$r = $dosql->GetOne("SELECT * FROM `#@__infoimg` WHERE classid=" . $row['classid'] . " AND orderid>" . $row['orderid'] . " AND delstate='' AND checkinfo=true ORDER BY orderid ASC");
if ($r < 1) {
echo '<li>下一篇:已经没有了</li>';
} else {
if ($cfg_isreurl != 'Y') {
$gourl = 'caseshow.php?cid=' . $r['classid'] . '&id=' . $r['id'];
} else {
$gourl = 'caseshow-' . $r['classid'] . '-' . $r['id'] . '-1.html';
}
echo '<li>下一篇:<a href="' . $gourl . '">' . $r['title'] . '</a></li>';
}
?>
</ul>
<ul class="actBox">
<li id="act-pus"><a href="javascript:;" onclick="<?php
$c_uname = isset($_COOKIE['username']) ? AuthCode($_COOKIE['username']) : '';
if ($c_uname != '') {
echo 'AddUserFavorite()';
} else {
echo 'AddFavorite();';
}
?>
">收藏</a></li>
<li id="act-pnt"><a href="javascript:;" onclick="window.print();">打印</a></li>
</ul>
<input type="hidden" name="aid" id="aid" value="<?php
echo $id;
?>
" />
<input type="hidden" name="molds" id="molds" value="2" />
</div>
}
//HTML转义变量
$username = htmlspecialchars($username);
$truename = htmlspecialchars($truename);
$idcard = htmlspecialchars($idcard);
$telephone = htmlspecialchars($telephone);
$zipcode = htmlspecialchars($zipcode);
$address = htmlspecialchars($address);
$buyremark = htmlspecialchars($buyremark);
$posttime = time();
$postarea_prov = empty($postarea_prov) ? '-1' : $postarea_prov;
$postarea_city = empty($postarea_city) ? '-1' : $postarea_city;
$postarea_country = empty($postarea_country) ? '-1' : $postarea_country;
$orderinfo = array('truename' => $truename, 'telephone' => $telephone, 'zipcode' => $zipcode, 'postarea_prov' => $postarea_prov, 'postarea_city' => $postarea_city, 'postarea_country' => $postarea_country, 'address' => $address, 'idcard' => $idcard, 'postmode' => $postmode, 'paymode' => $paymode, 'getmode' => $getmode, 'buyremark' => $buyremark, 'posttime' => $posttime);
//存入COOKIE
setcookie('orderinfo', AuthCode(serialize($orderinfo), 'ENCODE'));
header('location:orderenter.php');
exit;
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<?php
echo GetHeader(0, 0, '商品订单');
?>
<link href="templates/default/style/webstyle.css" type="text/css" rel="stylesheet" />
<script type="text/javascript" src="templates/default/js/jquery.min.js"></script>
<script type="text/javascript" src="templates/default/js/getarea.js"></script>
<script type="text/javascript" src="templates/default/js/top.js"></script>
/data/avatar/index.php?uid=<?php
echo $r_user['id'];
?>
&size=middle" />
<img src="<?php
echo $cfg_webpath;
?>
/data/avatar/index.php?uid=<?php
echo $r_user['id'];
?>
&size=small" />
</div>
<h3 class="subtitle">上传头像</h3>
<div class="upavatar">
<iframe src="data/avatar/upload.php?uid=<?php
echo urlencode(AuthCode($r_user['id'], 'ENCODE'));
?>
" width="458" height="268" frameborder="0" scrolling="no"></iframe>
<div>头像上传成功后,点击完成或刷新页面(可按F5键),才能查看最新的头像效果</div>
</div>
</div>
<div class="cl"></div>
</div>
<div class="footer"><?php
echo $cfg_copyright;
?>
</div>
<script type="text/javascript">
function updateavatar() {
window.location.reload();
}
if (check_app_login('weibo')) {
$r = $dosql->GetOne("SELECT `id` FROM `#@__member` WHERE `qqid`='" . $_SESSION['app']['weibo']['idstr'] . "'");
if (isset($r['id'])) {
ShowMsg('该微博已与其他账号绑定!', '-1');
} else {
