} else { $uid = $user_info->id; $username = $user_info->name; $sql = "Select email from " . USERS_TABLE . " where email ='" . $uid . "' AND sitelogin='******' AND del_status='1'"; $uemail = $databaseobject->get_name_using_id($sql); if (trim($uemail) == '') { $AddArray = array("firstname" => $username, "email" => $uid, "created" => date("Y-m-d H:i:s"), "sitelogin" => 'twitter', "del_status" => '1'); $_SESSION[session_id() . 'useremail'] = $user_profile['id']; $uname = ucfirst($user_profile['first_name']) . ' ' . ucfirst($user_profile['last_name']); $_SESSION[session_id() . 'username'] = $uname; $userid = $databaseobject->insert_record(USERS_TABLE, $AddArray, 'Registration successfuly', $query_echo = ''); $userid1 = mysql_insert_id(); $_SESSION[session_id() . 'userid'] = $userid1; $_SESSION[session_id() . 'sitelogin'] = '******'; if (isset($_SESSION['placeorder']) && $_SESSION['placeorder'] != '') { $databaseobject->redirect(HREF_LINK . "placeorder/", " "); } else { $databaseobject->redirect(HREF_LINK, " "); } } else { $lguser = $databaseobject->get_row_using_id("select * from users where email ='" . $uid . "' AND sitelogin='******' AND del_status='1'"); $_SESSION[session_id() . 'useremail'] = $lguser['id']; $uname = ucfirst($lguser['fname']) . ' ' . ucfirst($lguser['lname']); $_SESSION[session_id() . 'username'] = $uname; $userid1 = $lguser['id']; $_SESSION[session_id() . 'userid'] = $userid1; $_SESSION[session_id() . 'sitelogin'] = '******'; } if (isset($_SESSION['placeorder']) && $_SESSION['placeorder'] != '') { $databaseobject->redirect(HREF_LINK . "placeorder/", " "); } else {
$lastact = $databaseobject->set_lastaction(); if ($_POST['login'] || $_POST['login_x']) { $a = session_id(); $_SESSION[session_id() . 'useremail'] = $_POST['useremail']; $na = "'" . $_POST['useremail'] . "'"; $chk = "select * from " . $_POST['usertype'] . " where email=" . $na; $chk1 = @mysql_query($chk); if (@mysql_num_rows($chk1) > 0) { $tt = "test"; } else { $sql = "INSERT INTO temp_email(email,e_date) VALUES ('" . $_POST['email'] . "','" . time() . "')"; mysql_query($sql); } $sql = "INSERT INTO temp_session(svalue) VALUES ('" . $a . "')"; mysql_query($sql); } if ($databaseobject->get_login_id() && $_SERVER['QUERY_STRING'] == '=') { //2nd arg logout button event if ($databaseobject->unset_login_id()) { // print_r($_SESSION); $databaseobject->redirect(HREF_LINK); } } else { /* Controller classes */ require_once $class_path . 'controller.class.php'; //require_once($class_path.'views.class.php'); /* Initialize Controller */ $controller = new Controller($_SERVER['REQUEST_URI']); /* End Controller */ $controller->Execute(); }
$headers .= "From:" . $from; $subject = "Customer selected M-pesa payment Method on Savostore.com"; include 'mpesamail.php'; //echo $mail_format; mail($to, $subject, $mail_format, $headers); $subject1 = $mailarr[0]['subject']; //$subject1="Your Payment Details Submitted Successfully on Savostore.com"; $to1 = $_SESSION[session_id() . 'useremail']; // $orderemail;//'*****@*****.**' $headers1 = "MIME-Version: 1.0\r\n"; $headers1 .= "Content-type: text/html; charset=iso-8859-1\r\n"; $headers1 .= "From:" . $from; // include('mpesamail1.php'); // mail($to1, $subject1, $mail_format1, $headers1); $mpesa = $databaseobject->get_name_using_id("SELECT page_alias FROM pages WHERE pageid='10'"); $databaseobject->redirect(HREF_LINK . 'pages/' . $mpesa . '/', ''); //$this->bodyFile = MPESATHANKS_DIR; } elseif ($_POST['paynow'] == 'bankdeposit') { $where = "id=" . $_POST['orderid']; $orderid = $_POST['orderid']; $AddArray = array('paymentmode' => 'bankdeposit'); $databaseobject->update_record(ORDERS_TABLE, $AddArray, $where, '', $query_echo = ''); $sql = "select * from " . ORDERS_TABLE . " where id='" . $_POST['orderid'] . "'"; $orderdetails = $databaseobject->fetch_array($sql); $sqladmin = "SELECT order_email from sitesetting"; $orderemail = $databaseobject->get_name_using_id($sqladmin); extract($orderdetails[0]); $mailsql = "SELECT * FROM mailtemplate WHERE id='5'"; $mailarr = $databaseobject->fetch_array($mailsql); $from = $mailarr[0]['fromemail']; //$from = $orderemail;