Ejemplo n.º 1
0
function olc_get_all_get_params($exclude_array = EMPTY_STRING)
{
    $get_url = EMPTY_STRING;
    if (is_array($_GET)) {
        if (sizeof($_GET) > 0) {
            if (!is_array($exclude_array)) {
                $exclude_array = array();
            }
            $exclude_array = array_merge($exclude_array, array(olc_session_name(), 'error', 'x', 'y'));
            reset($_GET);
            while (list($key, $value) = each($_GET)) {
                if (strlen($value) > 0) {
                    if (!in_array($key, $exclude_array)) {
                        $get_url .= $key . EQUAL . rawurlencode(stripslashes($value)) . AMP;
                    }
                }
            }
            $pos = strpos($get_url, 'start_debug');
            if ($pos === false) {
                $pos = strpos($get_url, 'DBGSESSION');
            }
            if ($pos !== false) {
                $get_url = substr($get_url, 0, $pos - 1);
            }
        }
    }
    return $get_url;
}
function olc_hide_session_id()
{
    global $session_started;
    if ($session_started) {
        if (defined('SID')) {
            if (olc_not_null(SID)) {
                return olc_draw_hidden_field(olc_session_name(), olc_session_id());
            }
        }
    }
}
    ?>
</td>
                <td class="dataTableContent" align="center"><?php 
    echo $whos_online['ip_address'];
    ?>
</td>
                <td class="dataTableContent"><?php 
    echo date('H:i:s', $whos_online['time_entry']);
    ?>
</td>
                <td class="dataTableContent" align="center"><?php 
    echo date('H:i:s', $whos_online['time_last_click']);
    ?>
</td>
                <td class="dataTableContent"><?php 
    if (eregi('^(.*)' . olc_session_name() . '=[a-f,0-9]+[&]*(.*)', $whos_online['last_page_url'], $array)) {
        echo $array[1] . $array[2];
    } else {
        echo $whos_online['last_page_url'];
    }
    ?>
&nbsp;</td>
              </tr>
<?php 
}
?>
              <tr>
                <td class="smallText" colspan="7"><?php 
echo sprintf(TEXT_NUMBER_OF_CUSTOMERS, olc_db_num_rows($whos_online_query));
?>
</td>
$Id: attributemanagerheader.inc.php,v 1.1.1.1 2006/12/22 13:37:21 gswkaiser Exp $

osCommerce, Open Source E-Commerce Solutions
http://www.oscommerce.com

Released under the GNU General Public License

Web Development
http://www.kangaroopartners.com

Adopted for OL-Commerce by: Dipl.-Ing.(TH) W. Kaiser, w.kaiser@fortune.de. 2/23/2006
*/
//W. Kaiser - AJAX
$productsId = 'productsId="' . $_GET['pID'] . '"';
$pageAction = 'pageAction="' . $action . '"';
$sessionId = 'sessionId="' . olc_session_name() . '=' . olc_session_id() . '"';
if (IS_AJAX_PROCESSING) {
    $ajax_script_id++;
    define('AJAX_SCRIPT_' . $ajax_script_id, $productsId . '
	' . $pageAction . '
	' . $sessionId . '
	 goOnLoad()
	 ');
} else {
    $script .= '
<!-- osc@kangaroopartners.com - AJAX Attribute Manager start-->
<script language="JavaScript" type="text/JavaScript" src="attributemanager/javascript/attributemanager.js"></script>
<link rel="stylesheet" type="text/css" href="attributemanager/css/attributemanager.css" />
<script language="JavaScript" type="text/javascript">
var ' . $productsId . '
var ' . $pageAction . '
require_once DIR_FS_INC . 'olc_count_customer_address_book_entries.inc.php';
$addresses_count = olc_count_customer_address_book_entries();
if ($IsAccount) {
    if (isset($delete)) {
        $smarty->assign('delete', '1');
        $smarty->assign('ADDRESS', olc_address_label(CUSTOMER_ID, $delete, true, BLANK, HTML_BR));