$weiboid = $_SESSION['app']['weibo']['idstr'];
$sql = "UPDATE `#@__member` SET `weiboid`='{$weiboid}' WHERE `username`='{$username}'";
}
}
}
$dosql->ExecNoneQuery($sql);
//用绑定账号登录
$cookie_time = time() + 3600;
setcookie('username', AuthCode($username, 'ENCODE'), $cookie_time);
setcookie('lastlogintime', AuthCode($row['logintime'], 'ENCODE'), $cookie_time);
setcookie('lastloginip', AuthCode($row['loginip'], 'ENCODE'), $cookie_time);
ShowMsg('绑定账号成功!', '?c=default');
exit;
}
} else {
if ($a == 'removeoqq') {
$r = $dosql->GetOne("SELECT `id` FROM `#@__member` WHERE `username`='{$c_uname}' AND `qqid`<>''");
if (empty($r) && !is_array($r)) {
ShowMsg('错误的操作,您没有绑定QQ账号!', '-1');
} else {
$dosql->ExecNoneQuery("UPDATE `#@__member` SET `qqid`='' WHERE `username`='{$c_uname}'");
ShowMsg('解除QQ绑定成功!', '?c=edit');
}
exit;
} else {
if ($a == 'removeoweibo') {
?>
">首页</a> > <a href="message.php">客户留言</a></span>
<div class="cl"></div>
</div>
<div class="OneOfTwo">
<div class="subCont">
<form name="form" id="form" method="post" action="">
<span class="msgtitle">联系方式:</span><input name="contact" type="text" id="contact" class="msg_input" /><div class="hr_10"></div><div class="hr_10"></div>
<span class="msgtitle">内 容:</span><textarea name="content" class="msg_input" style="width:729px;height:180px;overflow:auto;" id="content" ></textarea><div class="hr_10"></div><div class="hr_10"></div>
<span class="msgtitle">验证码:</span><input name="validate" type="text" id="validate" class="msg_input" style="width:120px;margin-right:5px;" /> <span><img id="ckstr" src="data/captcha/ckstr.php" title="看不清?点击更换" align="absmiddle" style="cursor:pointer;" onClick="this.src=this.src+'?'" /> <a href="javascript:;" onClick="var v=document.getElementById('ckstr');v.src=v.src+'?';return false;">看不清?</a></span><br /><div class="hr_10"></div><div class="hr_10"></div>
<div class="msg_btn_area"> <a href="javascript:void(0);" onclick="cfm_msg();return false;">提 交</a></div>
<input type="hidden" name="action" id="action" value="add" />
<?php
if (!empty($_COOKIE['username'])) {
$nickname = AuthCode($_COOKIE['username']);
} else {
$nickname = '游客';
}
?>
<input type="hidden" name="nickname" id="nickname" value="<?php
echo $nickname;
?>
" />
</form>
<?php
$dopage->GetPage("SELECT * FROM `#@__message` WHERE checkinfo=true ORDER BY `htop` DESC, `orderid` DESC", 10);
$i = $dosql->GetTotalRow();
while ($row = $dosql->GetArray()) {
?>
<?php
header('Content-type:text/html;charset=utf-8');
require_once dirname(__FILE__) . '/../../../Common/index.php';
if ($money < 0 && $userid == '' && $username == '') {
header('location:/member.php');
exit;
}
$row = $dosql->GetOne("SELECT id,username FROM `#@__member` WHERE `id`='{$userid}'");
if ($row['username'] != $username) {
header('location:/member.php');
exit;
}
$userid = AuthCode($row['id'], 'ENCODE');
require_once dirname(__FILE__) . '/func/common.php';
require_once dirname(__FILE__) . '/func/SDKConfig.php';
require_once dirname(__FILE__) . '/func/secureUtil.php';
require_once dirname(__FILE__) . '/func/log.class.php';
/**
* 消费交易-前台
*/
/**
* 以下代码只是为了方便商户测试而提供的样例代码,商户可以根据自己需要,按照技术文档编写。该代码仅供参考
*/
// 初始化日志
$log = new PhpLog(SDK_LOG_FILE_PATH, "PRC", SDK_LOG_LEVEL);
