if (tep_not_null($account_number)) {
$where_filter .= " AND account_number\t=\t'" . $account_number . "' ";
}
if (tep_not_null($keyword)) {
$where_filter .= " AND (firstname LIKE '" . $keyword . "%' OR lastname LIKE '" . keyword . "%' OR account_name LIKE '" . $keyword . "%')";
}
postAssign($smarty);
break;
}
$smarty->assign('link_user', get_admin_link(PAGE_USERS, tep_get_all_get_params(array('action', 'module', 'page'))));
$sql_user = "******" . _TABLE_USERS . " WHERE 1 {$where_filter} ";
$sql_user_page = "SELECT * FROM " . _TABLE_USERS . " WHERE 1 {$where_filter} ORDER BY signup_date DESC, account_name ASC, firstname ASC, lastname ASC ";
$user_query = db_query($sql_user);
$user_numbers = db_num_rows($user_query);
$userpage =& new Paginator($_GET['pg'], $user_numbers);
$userpage->set_Limit(25);
$userpage->pagename = get_admin_link(PAGE_USERS, tep_get_all_get_params(array('pg', 'x', 'y', 'action', 'module', 'page')));
$userpage->set_Links(6);
$limit1 = $userpage->getRange1();
$limit2 = $userpage->getRange2();
$sql_user_page .= " LIMIT {$limit1}, {$limit2}";
$user_page_query = db_query($sql_user_page);
// get smarty user list
$user_array = array();
while ($user = db_fetch_array($user_page_query)) {
$users_array[] = $user;
}
$smarty->assign('page_links', $userpage->getPageLinks());
$smarty->assign('users', $users_array);
// get all user users
$_html_main_content = $smarty->fetch('users/list.html');
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getDeleteForm':
$adminid = $_POST['adminid'];
$admininfo = db_fetch_array(db_query("SELECT admin_id, admin_username FROM " . _TABLE_ADMINS . " WHERE admin_id='" . $adminid . "'"));
$smarty->assign('link_admins', get_admin_link(PAGE_ADMIN_ACCOUNTS, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('admininfo', $admininfo);
echo $smarty->fetch('admins/deleteform.html');
break;
}
die;
}
<?php
include 'includes/admin_login_check.php';
$smarty->assign('link_new_language', get_admin_link(PAGE_LANGUAGE_NEW, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('back_link', get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page'))));
$status_options = array(0 => TEXT_INACTIVE, 1 => TEXT_ACTIVE);
$smarty->assign('status_options', $status_options);
if ($_POST['action'] == 'process') {
$language_code = db_prepare_input($_POST['language_code']);
$validator->validateGeneral('Language Name', $language_name, _ERROR_FIELD_EMPTY);
$validator->validateGeneral('Language Code', $language_code, _ERROR_FIELD_EMPTY);
$validator->validateGeneral('Language Directory', $language_directory, _ERROR_FIELD_EMPTY);
$validator->validateGeneral('Language Icon', $language_image, _ERROR_FIELD_EMPTY);
if (count($validator->errors) == 0) {
// create new member
$language_data_array = array('language_code' => $language_code, 'language_name' => $language_name, 'language_directory' => $language_directory, 'language_image' => $language_image, 'language_status' => $language_status, 'sort_order' => $sort_order);
db_perform(_TABLE_LANGUAGES, $language_data_array);
tep_redirect(get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page'))));
} else {
postAssign($smarty);
$smarty->assign('validerrors', $validator->errors);
}
}
$_html_main_content = $smarty->fetch('langs/new.html');
echo MNU_ADMIN_USERS;
?>
</a></li>
</ul>
</div>
<div align="center">Payment</div>
<ul id="leftMenu">
<li><a href="<?php
echo get_admin_link(PAGE_CURRENCIES);
?>
"><?php
echo MNU_ADMIN_CURRENCIES;
?>
</a></li>
<li><a href="<?php
echo get_admin_link(PAGE_ADD_FUNDS);
?>
"><?php
echo MNU_ADMIN_ADD_FUNDS;
?>
</a></li>
<li><a href="<?php
echo get_admin_link(PAGE_TRANSACTIONS);
?>
"><?php
