<?php
require_once "framework2/CredentialStore.php";
$cs = new CredentialStore();
$schoolTextId = $cs->cookieCheck("sPref");
if ($cs->getSchoolName($schoolTextId) == null) {
header('Location: selector');
}
if (!($loggedIn = $cs->getLoginStatus())) {
header('Location: ./');
}
?>
<!DOCTYPE html>
<html>
<head>
<title>Walkntrade</title>
<link type="text/css" rel="stylesheet" href="css/style.css">
<link type="text/css" rel="stylesheet" href="/css/spritesheet.css">
<link type="text/css" rel="stylesheet" href="css/login_window.css">
<link type="text/css" rel="stylesheet" href="css/addlisting.css">
<link rel="shortcut icon" href="http://www.walkntrade.com/favicon.ico?v=2" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="Content-Language" content="en" />
<script>
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
})(window,document,'script','//www.google-analytics.com/analytics.js','ga');
ga('create', 'UA-42896980-1', 'auto');
ga('send', 'pageview');
<?php
require_once "framework2/CredentialStore.php";
$cs = new CredentialStore();
$loggedIn = $cs->getLoginStatus();
?>
<!DOCTYPE html>
<html>
<head>
<title>Walkntrade | Terms of Service</title>
<link type="text/css" rel="stylesheet" href="css/style.css">
<link type="text/css" rel="stylesheet" href="/css/spritesheet.css">
<link type="text/css" rel="stylesheet" href="css/login_window.css">
<link rel="shortcut icon" href="http://www.walkntrade.com/favicon.ico?v=2" />
<meta name="description" content="Terms of Service" >
<meta name="robots" content="NOINDEX, NOFOLLOW" />
<meta http-equiv="Content-Language" content="en">
<script>
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
})(window,document,'script','//www.google-analytics.com/analytics.js','ga');
ga('create', 'UA-42896980-1', 'auto');
ga('send', 'pageview');
</script>
</head>
<body>
<div id="throbber"><img src="colorful/loader.gif"></div>
<div class="headerBar"></div>
case "resetPassword":
require_once "../framework2/Walkntrade.php";
$wt = new Walkntrade();
$wt->resetPassword(filter_var($_POST["email"], FILTER_SANITIZE_EMAIL));
break;
case "sendFeedback":
require_once "../framework2/Walkntrade.php";
$wt = new Walkntrade();
if (isset($_POST["message"])) {
$email = isset($_POST["email"]) ? $_POST["email"] : "";
$wt->sendFeedback($email, $_POST["message"]);
}
break;
case "getPhoneNum":
require_once "../framework/CredentialStore.php";
$cs = new CredentialStore();
echo $cs->getPhoneNum();
break;
case "getCategories":
require_once "../framework2/Walkntrade.php";
$wt = new Walkntrade();
$wt->getCategories();
break;
case "createMessageThread":
require_once "../framework2/UserMgmt.php";
$um = new UserMgmt();
$message_content = isset($_POST["message"]) ? filter_var($_POST["message"], FILTER_SANITIZE_STRING) : null;
$post_id = isset($_POST["post_id"]) ? filter_var($_POST["post_id"], FILTER_SANITIZE_STRING) : null;
$um->createMessageThread($message_content, $post_id);
break;
case "getMessageThreadsCurrentUser":
public function __construct()
{
parent::__construct();
}
<?php
require_once "framework2/CredentialStore.php";
$cs = new CredentialStore();
$serverName = basename($_SERVER["SERVER_NAME"]);
$serverURI = $_SERVER['REQUEST_URI'];
if (!in_array($serverName, $cs->getValidDomains())) {
header('Location: https://walkntrade.com' . $serverURI, true, 301);
}
$schoolTextId = $cs->cookieCheck("sPref");
if ($cs->getSchoolName($schoolTextId) === null) {
include "selector.php";
} else {
$query = isset($_GET["query"]) ? $_GET["query"] : "";
header('Location: /schools/' . $schoolTextId . '?query=' . $query);
}
<?php
require_once "framework2/CredentialStore.php";
$cs = new CredentialStore();
$loggedIn = $cs->getLoginStatus();
//get page args
$args = array_keys($_GET);
$args = split(":", $args[0]);
$identifier = htmlspecialchars($args[1]);
$schoolTextId = htmlspecialchars($args[0]);
$myPost = false;
$serverName = basename($_SERVER["SERVER_NAME"]);
$serverURI = $_SERVER['REQUEST_URI'];
$redirect = true;
foreach ($cs->getValidDomains() as $domain) {
if ($serverName === $domain) {
$redirect = false;
}
}
if ($redirect) {
header('Location: https://walkntrade.com' . $serverURI, true, 301);
}
if ($cs->getSchoolName($schoolTextId) == null) {
header('Location: ./');
return;
}
if ($identifier != null) {
//get details of the post
if ($stmt = $cs->getlistingConnection()->prepare("SELECT id, identifier, category, title, details, price, location, username, userid, date, views, price, isbn, author FROM `" . $schoolTextId . "` WHERE `identifier` = ? LIMIT 1")) {
//prepare query
$stmt->bind_param('s', $identifier);
<?php
require_once "framework2/CredentialStore.php";
$cs = new CredentialStore();
$loggedIn = $cs->getLoginStatus();
//get page args
$args = array_keys($_GET);
$args = split(":", $args[0]);
$identifier = $args[1];
$schoolTextId = $args[0];
if ($cs->getSchoolName($schoolTextId) == null || !$loggedIn) {
return;
}
if ($identifier != null) {
if ($editSTMT = $cs->getListingConnection()->prepare("SELECT id, title, details, price, tags FROM " . $schoolTextId . " WHERE identifier = ? LIMIT 1")) {
$editSTMT->bind_param("s", $identifier);
$editSTMT->execute();
// Execute the prepared query.
$editSTMT->store_result();
$editSTMT->bind_result($id, $title, $details, $price, $tags);
$editSTMT->fetch();
if ($editSTMT->num_rows < 1) {
header('Location: ./');
}
$title = htmlspecialchars($title);
$price = $price != 0 ? "\$" . round($price, 2) : "(no price)";
$details = htmlspecialchars($details);
}
}
?>
<!DOCTYPE html>
