function olc_update_whos_online($url = EMPTY_STRING)
{
if (ISSET_CUSTOMER_ID) {
$wo_customer_id = CUSTOMER_ID;
$customer_query = olc_db_query(SELECT . "customers_firstname, customers_lastname from " . TABLE_CUSTOMERS . " where customers_id = '" . $_SESSION['customer_id'] . APOS);
$customer = olc_db_fetch_array($customer_query);
$wo_full_name = addslashes($customer['customers_firstname'] . BLANK . $customer['customers_lastname']);
} else {
$wo_full_name = $_SESSION['customers_status']['customers_status_name'];
$wo_customer_id = 0;
}
$wo_session_id = olc_session_id();
//$wo_ip_address = getenv('REMOTE_ADDR');
olc_get_ip_info(&$smarty);
$wo_ip_address = $_SESSION['CUSTOMERS_IP'];
$pos = strpos($wo_ip_address, RPAREN);
if ($pos !== false) {
$wo_ip_address = substr($wo_ip_address, 0, $pos + 1);
}
if (!$url) {
$url = addslashes(getenv('REQUEST_URI'));
}
$wo_last_page_url = str_replace(DIR_WS_CATALOG, EMPTY_STRING, $url);
$pos = strpos($wo_last_page_url, 'start_debug');
//Eliminate debugger parameters
if ($pos === false) {
$pos = strpos($wo_last_page_url, 'DBGSESSION');
//Eliminate debugger parameters
}
if ($pos !== false) {
$wo_last_page_url = substr($wo_last_page_url, 0, $pos - 1);
}
if (USE_AJAX) {
$pos = strpos($wo_last_page_url, AJAX_ID);
if ($pos !== false) {
$wo_last_page_url = substr($wo_last_page_url, 0, $pos - 1) . substr($wo_last_page_url, $pos + strlen(AJAX_ID));
}
}
$current_time = time();
//Do garbage collection in session db
_sess_gc(EMPTY_STRING);
//Delete all from "whos_online" without a session entry
//olc_db_query(DELETE_FROM . TABLE_WHOS_ONLINE. ' WHERE session_id NOT IN (SELECT sesskey FROM '.TABLE_SESSIONS.RPAREN);
$sesskey = TABLE_SESSIONS . '.sesskey';
olc_db_query('DELETE ' . TABLE_WHOS_ONLINE . ' FROM ' . TABLE_WHOS_ONLINE . COMMA_BLANK . TABLE_SESSIONS . ' WHERE ' . TABLE_WHOS_ONLINE . '.session_id = ' . $sesskey . ' AND ' . $sesskey . ' IS NULL');
$sql_data = array('customer_id' => $wo_customer_id, 'full_name' => $wo_full_name, 'session_id' => $wo_session_id, 'time_last_click' => $current_time, 'last_page_url' => $wo_last_page_url);
$sql_where = "session_id = '" . $wo_session_id . APOS;
$stored_customer_query = olc_db_query("select count(*) as count from " . TABLE_WHOS_ONLINE . " where " . $sql_where);
$stored_customer = olc_db_fetch_array($stored_customer_query);
if ($stored_customer['count'] > 0) {
$sql_action = 'update';
} else {
$sql_data = array_merge($sql_data, array('ip_address' => $wo_ip_address, 'time_entry' => $current_time));
$sql_action = 'insert';
$sql_where = EMPTY_STRING;
}
olc_db_perform(TABLE_WHOS_ONLINE, $sql_data, $sql_action, $sql_where);
}
function olc_hide_session_id()
{
global $session_started;
if ($session_started) {
if (defined('SID')) {
if (olc_not_null(SID)) {
return olc_draw_hidden_field(olc_session_name(), olc_session_id());
}
}
}
}
$Id: attributemanagerheader.inc.php,v 1.1.1.1 2006/12/22 13:37:21 gswkaiser Exp $
osCommerce, Open Source E-Commerce Solutions
http://www.oscommerce.com
Released under the GNU General Public License
Web Development
http://www.kangaroopartners.com
Adopted for OL-Commerce by: Dipl.-Ing.(TH) W. Kaiser, w.kaiser@fortune.de. 2/23/2006
*/
//W. Kaiser - AJAX
$productsId = 'productsId="' . $_GET['pID'] . '"';
$pageAction = 'pageAction="' . $action . '"';
$sessionId = 'sessionId="' . olc_session_name() . '=' . olc_session_id() . '"';
if (IS_AJAX_PROCESSING) {
$ajax_script_id++;
define('AJAX_SCRIPT_' . $ajax_script_id, $productsId . '
' . $pageAction . '
' . $sessionId . '
goOnLoad()
');
} else {
$script .= '
<!-- osc@kangaroopartners.com - AJAX Attribute Manager start-->
<script language="JavaScript" type="text/JavaScript" src="attributemanager/javascript/attributemanager.js"></script>
<link rel="stylesheet" type="text/css" href="attributemanager/css/attributemanager.css" />