echo MNU_ADMIN_TRANSACTIONS;
?>
</a></li>
</ul>
</div>
</div>
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getDeleteForm':
$faqid = $_POST['faqid'];
$faqinfo = db_fetch_array(db_query("SELECT faqs_id, faqs_name FROM " . _TABLE_FAQS_DESCRIPTION . " WHERE faqs_id='" . $faqid . "' AND language_id='" . $_SESSION['languages_id'] . "'"));
$smarty->assign('link_faqs', get_admin_link(PAGE_FAQS, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('faqinfo', $faqinfo);
echo $smarty->fetch('faqs/deleteform.html');
break;
}
die;
}
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getDeleteForm':
$emailtemplateid = $_POST['emailtemplateid'];
$emailtemplateinfo = db_fetch_array(db_query("SELECT emailtemplates_id, emailtemplate_title FROM " . _TABLE_EMAILTEMPLATES_DESCRIPTION . " WHERE emailtemplates_id='" . $emailtemplateid . "' AND language_id='" . $_SESSION['languages_id'] . "'"));
$smarty->assign('link_emailtemplates', get_admin_link(PAGE_EMAILTEMPLATES, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('emailtemplateinfo', $emailtemplateinfo);
echo $smarty->fetch('emailtemplates/deleteform.html');
break;
}
die;
}
$is_topic = (int) $_POST['is_topic'];
$validator->validateGeneral('Template Key', $emailtemplate_key, _ERROR_FIELD_EMPTY);
$validator->validateGeneral('Template Title', $emailtemplates_title[$languages_id], _ERROR_FIELD_EMPTY);
$validator->validateGeneral('Template Subject', $emailtemplates_subject[$languages_id], _ERROR_FIELD_EMPTY);
$validator->validateGeneral('Template Content', $emailtemplates_content[$languages_id], _ERROR_FIELD_EMPTY);
if (count($validator->errors) == 0) {
// create new member
$emailtemplate_data_array = array('emailtemplate_key' => $emailtemplate_key, 'emailtemplate_status' => $emailtemplate_status, 'is_html_email' => $is_html_email);
db_perform(_TABLE_EMAILTEMPLATES, $emailtemplate_data_array, 'update', " emailtemplates_id='" . $emailtemplateID . "'");
// emailtemplate description
for ($i = 0; $i < count($languages); $i++) {
$lang_id = $languages[$i]['id'];
$emailtemplate_description_data_array = array('language_id' => $lang_id, 'emailtemplate_title' => $emailtemplates_title[$lang_id], 'emailtemplate_subject' => $emailtemplates_subject[$lang_id], 'emailtemplate_content' => $emailtemplates_content[$lang_id]);
db_perform(_TABLE_EMAILTEMPLATES_DESCRIPTION, $emailtemplate_description_data_array, 'update', " emailtemplates_id='" . $emailtemplateID . "' and language_id='" . $lang_id . "'");
}
tep_redirect(get_admin_link(PAGE_EMAILTEMPLATES, tep_get_all_get_params(array('action', 'module', 'page'))));
} else {
postAssign($smarty);
for ($i = 0; $i < count($languages); $i++) {
$emailtemplates_content[$languages[$i]['id']] = html_entity_decode($_POST['emailtemplates_content'][$languages[$i]['id']]);
$smarty->assign('emailtemplates_content', $emailtemplates_content);
$emailtemplates_usage[$languages[$i]['id']] = $_POST['emailtemplates_usage'][$languages[$i]['id']];
$smarty->assign('emailtemplates_usage', $emailtemplates_usage);
$emailtemplates_subject[$languages[$i]['id']] = $_POST['emailtemplates_subject'][$languages[$i]['id']];
$smarty->assign('emailtemplates_subject', $emailtemplates_subject);
$emailtemplates_title[$languages[$i]['id']] = $_POST['emailtemplates_title'][$languages[$i]['id']];
$smarty->assign('emailtemplates_title', $emailtemplates_title);
}
$smarty->assign('validerrors', $validator->errors);
}
} else {
$smarty->assign('action_link', get_admin_link(PAGE_EDIT_INFO, 'action=process&info_id=' . $info_id, '&pg=' . $pg));
$smarty->assign('back_link', get_admin_link(PAGE_INFORS, 'pg=' . $pg));
if ($_GET['action'] == 'process') {
$info_key = $_POST['info_key'];