        $smarty->assign('BUTTON_BACK', HTML_A_START . $address_book_link . '">' . olc_image_button('button_back.gif', IMAGE_BUTTON_BACK) . HTML_A_END);
        $smarty->assign('BUTTON_DELETE', HTML_A_START . olc_href_link(FILENAME_ADDRESS_BOOK_PROCESS, 'delete=' . $delete . '&action=deleteconfirm') . '">' . olc_image_button('button_delete.gif', IMAGE_BUTTON_DELETE) . HTML_A_END);
    } else {
        include DIR_WS_MODULES . 'address_book_details.php';
        if ($isset_edit_and_is_numeric_edit) {
            $smarty->assign('BUTTON_BACK', HTML_A_START . $address_book_link . '">' . olc_image_button('button_back.gif', IMAGE_BUTTON_BACK) . HTML_A_END);
            $smarty->assign('BUTTON_UPDATE', olc_draw_hidden_field('action', 'update') . olc_draw_hidden_field('edit', $edit) . olc_image_submit('button_update.gif', IMAGE_BUTTON_UPDATE));
        } else {
            if (sizeof($_SESSION['navigation']->snapshot) > 0) {
                $back_link = olc_href_link($_SESSION['navigation']->snapshot['page'], olc_array_to_string($_SESSION['navigation']->snapshot['get'], array(olc_session_name())), $_SESSION['navigation']->snapshot['mode']);
            } else {
                $back_link = $address_book_link;
            }
            $smarty->assign('BUTTON_BACK', HTML_A_START . $back_link . '">' . olc_image_button('button_back.gif', IMAGE_BUTTON_BACK) . HTML_A_END);
            $smarty->assign('BUTTON_UPDATE', olc_draw_hidden_field('action', 'process') . olc_image_submit('button_continue.gif', IMAGE_BUTTON_CONTINUE));
        }
    }
    $submit_routine_trailer = '_new';
} else {
    // if no shipping destination address was selected, use their own address as default
    if (!isset($_SESSION[$checkout_id_text])) {
        $_SESSION[$checkout_id_text] = $_SESSION['customer_default_address_id'];
    }
    if (!$process) {
        require_once DIR_FS_INC . 'olc_draw_radio_field.inc.php';
Ejemplo n.º 6
0
                }
            } else {
                if ($not_is_periodic_init) {
                    $show_new_visitor = true;
                    $this_new_visitor = true;
                    $class = $class_visitor_new;
                }
            }
        }
        $td_start = '
														<td class="' . $class . '"';
        $td_end = '
													' . HTML_NBSP . '
														</td>';
        $last_page_url = $whos_online['last_page_url'];
        if (eregi("^(.*)" . olc_session_name() . "=[a-f,0-9]+[&]*(.*)", $last_page_url, $array)) {
            $last_page_url = $array[1] . $array[2];
        }
        $is_categegory = false;
        $is_product = false;
        $is_special = false;
        if (strpos($last_page_url, $index_php) !== false) {
            $is_categegory = true;
            $is_special = true;
        } else {
            if (strpos($last_page_url, FILENAME_PRODUCT_INFO) !== false) {
                $is_product = true;
                $is_special = true;
            }
        }
        if ($is_special) {
Ejemplo n.º 7
0
 function before_process()
 {
     if ($_POST['valid'] == TRUE_STRING_S) {
         if ($remote_host = getenv('REMOTE_HOST')) {
             if ($remote_host != 'secpay.com') {
                 $remote_host = gethostbyaddr($remote_host);
             }
             if ($remote_host != 'secpay.com') {
                 $error = $this->code;
             }
         } else {
             $error = $this->code;
         }
         if ($error) {
             if (USE_AJAX) {