<script language="JavaScript" type="text/javascript">
var ' . $productsId . '
var ' . $pageAction . '
function process_button()
{
global $order, $currencies;
switch (MODULE_PAYMENT_SECPAY_CURRENCY) {
case 'Default Currency':
$sec_currency = DEFAULT_CURRENCY;
break;
case 'Any Currency':
default:
$sec_currency = $_SESSION['currency'];
break;
}
switch (MODULE_PAYMENT_SECPAY_TEST_STATUS) {
case 'Always Fail':
$test_status = FALSE_STRING_S;
break;
case 'Production':
$test_status = 'live';
break;
case 'Always Successful':
default:
$test_status = TRUE_STRING_S;
break;
}
$process_button_string = olc_draw_hidden_field('merchant', MODULE_PAYMENT_SECPAY_MERCHANT_ID) . olc_draw_hidden_field('trans_id', STORE_NAME . date('Ymdhis')) . olc_draw_hidden_field('amount', number_format($order->info['total'] * $currencies->get_value($sec_currency), $currencies->currencies[$sec_currency]['decimal_places'], '.', '')) . olc_draw_hidden_field('bill_name', $order->billing['firstname'] . BLANK . $order->billing['lastname']) . olc_draw_hidden_field('bill_addr_1', $order->billing['street_address']) . olc_draw_hidden_field('bill_addr_2', $order->billing['suburb']) . olc_draw_hidden_field('bill_city', $order->billing['city']) . olc_draw_hidden_field('bill_state', $order->billing['state']) . olc_draw_hidden_field('bill_post_code', $order->billing['postcode']) . olc_draw_hidden_field('bill_country', $order->billing['country']['title']) . olc_draw_hidden_field('bill_tel', $order->customer['telephone']) . olc_draw_hidden_field('bill_email', $order->customer['email_address']) . olc_draw_hidden_field('ship_name', $order->delivery['firstname'] . BLANK . $order->delivery['lastname']) . olc_draw_hidden_field('ship_addr_1', $order->delivery['street_address']) . olc_draw_hidden_field('ship_addr_2', $order->delivery['suburb']) . olc_draw_hidden_field('ship_city', $order->delivery['city']) . olc_draw_hidden_field('ship_state', $order->delivery['state']) . olc_draw_hidden_field('ship_post_code', $order->delivery['postcode']) . olc_draw_hidden_field('ship_country', $order->delivery['country']['title']) . olc_draw_hidden_field('currency', $sec_currency) . olc_draw_hidden_field('callback', olc_href_link(FILENAME_CHECKOUT_PROCESS, '', SSL, false) . ';' . olc_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code, SSL, false)) . olc_draw_hidden_field(olc_session_name(), olc_session_id()) . olc_draw_hidden_field('options', 'test_status=' . $test_status . ',dups=false,cb_post=true,cb_flds=' . olc_session_name());
return $process_button_string;
}
function process_button()
{
global $order, $currencies;
//, $xtPrice;
//error_reporting(E_ALL);
$my_currency = $_SESSION['currency'];
$worldpay_url = olc_session_name() . '=' . olc_session_id();
// $total = number_format($xtPrice->olcCalculateCurr($order->info['total']), $xtPrice->get_decimal_places($_SESSION['currency']), '.', '');
$total = number_format($order->info['total'] - $order->info['shipping_cost'], $currencies->get_decimal_places($my_currency));
$process_button_string = olc_draw_hidden_field('instId', MODULE_PAYMENT_WORLDPAY_ID) . olc_draw_hidden_field('currency', $_SESSION['currency']) . olc_draw_hidden_field('desc', 'Purchase from ' . STORE_NAME) . olc_draw_hidden_field('cartId', $worldpay_url) . olc_draw_hidden_field('amount', $total);
// Pre Auth Mod 3/1/2002 - Graeme Conkie
if (MODULE_PAYMENT_WORLDPAY_USEPREAUTH == TRUE_STRING_S) {
$process_button_string .= olc_draw_hidden_field('authMode', MODULE_PAYMENT_WORLDPAY_PREAUTH);
}
// Ian-san: Create callback and language links here 6/4/2003:
$language_code_raw = olc_db_query("select code from " . TABLE_LANGUAGES . " where languages_id ='" . $_SESSION['languages_id'] . APOS);
$language_code_array = olc_db_fetch_array($language_code_raw);
$language_code = $language_code_array['code'];