$info_content = $_POST['info_content'];
$validator->validateGeneral(ERROR_FIELD_KEY, $info_key, _ERROR_FIELD_EMPTY);
$validator->validateGeneral('Content', $info_content, _ERROR_FIELD_EMPTY);
if (!$validator->foundErrors()) {
$info_data = array('info_key' => $info_key, 'info_content' => addslashes(htmlentities($info_content)), 'info_title' => addslashes(htmlentities($_POST['info_title'])), 'info_description' => $_POST['info_description'], 'info_usage' => $_POST['info_usage']);
if ($info_id > 0) {
// update
db_perform(_TABLE_INFO_TEMPLATES, $info_data, 'update', 'info_id=' . $info_id);
} else {
db_perform(_TABLE_INFO_TEMPLATES, $info_data);
}
tep_redirect(get_admin_link(PAGE_INFORS, 'pg=' . $pg));
} else {
postAssign($smarty);
$smarty->assign('validerrors', $validator->errors);
}
} else {
if ($info_id > 0) {
$sql_info = "SELECT * FROM " . _TABLE_INFO_TEMPLATES . " WHERE info_id='" . $info_id . "'";
$info = db_fetch_array(db_query($sql_info));
$info['info_title'] = stripslashes($info['info_title']);
$info['info_content'] = stripslashes($info['info_content']);
$smarty->assign('PAGE_HEADING', HEADING_EDIT_INFO);
postAssign($smarty, $info);
} else {
$smarty->assign('PAGE_HEADING', HEADING_NEW_INFO);
}
<li class="docs_menu"><?php
echo get_admin_link('system', 'System Editor', 'system');
?>
</li>
<li class="docs_menu"><?php
echo get_admin_link('ports', 'Port Editor', 'ports');
?>
</li>
<li class="docs_menu"><?php
echo get_admin_link('goods', 'Goods Editor', 'goods');
?>
</li>
<li class="docs_menu"><?php
echo get_admin_link('research', 'Base Research', 'research');
?>
</li>
<li class="docs_menu"><?php
echo get_admin_link('build', 'Base Construction', 'build');
?>
</li>
<li class="docs_menu"><?php
echo get_admin_link('gold', 'Gold Keys', 'gold');
?>
</li>
<li class="docs_menu"><?php
echo get_admin_link('news', 'News Desk', 'news');
?>
</li>
</ul>
<link rel="stylesheet" type="text/css" href="templates/css/tabcontent.css">
<script type="text/javascript" src="includes/javascript/tabcontent.js"></script>
<script type="text/javascript">
function getDeleteConfirmForm(security_questionid)
{
$.post('<?php
echo get_admin_link(PAGE_SECURITY_QUESTION_AJAX, tep_get_all_get_params(array('action', 'module', 'page')));
?>
',{action:'ajax', ajaxaction:'getDeleteForm',security_questionid:security_questionid}, function(data)
{
$("#ajaxContent").html(data);
$("#ajaxContent").fadeIn();
}
);
}
// close delete new confirmform
function closeConfirmForm()
{
$("#ajaxContent").fadeOut();
}
</script>
<!-- Load TinyMCE -->
<script type="text/javascript" src="../includes/js/tiny_mce/jquery.tinymce.js"></script>
<script type="text/javascript">
$().ready(function() {
$('textarea.tinymce').tinymce({
// Location of TinyMCE script
script_url : '../includes/js/tiny_mce/tiny_mce.js',
include 'includes/admin_login_check.php';
include _CLASSES_DIR . 'paginator.php';
if ($_GET['action'] == 'delete') {
$info_id = $_GET['info_id'];
$sql_delete = "DELETE FROM " . _TABLE_INFO_TEMPLATES . " WHERE info_id='" . $info_id . "'";
db_query($sql_delete);
}
$smarty->assign('link_new_info', get_admin_link(PAGE_NEW_INFO, 'pg=' . $_GET['pg']));
$smarty->assign('link_infos', get_admin_link(PAGE_INFORS, 'pg=' . $_GET['pg']));
$sql_infos = "SELECT * FROM " . _TABLE_INFO_TEMPLATES . " WHERE 1 {$where_filter} ";
$sql_infos_page = "SELECT * FROM " . _TABLE_INFO_TEMPLATES . " WHERE 1 {$where_filter} ORDER BY info_key";
$infos_query = db_query($sql_infos);
$info_numbers = db_num_rows($infos_query);
$infopage =& new Paginator($_GET['pg'], $info_numbers);
$infopage->set_Limit(20);
$infopage->pagename = get_admin_link(PAGE_INFORS, tep_get_all_get_params(array('pg', 'x', 'y')));