                 ajax_error($error);
             } else {
                 olc_redirect(olc_href_link(FILENAME_CHECKOUT_PAYMENT, olc_session_name() . '=' . $_POST[olc_session_name()] . '&payment_error=' . $error, SSL, false, false));
             }
         }
     }
 }
Ejemplo n.º 8
0
 function process_button()
 {
     global $order, $currencies;
     //, $xtPrice;
     //error_reporting(E_ALL);
     $my_currency = $_SESSION['currency'];
     $worldpay_url = olc_session_name() . '=' . olc_session_id();
     //		$total = number_format($xtPrice->olcCalculateCurr($order->info['total']), $xtPrice->get_decimal_places($_SESSION['currency']), '.', '');
     $total = number_format($order->info['total'] - $order->info['shipping_cost'], $currencies->get_decimal_places($my_currency));
     $process_button_string = olc_draw_hidden_field('instId', MODULE_PAYMENT_WORLDPAY_ID) . olc_draw_hidden_field('currency', $_SESSION['currency']) . olc_draw_hidden_field('desc', 'Purchase from ' . STORE_NAME) . olc_draw_hidden_field('cartId', $worldpay_url) . olc_draw_hidden_field('amount', $total);
     // Pre Auth Mod 3/1/2002 - Graeme Conkie
     if (MODULE_PAYMENT_WORLDPAY_USEPREAUTH == TRUE_STRING_S) {
         $process_button_string .= olc_draw_hidden_field('authMode', MODULE_PAYMENT_WORLDPAY_PREAUTH);
     }
     // Ian-san: Create callback and language links here 6/4/2003:
     $language_code_raw = olc_db_query("select code from " . TABLE_LANGUAGES . " where languages_id ='" . $_SESSION['languages_id'] . APOS);
     $language_code_array = olc_db_fetch_array($language_code_raw);
     $language_code = $language_code_array['code'];
     $address = htmlspecialchars($order->customer['street_address'] . NEW_LINE . $order->customer['suburb'] . NEW_LINE . $order->customer['city'] . NEW_LINE . $order->customer['state'], ENT_QUOTES);
     //W. Kaiser - Enhance WP security
     include_once DIR_FS_INC . 'olc_rand.php';
     $worldpay_id = olc_rand(10000, 100000000000);
     $_SESSION['worldpay_id'] = $worldpay_id;
     $process_button_string .= olc_draw_hidden_field('testMode', MODULE_PAYMENT_WORLDPAY_MODE) . olc_draw_hidden_field('name', $order->customer['firstname'] . ' ' . $order->customer['lastname']) . olc_draw_hidden_field('address', $address) . olc_draw_hidden_field('postcode', $order->customer['postcode']) . olc_draw_hidden_field('country', $order->customer['country']['iso_code_2']) . olc_draw_hidden_field('tel', $order->customer['telephone']) . olc_draw_hidden_field('myvar', $worldpay_id) . olc_draw_hidden_field('fax', $order->customer['fax']) . olc_draw_hidden_field('email', $order->customer['email_address']) . olc_draw_hidden_field('lang', $language_code) . olc_draw_hidden_field('MC_callback', olc_href_link('wpcallback.php') . olc_draw_hidden_field('MC_OLCsid', olc_session_id()));
     //W. Kaiser - Enhance WP security
     // Ian-san: Added MD5 here 6/4/2003:
     if ('MODULE_PAYMENT_WORLDPAY_USEMD5' == '1') {
         $md5_signature_fields = 'amount:language:email';
         $md5_signature = MODULE_PAYMENT_WORLDPAY_MD5KEY . ':' . number_format($order->info['total'] * $currencies->get_value($currency), $currencies->get_decimal_places($currency), '.', '') . ':' . $language_code . ':' . $order->customer['email_address'];
         $md5_signature_md5 = md5($md5_signature);
         $process_button_string .= olc_draw_hidden_field('signatureFields', $md5_signature_fields) . olc_draw_hidden_field('signature', $md5_signature_md5);
     }
     return $process_button_string;
 }