$address = htmlspecialchars($order->customer['street_address'] . NEW_LINE . $order->customer['suburb'] . NEW_LINE . $order->customer['city'] . NEW_LINE . $order->customer['state'], ENT_QUOTES);
//W. Kaiser - Enhance WP security
include_once DIR_FS_INC . 'olc_rand.php';
$worldpay_id = olc_rand(10000, 100000000000);
$_SESSION['worldpay_id'] = $worldpay_id;
$process_button_string .= olc_draw_hidden_field('testMode', MODULE_PAYMENT_WORLDPAY_MODE) . olc_draw_hidden_field('name', $order->customer['firstname'] . ' ' . $order->customer['lastname']) . olc_draw_hidden_field('address', $address) . olc_draw_hidden_field('postcode', $order->customer['postcode']) . olc_draw_hidden_field('country', $order->customer['country']['iso_code_2']) . olc_draw_hidden_field('tel', $order->customer['telephone']) . olc_draw_hidden_field('myvar', $worldpay_id) . olc_draw_hidden_field('fax', $order->customer['fax']) . olc_draw_hidden_field('email', $order->customer['email_address']) . olc_draw_hidden_field('lang', $language_code) . olc_draw_hidden_field('MC_callback', olc_href_link('wpcallback.php') . olc_draw_hidden_field('MC_OLCsid', olc_session_id()));
//W. Kaiser - Enhance WP security
// Ian-san: Added MD5 here 6/4/2003:
if ('MODULE_PAYMENT_WORLDPAY_USEMD5' == '1') {
$md5_signature_fields = 'amount:language:email';
$md5_signature = MODULE_PAYMENT_WORLDPAY_MD5KEY . ':' . number_format($order->info['total'] * $currencies->get_value($currency), $currencies->get_decimal_places($currency), '.', '') . ':' . $language_code . ':' . $order->customer['email_address'];
$md5_signature_md5 = md5($md5_signature);
$process_button_string .= olc_draw_hidden_field('signatureFields', $md5_signature_fields) . olc_draw_hidden_field('signature', $md5_signature_md5);
}
return $process_button_string;
}
<td align="right">
<table border="0" width="100%" cellspacing="0" cellpadding="0">
<tr>
<td class="smallText" align="right">
<?php
echo olc_draw_form('search', FILENAME_CATEGORIES, EMPTY_STRING, 'get');
echo HEADING_TITLE_SEARCH . BLANK . olc_draw_input_field('search', $search) . olc_draw_hidden_field(olc_session_name(), olc_session_id());
?>
</form>
</td>
</tr>
<tr>
<td class="smallText" align="right">
<?php
echo olc_draw_form('goto', FILENAME_CATEGORIES, EMPTY_STRING, 'get');
echo HEADING_TITLE_GOTO . BLANK . olc_draw_pull_down_menu('cPath', olc_get_category_tree(), $current_category_id, 'onchange="this.form.submit();"') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
?>
</form>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td><table border="0" width="100%" cellspacing="0" cellpadding="0">
<tr>
<td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
<tr class="dataTableHeadingRow">
echo olc_draw_form('orders', FILENAME_ORDERS, EMPTY_STRING, 'get');
?>
<?php
echo HEADING_TITLE_SEARCH . BLANK . olc_draw_input_field('oID', EMPTY_STRING, 'size="12"') . olc_draw_hidden_field('action', 'edit') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
?>
</form>
</td>
</tr>
<tr>
<td class="main" valign="top">OLC Bestellungen</td>
<td class="main" valign="top" align="right">
<?php
echo olc_draw_form('status', FILENAME_ORDERS, EMPTY_STRING, 'get');
?>
<?php
echo HEADING_TITLE_STATUS . BLANK . olc_draw_pull_down_menu('status', olc_array_merge(array(array('id' => EMPTY_STRING, 'text' => TEXT_ALL_ORDERS)), $orders_statuses), EMPTY_STRING, 'onchange="this.form.submit();"') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
?>
</form>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td>
<table border="0" width="100%" cellspacing="0" cellpadding="0">
<tr>
<td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
<tr class="dataTableHeadingRow">
<td class="dataTableHeadingContent"><?php
echo TABLE_HEADING_CUSTOMERS;
function process_button()
{
global $order;