$log->LogInfo("============处理前台请求开始===============");
// 初始化日志
$params = array('version' => '5.0.0', 'encoding' => 'utf-8', 'certId' => getSignCertId(), 'txnType' => '01', 'txnSubType' => '01', 'bizType' => '000201', 'frontUrl' => 'http://localhost/data/api/unionpay/Balance_FrontReceive.php', 'backUrl' => 'http://localhost/data/api/unionpay/Balance_BackReceive.php', 'signMethod' => '01', 'channelType' => '07', 'accessType' => '0', 'merId' => '777290058112538', 'orderId' => date('YmdHis'), 'txnTime' => date('YmdHis'), 'txnAmt' => $money * 100, 'currencyCode' => '156', 'defaultPayType' => '0001', 'reqReserved' => $userid);
// 签名
sign($params);
// 前台请求地址
$aid = isset($aid) ? intval($aid) : 0;
//广告分类ID
$a = isset($a) ? $a : '';
$checkid = isset($checkid) ? $checkid : '';
//初始登录信息
if (empty($_COOKIE['username']) || empty($_COOKIE['lastlogintime']) || empty($_COOKIE['lastloginip'])) {
$c_uname = '';
$c_logintime = '';
$c_loginip = '';
header('location:/member.php');
exit;
} else {
require_once '../../Common/index.php';
$c_uname = AuthCode($_COOKIE['username']);
$c_logintime = AuthCode($_COOKIE['lastlogintime']);
$c_loginip = AuthCode($_COOKIE['lastloginip']);
}
//获取用户信息
$r_user = $dosql->GetOne("SELECT * FROM `#@__member` WHERE `username`='{$c_uname}'");
//当记录出现错误,强制跳转
if (!isset($r_user) or !is_array($r_user)) {
header('location:/');
exit;
}
//判断是否为当前级别会员
if ($r_user['usertype'] != 1) {
header('location:/member.php');
exit;
}
//获取店铺信息
$r_shop = $dosql->GetOne("SELECT * FROM `#@__shops` WHERE `userid`='" . $r_user['id'] . "'");
function getsScanlog($user)
{
if ($user == '') {
if (!isset($_COOKIE['goodsid'])) {
return false;
}
$goodsid = AuthCode($_COOKIE['goodsid'], 'DECODE');
$goodsid = " id in (" . substr($goodsid, 0, '-1') . ")";
echo $goodsid;
return $goodsid;
} else {
$rows = MysqlRowSelect('lgsc_scanlog', 'goodsid', "userid='{$user['userid']}'");
if ($rows == '-1') {
return false;
}
$goodsid = " id in (";
for ($i = 0, $n = count($rows); $i < $n; $i++) {
$goodsid .= $rows[$i]['goodsid'] . ',';
}
$goodsid = substr($goodsid, 0, '-1') . ')';
return $goodsid;
}
}
if (!empty($_COOKIE['shoppingcart'])) {
?>
<table width="100%" border="0" cellspacing="0" cellpadding="0" class="shoppingcart">
<tr class="thead">
<td width="65%" height="30"> 商品名称</td>
<td width="15%">购买数量</td>
<td width="15%">价格</td>
<td width="5%">操作</td>
</tr>
<tr>
<td height="10" colspan="4"></td>
</tr>
<?php
//初始化参数
$totalprice = '';
$shoppingcart = unserialize(AuthCode($_COOKIE['shoppingcart']));
//显示订单列表
foreach ($shoppingcart as $k => $goods) {
?>
<tr>
<td height="30">
<?php
//获取数据库中商品信息
$r = $dosql->GetOne("SELECT * FROM `#@__goods` WHERE `id`=" . intval($goods[0]));
//计算订单总价
$totalprice += $r['salesprice'] * $goods[1];
//输出商品名称
echo '<a href="goodsshow.php?cid=' . $r['classid'] . '&tid=' . $r['typeid'] . '&id=' . $r['id'] . '" class="title" target="_blank">' . $r['title'] . '</a>';
//输出选中属性
foreach ($goods[2] as $v) {
echo '<span class="attr">' . $v . '</span>';
$totalprice += $r['salesprice'] * $goods[1];
//计算订单总重
$totalweight += $r['weight'] * $goods[1];
}
//构成总价、总重、运费数组
$priceweight = array('totalprice' => $totalprice, 'totalweight' => $totalweight, 'cost' => $postprice);
//更新订单信息数组
$orderinfo = array_merge($orderinfo, $priceweight);