require_once DIR_FS_INC . 'olc_draw_form.inc.php';
require_once DIR_FS_INC . 'olc_draw_pull_down_menu.inc.php';
require_once DIR_FS_INC . 'olc_draw_hidden_field.inc.php';
require_once DIR_FS_INC . 'olc_hide_session_id.inc.php';
$count_cur = 0;
if (is_object($currencies)) {
    reset($currencies->currencies);
    $currencies_array = array();
    while (list($key, $value) = each($currencies->currencies)) {
        $count_cur++;
        $currencies_array[] = array('id' => $key, 'text' => $value['title']);
    }
}
// dont show box if there's only 1 currency
if ($count_cur > 1) {
    $hidden_get_variables = EMPTY_STRING;
    reset($_GET);
    $exclude = array('currency', olc_session_name(), 'x', 'y');
    while (list($key, $value) = each($_GET)) {
        if (!in_array($key, $exclude)) {
            $hidden_get_variables .= olc_draw_hidden_field($key, $value);
        }
    }
    // reset var
    olc_smarty_init($box_smarty, $cacheid);
    $box_content = EMPTY_STRING;
    $box_content = olc_draw_form('currencies', olc_href_link(CURRENT_SCRIPT, EMPTY_STRING, $request_type, false), 'get') . olc_draw_pull_down_menu('currency', $currencies_array, SESSION_CURRENCY, 'onchange="this.form.submit();"') . $hidden_get_variables . olc_hide_session_id() . '</form>';
    $box_smarty->assign('BOX_CONTENT', $box_content);
    $box_currencies = $box_smarty->fetch(CURRENT_TEMPLATE_BOXES . 'box_currencies' . HTML_EXT, $cacheid);
    $smarty->assign('box_CURRENCIES', $box_currencies);
}
Ejemplo n.º 10
0
function olc_session_recreate()
{
    if (PHP_VERSION >= 4.3) {
        $session_backup = $_SESSION;
        unset($_COOKIE[olc_session_name()]);
        olc_session_destroy();
        if (STORE_SESSIONS == 'mysql') {
            session_set_save_handler('_sess_open', '_sess_close', '_sess_read', '_sess_write', '_sess_destroy', '_sess_gc');
        }
        olc_session_start();
        $_SESSION = $session_backup;
        unset($session_backup);
    }
}
	            <td align="right">
		            <table border="0" width="100%" cellspacing="0" cellpadding="0">
		              <tr>
		                <td class="smallText" align="right">
			              	<?php 
echo olc_draw_form('search', FILENAME_CATEGORIES, EMPTY_STRING, 'get');
echo HEADING_TITLE_SEARCH . BLANK . olc_draw_input_field('search', $search) . olc_draw_hidden_field(olc_session_name(), olc_session_id());
?>
			              	</form>
		                </td>
		              </tr>
		              <tr>
		                <td class="smallText" align="right">
			              	<?php 
echo olc_draw_form('goto', FILENAME_CATEGORIES, EMPTY_STRING, 'get');
echo HEADING_TITLE_GOTO . BLANK . olc_draw_pull_down_menu('cPath', olc_get_category_tree(), $current_category_id, 'onchange="this.form.submit();"') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
?>
			              	</form>
		                </td>
		              </tr>
		            </table>
		           </td>
	          </tr>
	        </table>
	      </td>
      </tr>
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
              <tr class="dataTableHeadingRow">
Ejemplo n.º 12
0
    echo olc_draw_form('orders', FILENAME_ORDERS, EMPTY_STRING, 'get');
    ?>
	                <?php 
    echo HEADING_TITLE_SEARCH . BLANK . olc_draw_input_field('oID', EMPTY_STRING, 'size="12"') . olc_draw_hidden_field('action', 'edit') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
    ?>
	              </form>
							</td>
					  </tr>
					  <tr>
					    <td class="main" valign="top">OLC Bestellungen</td>
