<?php /** * Handles password resetting */ require 'includes/global.inc.php'; //debug(1, 1, 1); $page = Page::get_from_alias('forgot'); if ($_REQUEST['forgot-email']) { $email = strtolower($_POST['forgot-email']); if ($krustomer = Customer::get_from_email($email)) { // email found $status = 1; $mail = new Email(); $mail->AddAddress($krustomer->Email, $krustomer->full_name); $mail->Subject = 'Madison & Rayne Password Reset'; // Creates a reset token $reset_token = Customer::create_reset_token($krustomer->Email); $insert_array = array('CustomerID' => $krustomer->CustomerID, 'token_id' => $reset_token, 'expires' => date("Y-m-d H:i:s", time() + 60 * 60)); dbi()->insert('password_reset_requests', $insert_array); $mail->MsgHTML("<p>We have received a request to reset the password for your Madison & Rayne account.\n If you did not request that your password be reset, you can ignore this email.</p>\n <p>To reset your password, please click on the link below. Simply enter a new password\n of your choice. You will have one hour to reset your password before the link will no longer work.</p>\n <p>If you have any questions, please contact us at\n <a href='mailto:info@madisonandrayne.com'>info@madisonandrayne.com</a> or 1-855-626-3701. Thank you!</p>\n <p><a href='" . SITE_URL . "/forgot?token_id=" . $reset_token . "'>" . SITE_URL . "/forgot?token_id=" . $reset_token . "</a></p>"); $mail->Send(); Gadget::add_message('An email has been sent to you with a link to reset your password.'); Gadget::redirect('index'); die; } else { // no email found Gadget::add_message('That email address was not found.'); } } elseif (isset($_REQUEST['token_id'])) { $_REQUEST = clean_input($_REQUEST);
} } //Gadget::add_message('success'); Gadget::redirect('success2'); } else { Gadget::add_message($transaction->get_error_message()); } } catch (Exception $e) { s('Error: ' . $e->getMessage() . $transaction->get_error_message()); Gadget::add_message($e->getMessage() . $transaction->get_error_message()); } } } $page = Page::get_from_alias('giftcertificates'); $page->add_js('/js/giftcertificates.js'); require 'header.php'; ?> <div class="content-padding"> <div><?php echo $page->content['main']; ?></div> <form class="user-form" name="giftcertificates-form" id="checkout-form" action="giftcertificates" method="post" onsubmit="return validateForm();"> <table> <tbody> <tr style="vertical-align:top;"> <td> <table style="margin-right:20px;"> <tbody> <tr> <td colspan="2">
Co-Founders, Madison & Rayne<br /> </p> EOT; $email->MsgHTML($body); $email->Send(); unset($_SESSION['new_order']); } } Gadget::redirect('success'); } catch (Exception $e) { s('Error: ' . $e->getMessage() . $transaction->get_error_message()); Gadget::add_message($e->getMessage() . $transaction->get_error_message()); } } } $page = Page::get_from_alias('checkout'); $page->add_js('/js/checkout.js'); require 'header.php'; ?> <div class="content-padding"> <div><?php echo $page->content['main']; ?> </div> <form class="user-form" name="checkout-form" id="checkout-form" action="checkout" method="post" onsubmit="return validateForm();"> <table> <tbody> <tr style="vertical-align:top;"> <td> <table> <tbody>