$infopage->set_Links(6);
$limit1 = $infopage->getRange1();
$limit2 = $infopage->getRange2();
$sql_infos_page .= " LIMIT {$limit1}, {$limit2}";
$info_page_query = db_query($sql_infos_page);
// get smarty infos list
$infos_array = array();
while ($info = db_fetch_array($info_page_query)) {
$info['info_url'] = get_admin_link(PAGE_EDIT_INFO, 'info_id=' . $info['info_id']);
$infos_array[] = $info;
}
$smarty->assign('page_links', $infopage->getPageLinks());
$smarty->assign('infors', $infos_array);
$_html_main_content = $smarty->fetch('infors/list.html');
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getDeleteForm':
$currencyid = $_POST['currencyid'];
$currencyinfo = db_fetch_array(db_query("SELECT currencies_id, title FROM " . _TABLE_CURRENCIES . " WHERE currencies_id='" . $currencyid . "'"));
$smarty->assign('link_currencies', get_admin_link(PAGE_CURRENCIES, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('currencyinfo', $currencyinfo);
echo $smarty->fetch('currencies/deleteform.html');
break;
}
die;
}
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getDeleteForm':
$security_questionid = $_POST['security_questionid'];
$security_questioninfo = db_fetch_array(db_query("SELECT security_questions_id, question FROM " . _TABLE_SECURITY_QUESTIONS_DESCRIPTION . " WHERE security_questions_id='" . $security_questionid . "' AND language_id='" . $_SESSION['languages_id'] . "'"));
$smarty->assign('link_security_questions', get_admin_link(PAGE_SECURITY_QUESTIONS, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('security_questioninfo', $security_questioninfo);
echo $smarty->fetch('security_questions/deleteform.html');
break;
}
die;
}
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getDeleteForm':
$newsid = $_POST['newsid'];
$newsinfo = db_fetch_array(db_query("SELECT news_id, news_title FROM " . _TABLE_NEWS . " WHERE news_id='" . $newsid . "'"));
$smarty->assign('link_news', get_admin_link(PAGE_NEWS, tep_get_all_get_params(array('action', 'module', 'page', 'news_id'))));
$smarty->assign('newsinfo', $newsinfo);
echo $smarty->fetch('news/deleteform.html');
break;
}
die;
}
$lID = $_POST['lID'];
$sql_delete = "DELETE FROM " . _TABLE_LANGUAGES . " WHERE language_id='" . $lID . "'";
db_query($sql_delete);
$feedbackmsgs[] = TEXT_MESSAGE_LANGUAGE_DELETED;
$smarty->assign('feedbackmsgs', $feedbackmsgs);
break;
}
$smarty->assign('link_languages', get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('link_new_language', get_admin_link(PAGE_LANGUAGE_NEW, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('link_language_edit', get_admin_link(PAGE_LANGUAGE_EDIT, tep_get_all_get_params(array('action', 'module', 'page'))));
$sql_languages = "SELECT * FROM " . _TABLE_LANGUAGES . " WHERE 1 {$where_filter} ";
$sql_languages_page = "SELECT * FROM " . _TABLE_LANGUAGES . " WHERE 1 {$where_filter} ORDER BY sort_order, language_name ASC";
$languages_query = db_query($sql_languages);
$language_numbers = db_num_rows($languages_query);
$languagepage =& new Paginator($_GET['pg'], $language_numbers);
$languagepage->set_Limit(20);
$languagepage->pagename = get_admin_link(PAGE_LANGUAGE_ACCOUNTS, tep_get_all_get_params(array('pg', 'x', 'y')));
$languagepage->set_Links(6);
$limit1 = $languagepage->getRange1();
$limit2 = $languagepage->getRange2();
$sql_languages_page .= " LIMIT {$limit1}, {$limit2}";
$language_page_query = db_query($sql_languages_page);
// get smarty languages list
$languages_array = array();
while ($language = db_fetch_array($language_page_query)) {
$language['language_url'] = get_admin_link(PAGE_LANGUAGE_EDIT, 'language_id=' . $language['language_id']);