					    <td class="main" valign="top" align="right">
					    	<?php 
    echo olc_draw_form('status', FILENAME_ORDERS, EMPTY_STRING, 'get');
    ?>
							    <?php 
    echo HEADING_TITLE_STATUS . BLANK . olc_draw_pull_down_menu('status', olc_array_merge(array(array('id' => EMPTY_STRING, 'text' => TEXT_ALL_ORDERS)), $orders_statuses), EMPTY_STRING, 'onchange="this.form.submit();"') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
    ?>
					      </form>
					     </td>
					  </tr>
					</table>
        </td>
      </tr>
      <tr>
        <td>
	        <table border="0" width="100%" cellspacing="0" cellpadding="0">
	          <tr>
	            <td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
	              <tr class="dataTableHeadingRow">
	                <td class="dataTableHeadingContent"><?php 
    echo TABLE_HEADING_CUSTOMERS;
Ejemplo n.º 13
0
     $_SESSION['customer_zone_id'] = $check_country['entry_zone_id'];
     //W. Kaiser - AJAX
     $_SESSION['account_type'] = $check_customer['account_type'];
     //W. Kaiser - AJAX
     $date_now = date('Ymd');
     olc_db_query(SQL_UPDATE . TABLE_CUSTOMERS_INFO . " set\n\t\t\t\tcustomers_info_date_of_last_logon = now(),\n\t\t\t\tcustomers_info_number_of_logons = customers_info_number_of_logons+1\n\t\t\t\twhere customers_info_id = '" . $_SESSION['customer_id'] . APOS);
     // restore cart contents
     define('CUSTOMER_ID', $_SESSION['customer_id']);
     if ($not_forced_login) {
         if (NOT_IS_ADMIN_FUNCTION) {
             $_SESSION['cart']->restore_contents();
         }
         $snapshot = $_SESSION['navigation']->snapshot;
         if (sizeof($snapshot) > 0) {
             $redirect_url = $snapshot['page'];
             $redirect_parameters = olc_array_to_string($snapshot['get'], array(olc_session_name()));
             $redirect_mode = $snapshot['mode'];
             $_SESSION['navigation']->clear_snapshot();
         } else {
             if ($auction) {
                 $redirect_url = FILENAME_SHOPPING_CART;
             } else {
                 //normal login - redirect to user account
                 $redirect_url = FILENAME_DEFAULT;
             }
         }
     }
     //W. Kaiser - AJAX
 } else {
     $_GET['login'] = '******';
     $info_message = TEXT_LOGIN_ERROR;
 function process_button()
 {
     global $order;
     $sequence = rand(1, 1000);
     $process_button_string = olc_draw_hidden_field('x_Login', MODULE_PAYMENT_AUTHORIZENET_LOGIN) . olc_draw_hidden_field('x_Card_Num', $this->cc_card_number) . olc_draw_hidden_field('x_Exp_Date', $this->cc_expiry_month . substr($this->cc_expiry_year, -2)) . olc_draw_hidden_field('x_Amount', number_format($order->info['total'], 2)) . olc_draw_hidden_field('x_Relay_URL', olc_href_link(FILENAME_CHECKOUT_PROCESS, '', SSL, false)) . olc_draw_hidden_field('x_Method', MODULE_PAYMENT_AUTHORIZENET_METHOD == 'Credit Card' ? 'CC' : 'ECHECK') . olc_draw_hidden_field('x_Version', '3.0') . olc_draw_hidden_field('x_Cust_ID', $_SESSION['customer_id']) . olc_draw_hidden_field('x_Email_Customer', MODULE_PAYMENT_AUTHORIZENET_EMAIL_CUSTOMER == TRUE_STRING_S ? TRUE_STRING_S : 