$sequence = rand(1, 1000);
$process_button_string = olc_draw_hidden_field('x_Login', MODULE_PAYMENT_AUTHORIZENET_LOGIN) . olc_draw_hidden_field('x_Card_Num', $this->cc_card_number) . olc_draw_hidden_field('x_Exp_Date', $this->cc_expiry_month . substr($this->cc_expiry_year, -2)) . olc_draw_hidden_field('x_Amount', number_format($order->info['total'], 2)) . olc_draw_hidden_field('x_Relay_URL', olc_href_link(FILENAME_CHECKOUT_PROCESS, '', SSL, false)) . olc_draw_hidden_field('x_Method', MODULE_PAYMENT_AUTHORIZENET_METHOD == 'Credit Card' ? 'CC' : 'ECHECK') . olc_draw_hidden_field('x_Version', '3.0') . olc_draw_hidden_field('x_Cust_ID', $_SESSION['customer_id']) . olc_draw_hidden_field('x_Email_Customer', MODULE_PAYMENT_AUTHORIZENET_EMAIL_CUSTOMER == TRUE_STRING_S ? TRUE_STRING_S : 'FALSE') . olc_draw_hidden_field('x_first_name', $order->billing['firstname']) . olc_draw_hidden_field('x_last_name', $order->billing['lastname']) . olc_draw_hidden_field('x_address', $order->billing['street_address']) . olc_draw_hidden_field('x_city', $order->billing['city']) . olc_draw_hidden_field('x_state', $order->billing['state']) . olc_draw_hidden_field('x_zip', $order->billing['postcode']) . olc_draw_hidden_field('x_country', $order->billing['country']['title']) . olc_draw_hidden_field('x_phone', $order->customer['telephone']) . olc_draw_hidden_field('x_email', $order->customer['email_address']) . olc_draw_hidden_field('x_ship_to_first_name', $order->delivery['firstname']) . olc_draw_hidden_field('x_ship_to_last_name', $order->delivery['lastname']) . olc_draw_hidden_field('x_ship_to_address', $order->delivery['street_address']) . olc_draw_hidden_field('x_ship_to_city', $order->delivery['city']) . olc_draw_hidden_field('x_ship_to_state', $order->delivery['state']) . olc_draw_hidden_field('x_ship_to_zip', $order->delivery['postcode']) . olc_draw_hidden_field('x_ship_to_country', $order->delivery['country']['title']) . olc_draw_hidden_field('x_Customer_IP', $_SERVER['REMOTE_ADDR']) . $this->InsertFP(MODULE_PAYMENT_AUTHORIZENET_LOGIN, MODULE_PAYMENT_AUTHORIZENET_TXNKEY, number_format($order->info['total'], 2), $sequence);
if (MODULE_PAYMENT_AUTHORIZENET_TESTMODE == 'Test') {
$process_button_string .= olc_draw_hidden_field('x_Test_Request', TRUE_STRING_S);
}
$process_button_string .= olc_draw_hidden_field(olc_session_name(), olc_session_id());
return $process_button_string;
}
echo HTML_A_START . olc_href_link(FILENAME_CREATE_ACCOUNT) . '">' . olc_image_button('create_account.gif', CREATE_ACCOUNT) . HTML_A_END;
?>
</td>
<td class="smallText" align="middle">
<?php
echo olc_draw_form('status', FILENAME_CUSTOMERS, EMPTY_STRING, 'get');
$select_data = array();
$select_data = array(array('id' => '99', 'text' => TEXT_SELECT), array('id' => '100', 'text' => TEXT_ALL_CUSTOMERS));
echo HEADING_TITLE_STATUS . BLANK . olc_draw_pull_down_menu('status', olc_array_merge($select_data, $customers_statuses_array), '99', 'onchange="this.form.submit();"') . olc_draw_hidden_field(olc_session_name(), olc_session_id());
?>
</form>
</td>
<td class="smallText" align="right">
<?php
echo olc_draw_form('search', FILENAME_CUSTOMERS, EMPTY_STRING, 'get');
echo HEADING_TITLE_SEARCH . BLANK . olc_draw_input_field('search') . olc_draw_hidden_field(olc_session_name(), olc_session_id()) . HTML_NBSP . '<input type="image" class="image" src="' . ADMIN_PATH_PREFIX . CURRENT_TEMPLATE_BUTTONS . 'button_quick_find.gif' . '" style="border:0px" title="' . IMAGE_BUTTON_SEARCH . '">' . HTML_NBSP;
?>
</form>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td><table border="0" width="100%" cellspacing="0" cellpadding="0">
<tr>
<td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
<tr class="dataTableHeadingRow">
<td class="dataTableHeadingContent" width="1"><?php
echo TABLE_HEADING_ACCOUNT_TYPE;
