) { ShowMsg('该微博已与其他账号绑定!', '-1'); } else { $weiboid = $_SESSION['app']['weibo']['idstr']; $sql = "UPDATE `#@__member` SET `weiboid`='{$weiboid}' WHERE `username`='{$username}'"; } } } $dosql->ExecNoneQuery($sql); //用绑定账号登录 $cookie_time = time() + 3600; setcookie('username', AuthCode($username, 'ENCODE'), $cookie_time); setcookie('lastlogintime', AuthCode($row['logintime'], 'ENCODE'), $cookie_time); setcookie('lastloginip', AuthCode($row['loginip'], 'ENCODE'), $cookie_time); ShowMsg('绑定账号成功!', '?c=default'); exit; } } else { if ($a == 'removeoqq') { $r = $dosql->GetOne("SELECT `id` FROM `#@__member` WHERE `username`='{$c_uname}' AND `qqid`<>''"); if (empty($r) && !is_array($r)) { ShowMsg('错误的操作,您没有绑定QQ账号!', '-1'); } else { $dosql->ExecNoneQuery("UPDATE `#@__member` SET `qqid`='' WHERE `username`='{$c_uname}'"); ShowMsg('解除QQ绑定成功!', '?c=edit'); } exit; } else { if ($a == 'removeoweibo') {
?> ">首页</a> > <a href="message.php">客户留言</a></span> <div class="cl"></div> </div> <div class="OneOfTwo"> <div class="subCont"> <form name="form" id="form" method="post" action=""> <span class="msgtitle">联系方式:</span><input name="contact" type="text" id="contact" class="msg_input" /><div class="hr_10"></div><div class="hr_10"></div> <span class="msgtitle">内 容:</span><textarea name="content" class="msg_input" style="width:729px;height:180px;overflow:auto;" id="content" ></textarea><div class="hr_10"></div><div class="hr_10"></div> <span class="msgtitle">验证码:</span><input name="validate" type="text" id="validate" class="msg_input" style="width:120px;margin-right:5px;" /> <span><img id="ckstr" src="data/captcha/ckstr.php" title="看不清?点击更换" align="absmiddle" style="cursor:pointer;" onClick="this.src=this.src+'?'" /> <a href="javascript:;" onClick="var v=document.getElementById('ckstr');v.src=v.src+'?';return false;">看不清?</a></span><br /><div class="hr_10"></div><div class="hr_10"></div> <div class="msg_btn_area"> <a href="javascript:void(0);" onclick="cfm_msg();return false;">提 交</a></div> <input type="hidden" name="action" id="action" value="add" /> <?php if (!empty($_COOKIE['username'])) { $nickname = AuthCode($_COOKIE['username']); } else { $nickname = '游客'; } ?> <input type="hidden" name="nickname" id="nickname" value="<?php echo $nickname; ?> " /> </form> <?php $dopage->GetPage("SELECT * FROM `#@__message` WHERE checkinfo=true ORDER BY `htop` DESC, `orderid` DESC", 10); $i = $dosql->GetTotalRow(); while ($row = $dosql->GetArray()) { ?>
<?php header('Content-type:text/html;charset=utf-8'); require_once dirname(__FILE__) . '/../../../Common/index.php'; if ($money < 0 && $userid == '' && $username == '') { header('location:/member.php'); exit; } $row = $dosql->GetOne("SELECT id,username FROM `#@__member` WHERE `id`='{$userid}'"); if ($row['username'] != $username) { header('location:/member.php'); exit; } $userid = AuthCode($row['id'], 'ENCODE'); require_once dirname(__FILE__) . '/func/common.php'; require_once dirname(__FILE__) . '/func/SDKConfig.php'; require_once dirname(__FILE__) . '/func/secureUtil.php'; require_once dirname(__FILE__) . '/func/log.class.php'; /** * 消费交易-前台 */ /** * 以下代码只是为了方便商户测试而提供的样例代码,商户可以根据自己需要,按照技术文档编写。