<?php /** * @author Brad Jorgensen <*****@*****.**> */ require 'includes/global.inc.php'; debug(0, 0, 0); $page = Page::get_from_alias('contact'); if ($_POST) { $errors = array(); $email_addr = trim($_POST['contact-email']); $message = strip_tags(stripslashes($_POST['contact-message'])); if (!$email_addr) { $errors[] = 'no email address provided'; } elseif (!preg_match('/^[A-Z0-9._%+-]+\\@[A-Z0-9.-]+\\.[A-Z]{2,4}(\\.[A-Z]{2,4})?$/i', $email_addr)) { $errors[] = 'invalid email address'; } if (!$message) { $errors[] = 'no message provided'; } if ($errors) { Gadget::add_message(implode(', ', $errors)); } else { $insert_data = array('Email' => $email_addr, 'Message' => $message); $dbi->insert('Contact', $insert_data); //$to_address = '*****@*****.**'; $to_address = '*****@*****.**'; $email = new Email(true); $email->AddAddress($to_address); $email->Subject = 'Contact Us Submission'; $body = '<p>The following message was submitted from the Contact Us form by ' . $email_addr . ':</p>' . htmlspecialchars($message);
<?php require 'includes/global.inc.php'; //debug(1, 1, 1); debug(0, 0, 0); $page = Page::get_from_alias('index'); $page->body_class = "background"; require 'header.php'; ?> <div class="foodphoto"> <img src="images/home-image-rediscover.jpg" width="998" height="451" /> </div> <div class="homebottom"> <div> <div class="bottomleft"> <h1>ideas on the table</h1> <div class="homerecipe"> <?php $ideas = $dbi->q_all("SELECT * FROM Ideas WHERE Active = '1' ORDER BY Sequence ASC"); foreach($ideas as $idea){ echo "<a href='$idea->Link'>$idea->Text</a><br />"; } ?> <div class="homerecipebutton"> <a href="menu">Check out this week's menu</a> </div> </div> </div> <div class="bottomright"> <div class="chefprogrambutton">
} else { // empty order, just clear it here /*$order->PromoCodeID = $PromoCodeID; $order->DeliveryDate = Gadget::$date_do->format(DATE_FORMAT_MYSQL); $order->CustomerID = $krustomer->CustomerID; foreach ($meals as $key => $value) { $order->add_meal($key, (int) $value['n'], (int) $value['v'], '0'); } $order->insert();*/ } Access::protect_page(); } $page = Page::get_from_alias('menu'); $page->add_css('/css/menu.css'); $page->add_js('/js/menu-sydcon.js'); require 'header.php'; $_date_ob = clone Gadget::$date_ob; $_date_do = clone Gadget::$date_do; switch ($_date_ob->format(DATE_FORMAT_MYSQL)) { case '2013-12-21': $_date_ob->setDate('2013', '12', '20'); $_date_do->setDate('2013', '12', '23'); break; case '2013-12-28': $_date_ob->setDate('2013', '12', '27');
<?php /** * @author Brad Jorgensen <*****@*****.**> */ require 'includes/global.inc.php'; debug(0, 0, 0); Access::protect_page(); $page = Page::get_from_alias('preferences'); $page->add_js('/js/myorder.js'); $page->add_js('slider'); $krustomer = Customer::get_current(); if ($_POST) { $errors = array(); $data = clean_input($_POST); if ($errors) { Gadget::add_message(implode(', ', $errors)); } else { //@todo this needs protection //@todo put this stuff in a class foreach ($data as $key => $value) { if (strpos($key, 'like_') === 0) { $insert_data = array('LikeID' => (int) substr($key, 5), 'CustomerID' => $_SESSION['CustomerID'], 'Value' => (int) $value); $odu = array('Value' => (int) $value); $dbi->insert('CustomerLikes', $insert_data, $odu); } } $krustomer->Allergies = $data['Allergies']; $krustomer->Want = implode(',', clean_input($_POST['Want'])); $krustomer->DontWant = implode(',', clean_input($_POST['DontWant'])); $krustomer->Comments = $data['Comments'];
<?php /** * @author Brad Jorgensen <*****@*****.**> */ require 'includes/global.inc.php'; debug(0, 0, 0); $krustomer = Customer::get_current(); $page = Page::get_from_alias('success'); $date = Gadget::$date_do->format(DATE_FORMAT_MYSQL); require 'header.php'; ?> <div class="content-padding"> <div><?php echo $page->content['main']; ?></div> <h3>Order details</h3> <p> <?php if (isset($_SESSION['successWeekly'])) { echo '<h5>Weekly Meals</h5>'; $allOrders = array(); foreach ($_SESSION['successWeekly'] as $orderID) { $order = Order::get_from_id($orderID); $allOrders[] = $order; echo $order->get_meal_rows(); } } else if ($OrderID = $dbi->q_1("SELECT OrderID FROM Orders WHERE DeliveryDate = '$date' AND CustomerID = '$krustomer->CustomerID' ORDER BY OrderID DESC")->OrderID) { $order = Order::get_from_id($OrderID);