//存入COOKIE
setcookie('orderinfo', AuthCode(serialize($orderinfo), 'ENCODE'));
//保存订单
if ($action == 'save') {
//解析COOKIE
$username = AuthCode($_COOKIE['username']);
$orderarr = unserialize(AuthCode($_COOKIE['orderinfo']));
$attrstr = AuthCode($_COOKIE['shoppingcart']);
//生成订单序号
$orderid = GetOrderID('#@__goodsorder');
//订单号
$ordernum = MyDate('Ymd', time()) . mt_rand(0, 9999);
$sql = "INSERT INTO `#@__goodsorder` (username, attrstr, truename, idcard, telephone, zipcode, postarea_prov, postarea_city, postarea_country, address, ordernum, postmode, paymode, getmode, weight, cost, amount, buyremark, posttime, orderid, checkinfo) VALUES ('{$username}', '{$attrstr}', '" . $orderarr['truename'] . "', '" . $orderarr['idcard'] . "', '" . $orderarr['telephone'] . "', '" . $orderarr['zipcode'] . "', '" . $orderarr['postarea_prov'] . "', '" . $orderarr['postarea_city'] . "', '" . $orderarr['postarea_country'] . "', '" . $orderarr['address'] . "', '{$ordernum}', '" . $orderarr['postmode'] . "', '" . $orderarr['paymode'] . "', '" . $orderarr['getmode'] . "', '" . $orderarr['totalweight'] . "', '" . $orderarr['cost'] . "', '" . $orderarr['totalprice'] . "', '" . $orderarr['buyremark'] . "', '" . $orderarr['posttime'] . "', '{$orderid}', 'confirm')";
if ($dosql->ExecNoneQuery($sql)) {
setcookie('shoppingcart', '', time() - 3600);
setcookie('orderinfo', '', time() - 3600);
if ($orderarr['paymode'] == 1) {
header('location:orderpay.php?id=' . $dosql->GetLastID());
exit;
} else {
ShowMsg('订单提交成功!', 'shoppingcart.php');
exit;
}
<?php
require_once dirname(__FILE__) . '/func/common.php';
require_once dirname(__FILE__) . '/func/secureUtil.php';
if (isset($_POST['signature']) && $_POST['respMsg'] == 'success' && $_POST['reqReserved'] != '' && $_POST['txnAmt'] != '') {
require_once dirname(__FILE__) . '/../../../Common/index.php';
$userid = AuthCode($_POST['reqReserved']);
$price = $_POST['txnAmt'] / 100;
$dosql->ExecNoneQuery("UPDATE `#@__member` SET money=money+{$price} WHERE id='{$userid}'");
$posttime = time();
$dosql->ExecNoneQuery("INSERT INTO `#@__balance` (userid, btype, money, posttime) VALUES ('{$userid}', '1', '{$price}', '{$posttime}')");
}
header('location:/member/person/?action=balance');
exit;
</ul>
<div class="divclear"></div>
</div>
</span> 您好!欢迎进入临港大市场 <span><?php
echo date('Y年m月d日');
?>
</span> <?php
echo '星期' . $week[date('w')];
?>
</span>
<span class="t_right">
<ul>
<?php
if (!empty($_COOKIE['username']) && !empty($_COOKIE['lastlogintime']) && !empty($_COOKIE['lastloginip'])) {
echo '<li><a href="/member.php">' . AuthCode($_COOKIE['username']) . '</a> <a href="/member.php?a=logout">退出</a></li>';
$c_uname = AuthCode($_COOKIE['username']);
$usertype = @$_COOKIE['usertype'];
$usertype = isset($usertype) ? $usertype : 1;
$r_usertype = $dosql->GetOne("SELECT usertype FROM `#@__member` WHERE `username`='{$c_uname}'");
if ($r_usertype['usertype'] == '1') {
if (substr(dirname($_SERVER['SCRIPT_NAME']), 8) == 'shop') {
echo '<li><a href="/member/person/">买家中心</a></li>';
} else {
echo '<li><a href="/member/shop/">商家中心</a></li>';
}
}
} else {
echo '<li>请<a href="/member.php?c=login"><i>登录</i></a> <a href="/member.php?c=reg">免费注册</a></li>';
}
?>
<li><a href="/member.php">我的订单</a></li>