该代码仅供参考 */ // 初始化日志 $log = new PhpLog(SDK_LOG_FILE_PATH, "PRC", SDK_LOG_LEVEL); $log->LogInfo("============处理前台请求开始==============="); // 初始化日志 $params = array('version' => '5.0.0', 'encoding' => 'utf-8', 'certId' => getSignCertId(), 'txnType' => '01', 'txnSubType' => '01', 'bizType' => '000201', 'frontUrl' => 'http://localhost/data/api/unionpay/Balance_FrontReceive.php', 'backUrl' => 'http://localhost/data/api/unionpay/Balance_BackReceive.php', 'signMethod' => '01', 'channelType' => '07', 'accessType' => '0', 'merId' => '777290058112538', 'orderId' => date('YmdHis'), 'txnTime' => date('YmdHis'), 'txnAmt' => $money * 100, 'currencyCode' => '156', 'defaultPayType' => '0001', 'reqReserved' => $userid); // 签名 sign($params); // 前台请求地址
$aid = isset($aid) ? intval($aid) : 0; //广告分类ID $a = isset($a) ? $a : ''; $checkid = isset($checkid) ? $checkid : ''; //初始登录信息 if (empty($_COOKIE['username']) || empty($_COOKIE['lastlogintime']) || empty($_COOKIE['lastloginip'])) { $c_uname = ''; $c_logintime = ''; $c_loginip = ''; header('location:/member.php'); exit; } else { require_once '../../Common/index.php'; $c_uname = AuthCode($_COOKIE['username']); $c_logintime = AuthCode($_COOKIE['lastlogintime']); $c_loginip = AuthCode($_COOKIE['lastloginip']); } //获取用户信息 $r_user = $dosql->GetOne("SELECT * FROM `#@__member` WHERE `username`='{$c_uname}'"); //当记录出现错误,强制跳转 if (!isset($r_user) or !is_array($r_user)) { header('location:/'); exit; } //判断是否为当前级别会员 if ($r_user['usertype'] != 1) { header('location:/member.php'); exit; } //获取店铺信息 $r_shop = $dosql->GetOne("SELECT * FROM `#@__shops` WHERE `userid`='" . $r_user['id'] . "'");
function getsScanlog($user) { if ($user == '') { if (!isset($_COOKIE['goodsid'])) { return false; } $goodsid = AuthCode($_COOKIE['goodsid'], 'DECODE'); $goodsid = " id in (" . substr($goodsid, 0, '-1') . ")"; echo $goodsid; return $goodsid; } else { $rows = MysqlRowSelect('lgsc_scanlog', 'goodsid', "userid='{$user['userid']}'"); if ($rows == '-1') { return false; } $goodsid = " id in ("; for ($i = 0, $n = count($rows); $i < $n; $i++) { $goodsid .= $rows[$i]['goodsid'] . ','; } $goodsid = substr($goodsid, 0, '-1') . ')'; return $goodsid; } }
if (!empty($_COOKIE['shoppingcart'])) { ?> <table width="100%" border="0" cellspacing="0" cellpadding="0" class="shoppingcart"> <tr class="thead"> <td width="65%" height="30"> 商品名称</td> <td width="15%">购买数量</td> <td width="15%">价格</td> <td width="5%">操作</td> </tr> <tr> <td height="10" colspan="4"></td> </tr> <?php //初始化参数 $totalprice = ''; $shoppingcart = unserialize(AuthCode($_COOKIE['shoppingcart'])); //显示订单列表 foreach ($shoppingcart as $k => $goods) { ?> <tr> <td height="30"> <?php //获取数据库中商品信息 $r = $dosql->GetOne("SELECT * FROM `#@__goods` WHERE `id`=" . intval($goods[0])); //计算订单总价 $totalprice += $r['salesprice'] * $goods[1]; //输出商品名称 echo '<a href="goodsshow.php?cid=' . $r['classid'] . '&tid=' . $r['typeid'] . '&id=' . $r['id'] . '" class="title" target="_blank">' . $r['title'] . '</a>'; //输出选中属性 foreach ($goods[2] as $v) { echo '<span class="attr">' . $v . '</span>';