<?php require 'includes/global.inc.php'; debug(0, 0, 0); Access::protect_page(); $page = Page::get_from_alias('myorder'); $page->add_js('/js/myorder.js'); $page->add_js('slider'); $krustomer = Customer::get_current(); if ($_POST) { $errors = array(); $data = clean_input($_POST); $currentPassword = $_POST['current-password']; $newPassword = $_POST['new-password']; $confirmPassword = $_POST['confirm-password']; $wants_to_change_pass = ($currentPassword || $newPassword || $confirmPassword); if ($wants_to_change_pass) { if ($currentPassword) { if ($newPassword) { if ($newPassword === $confirmPassword) { if (Access::check_password($currentPassword, $krustomer->CustomerID)) { // current password is correct and new passwords match } else { $errors[] = 'The current password you entered is not correct.'; }
<?php /** * For making changes to the login without effecting the live environment as there is no dev environment * All files labeled -sydcon are of the same variety */ require 'includes/global.inc.php'; debug(0, 0, 0); $page = Page::get_from_alias('login'); if ($_POST) { $errors = array(); $email = trim($_POST['login-email']); $password = $_POST['login-password']; if (!$email) { $errors[] = 'no email address provided'; } elseif (!preg_match('/^[A-Z0-9._%+-]+\\@[A-Z0-9.-]+\\.[A-Z]{2,4}(\\.[A-Z]{2,4})?$/i', $email)) { $errors[] = 'invalid email address'; } if (!$password) { $errors[] = 'no password provided'; } if ($errors) { Gadget::add_message(implode(', ', $errors)); } else { switch (Access::log_user_in($email, $password)) { case 0: // shouldn't get here, should be redirected $message = 'You have been logged in.'; break; case 1: $message = 'incorrect password';
<?php /** * Handles most pages that are in the database * * @author Brad Jorgensen <*****@*****.**> * @package SDBIC */ require 'includes/global.inc.php'; debug(0, 0, 0); if ($_GET['id']) { $page = Page::get_from_id((int) $_GET['id']); } elseif ($_GET['q']) { $page = Page::get_from_alias($dbi->escape($_GET['q'])); } if (!$page) { $page = Page::get_from_alias('404'); header("HTTP/1.0 404 Not Found"); } include 'header.php'; echo $page->content['main']; include 'footer.php';
} } $_SESSION['subscription_update'] = array( 'WeeklyMeals' => (int) $_POST['WeeklyMeals'], 'WeeklyReg' => (int) $_POST['WeeklyReg'], 'WeeklyVeg' => (int) $_POST['WeeklyVeg'], 'PromoCodeID' => $PromoCodeID, ); Gadget::redirect('preferences'); } Gadget::add_message('Please select the number of meals and servings per week.'); } $page = Page::get_from_alias('tasting'); $page->add_css('/css/menu.css'); $page->add_js('/js/tasting.js'); require 'header.php'; ?> <div id="content-header"> <div id="content-header-left"> <p class="header-p"> our chef selects meals for you<br /> from weekly menu plus new exclusive dishes<br /> 15% off our regular pricing, 4-week minimum </p> <div class="title"> chef's tasting </div>
<?php require 'includes/global.inc.php'; debug(0, 0, 0); $page = Page::get_from_alias('register'); $page->add_js('js/register.js'); if($_POST){ $email = strtolower(trim($_POST['register-email'])); $password = $_POST['register-password']; $password2 = $_POST['confirm-password']; $zip = $_POST['register-zip']; $validation = new Validation(); $validation->validate_array(array( array( 'name' => 'Email', 'value' => $email, 'match' => '/^[A-Z0-9._%+-]+\@[A-Z0-9.-]+\.[A-Z]{2,4}(\.[A-Z]{2,4})?$/i', 'required' => true, ), array( 'name' => 'Password', 'value' => $password, 'required' => true, ), array( 'name' => 'Password Confirmation', 'value' => $password2, 'required' => true,