'FALSE') . olc_draw_hidden_field('x_first_name', $order->billing['firstname']) . olc_draw_hidden_field('x_last_name', $order->billing['lastname']) . olc_draw_hidden_field('x_address', $order->billing['street_address']) . olc_draw_hidden_field('x_city', $order->billing['city']) . olc_draw_hidden_field('x_state', $order->billing['state']) . olc_draw_hidden_field('x_zip', $order->billing['postcode']) . olc_draw_hidden_field('x_country', $order->billing['country']['title']) . olc_draw_hidden_field('x_phone', $order->customer['telephone']) . olc_draw_hidden_field('x_email', $order->customer['email_address']) . olc_draw_hidden_field('x_ship_to_first_name', $order->delivery['firstname']) . olc_draw_hidden_field('x_ship_to_last_name', $order->delivery['lastname']) . olc_draw_hidden_field('x_ship_to_address', $order->delivery['street_address']) . olc_draw_hidden_field('x_ship_to_city', $order->delivery['city']) . olc_draw_hidden_field('x_ship_to_state', $order->delivery['state']) . olc_draw_hidden_field('x_ship_to_zip', $order->delivery['postcode']) . olc_draw_hidden_field('x_ship_to_country', $order->delivery['country']['title']) . olc_draw_hidden_field('x_Customer_IP', $_SERVER['REMOTE_ADDR']) . $this->InsertFP(MODULE_PAYMENT_AUTHORIZENET_LOGIN, MODULE_PAYMENT_AUTHORIZENET_TXNKEY, number_format($order->info['total'], 2), $sequence);
     if (MODULE_PAYMENT_AUTHORIZENET_TESTMODE == 'Test') {
         $process_button_string .= olc_draw_hidden_field('x_Test_Request', TRUE_STRING_S);
     }
     $process_button_string .= olc_draw_hidden_field(olc_session_name(), olc_session_id());
     return $process_button_string;
 }
 function debug()
 {
     for ($i = 0, $n = sizeof($this->path); $i < $n; $i++) {
         echo $this->path[$i]['page'] . '?';
         while (list($key, $value) = each($this->path[$i]['get'])) {
             echo $key . '=' . $value . '&';
         }
         if (sizeof($this->path[$i]['post']) > 0) {
             echo '<br>';
             while (list($key, $value) = each($this->path[$i]['post'])) {
                 echo '&nbsp;&nbsp;<b>' . $key . '=' . $value . '</b><br>';
             }
         }
         echo '<br>';
     }
     if (sizeof($this->snapshot) > 0) {
         echo '<br><br>';
         echo $this->snapshot['mode'] . $this->snapshot['page'] . '?' . olc_array_to_string($this->snapshot['get'], array(olc_session_name())) . HTML_BR;
     }
 }
Ejemplo n.º 16
-1
    echo HTML_A_START . olc_href_link(FILENAME_CREATE_ACCOUNT) . '">' . olc_image_button('create_account.gif', CREATE_ACCOUNT) . HTML_A_END;
    ?>
			</td>
			<td class="smallText" align="middle">
				<?php 
    echo olc_draw_form('status', FILENAME_CUSTOMERS, EMPTY_STRING, 'get');
    $select_data = array();
    $select_data = array(array('id' => '99', 'text' => TEXT_SELECT), array('id' => '100', 'text' => TEXT_ALL_CUSTOMERS));
    echo HEADING_TITLE_STATUS . BLANK . olc_draw_pull_down_menu('status', olc_array_merge($select_data, $customers_statuses_array), '99', 'onchange="this.form.submit();"') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
    ?>
				</form>
			</td>
			<td class="smallText" align="right">
				<?php 
    echo olc_draw_form('search', FILENAME_CUSTOMERS, EMPTY_STRING, 'get');
    echo HEADING_TITLE_SEARCH . BLANK . olc_draw_input_field('search') . olc_draw_hidden_field(olc_session_name(), olc_session_id()) . HTML_NBSP . '<input type="image" class="image" src="' . ADMIN_PATH_PREFIX . CURRENT_TEMPLATE_BUTTONS . 'button_quick_find.gif' . '" style="border:0px" title="' . IMAGE_BUTTON_SEARCH . '">' . HTML_NBSP;
    ?>
				</form>
			</td>
		</tr>
	</table>

	</td>
	</tr>
	<tr>
	<td><table border="0" width="100%" cellspacing="0" cellpadding="0">
	<tr>
	<td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
	<tr class="dataTableHeadingRow">
	<td class="dataTableHeadingContent" width="1"><?php 
    echo TABLE_HEADING_ACCOUNT_TYPE;