$totalprice += $r['salesprice'] * $goods[1]; //计算订单总重 $totalweight += $r['weight'] * $goods[1]; } //构成总价、总重、运费数组 $priceweight = array('totalprice' => $totalprice, 'totalweight' => $totalweight, 'cost' => $postprice); //更新订单信息数组 $orderinfo = array_merge($orderinfo, $priceweight); //存入COOKIE setcookie('orderinfo', AuthCode(serialize($orderinfo), 'ENCODE')); //保存订单 if ($action == 'save') { //解析COOKIE $username = AuthCode($_COOKIE['username']); $orderarr = unserialize(AuthCode($_COOKIE['orderinfo'])); $attrstr = AuthCode($_COOKIE['shoppingcart']); //生成订单序号 $orderid = GetOrderID('#@__goodsorder'); //订单号 $ordernum = MyDate('Ymd', time()) . mt_rand(0, 9999); $sql = "INSERT INTO `#@__goodsorder` (username, attrstr, truename, idcard, telephone, zipcode, postarea_prov, postarea_city, postarea_country, address, ordernum, postmode, paymode, getmode, weight, cost, amount, buyremark, posttime, orderid, checkinfo) VALUES ('{$username}', '{$attrstr}', '" . $orderarr['truename'] . "', '" . $orderarr['idcard'] . "', '" . $orderarr['telephone'] . "', '" . $orderarr['zipcode'] . "', '" . $orderarr['postarea_prov'] . "', '" . $orderarr['postarea_city'] . "', '" . $orderarr['postarea_country'] . "', '" . $orderarr['address'] . "', '{$ordernum}', '" . $orderarr['postmode'] . "', '" . $orderarr['paymode'] . "', '" . $orderarr['getmode'] . "', '" . $orderarr['totalweight'] . "', '" . $orderarr['cost'] . "', '" . $orderarr['totalprice'] . "', '" . $orderarr['buyremark'] . "', '" . $orderarr['posttime'] . "', '{$orderid}', 'confirm')"; if ($dosql->ExecNoneQuery($sql)) { setcookie('shoppingcart', '', time() - 3600); setcookie('orderinfo', '', time() - 3600); if ($orderarr['paymode'] == 1) { header('location:orderpay.php?id=' . $dosql->GetLastID()); exit; } else { ShowMsg('订单提交成功!', 'shoppingcart.php'); exit; }
<?php require_once dirname(__FILE__) . '/func/common.php'; require_once dirname(__FILE__) . '/func/secureUtil.php'; if (isset($_POST['signature']) && $_POST['respMsg'] == 'success' && $_POST['reqReserved'] != '' && $_POST['txnAmt'] != '') { require_once dirname(__FILE__) . '/../../../Common/index.php'; $userid = AuthCode($_POST['reqReserved']); $price = $_POST['txnAmt'] / 100; $dosql->ExecNoneQuery("UPDATE `#@__member` SET money=money+{$price} WHERE id='{$userid}'"); $posttime = time(); $dosql->ExecNoneQuery("INSERT INTO `#@__balance` (userid, btype, money, posttime) VALUES ('{$userid}', '1', '{$price}', '{$posttime}')"); } header('location:/member/person/?action=balance'); exit;
</ul> <div class="divclear"></div> </div> </span> 您好!欢迎进入临港大市场 <span><?php echo date('Y年m月d日'); ?> </span> <?php echo '星期' . $week[date('w')]; ?> </span> <span class="t_right"> <ul> <?php if (!empty($_COOKIE['username']) && !empty($_COOKIE['lastlogintime']) && !empty($_COOKIE['lastloginip'])) { echo '<li><a href="/member.php">' . AuthCode($_COOKIE['username']) . '</a> <a href="/member.php?a=logout">退出</a></li>'; $c_uname = AuthCode($_COOKIE['username']); $usertype = @$_COOKIE['usertype']; $usertype = isset($usertype) ? $usertype : 1; $r_usertype = $dosql->GetOne("SELECT usertype FROM `#@__member` WHERE `username`='{$c_uname}'"); if ($r_usertype['usertype'] == '1') { if (substr(dirname($_SERVER['SCRIPT_NAME']), 8) == 'shop') { echo '<li><a href="/member/person/">买家中心</a></li>'; } else { echo '<li><a href="/member/shop/">商家中心</a></li>'; } } } else { echo '<li>请<a href="/member.php?c=login"><i>登录</i></a> <a href="/member.php?c=reg">免费注册</a></li>'; } ?> <li><a href="/member.php">我的订单</a></li>