$languages_array[] = $language;
}
$smarty->assign('page_links', $languagepage->getPageLinks());
$smarty->assign('languages', $languages_array);
$_html_main_content = $smarty->fetch('langs/list.html');
<link rel="stylesheet" type="text/css" href="templates/css/tabcontent.css">
<script type="text/javascript" src="includes/javascript/tabcontent.js"></script>
<script type="text/javascript">
function getDeleteConfirmForm(emailtemplateid)
{
$.post('<?php
echo get_admin_link(PAGE_EMAILTEMPLATE_AJAX, tep_get_all_get_params(array('action', 'module', 'page')));
?>
',{action:'ajax', ajaxaction:'getDeleteForm',emailtemplateid:emailtemplateid}, function(data)
{
$("#ajaxContent").html(data);
$("#ajaxContent").fadeIn();
}
);
}
// close delete new confirmform
function closeConfirmForm()
{
$("#ajaxContent").fadeOut();
}
</script>
<!-- Load TinyMCE -->
<script type="text/javascript" src="../includes/js/tiny_mce/jquery.tinymce.js"></script>
<script type="text/javascript">
$().ready(function() {
$('textarea.tinymce').tinymce({
// Location of TinyMCE script
script_url : '../includes/js/tiny_mce/tiny_mce.js',
db_query("DELETE FROM " . _TABLE_SECURITY_QUESTIONS . " WHERE security_questions_id='" . $security_question_id . "'");
db_query("DELETE FROM " . _TABLE_SECURITY_QUESTIONS_DESCRIPTION . " WHERE security_questions_id='" . $security_question_id . "'");
$feedbackmsgs[] = TEXT_MESSAGE_SECURITY_QUESTIONS_DELETED;
$smarty->assign('feedbackmsgs', $feedbackmsgs);
break;
}
$smarty->assign('security_questions_tree', $security_questions_tree);
//Template generate
$smarty->assign('link_security_questions', get_admin_link(PAGE_SECURITY_QUESTIONS, array('action', 'module', 'page')));
$smarty->assign('link_security_question_new', get_admin_link(PAGE_SECURITY_QUESTION_NEW, tep_get_all_get_params(array('action', 'module', 'page'))) . '&action=new');
$smarty->assign('link_security_question_edit', get_admin_link(PAGE_SECURITY_QUESTION_EDIT, tep_get_all_get_params(array('action', 'module', 'page'))));
$sql_security_questions = "select c.security_questions_id, cd.question, sort_order, status from " . _TABLE_SECURITY_QUESTIONS . " c, " . _TABLE_SECURITY_QUESTIONS_DESCRIPTION . " cd where c.security_questions_id = cd.security_questions_id and cd.language_id = '" . (int) $_SESSION['languages_id'] . "' ";
$sql_security_questions_page = $sql_security_questions . " order by cd.question ";
$security_questions_query = db_query($sql_security_questions);
$security_question_numbers = db_num_rows($security_questions_query);
$security_questionpage =& new Paginator($_GET['pg'], $security_question_numbers);
$security_questionpage->set_Limit(20);
$security_questionpage->pagename = get_admin_link(PAGE_SETTINGS, tep_get_all_get_params(array('pg', 'x', 'y')));
$security_questionpage->set_Links(6);
$limit1 = $security_questionpage->getRange1();
$limit2 = $security_questionpage->getRange2();
$sql_security_questions_page .= " LIMIT {$limit1}, {$limit2}";
$security_question_page_query = db_query($sql_security_questions_page);
// get smarty security_questions list
$security_questions_array = array();
while ($security_question = db_fetch_array($security_question_page_query)) {
$security_questions_array[] = $security_question;
}
$smarty->assign('page_links', $security_questionpage->getPageLinks());
$smarty->assign('security_questions', $security_questions_array);
$_html_main_content = $smarty->fetch('security_questions/list.html');
<table width="100%" border="0" cellpadding="0" cellspacing="0" >
<tr><td class="headerbg" width="100%" ><?php
if (!tep_session_is_registered('admin_login_id')) {
checkAdminAutoLogin();
} else {
// admin logged
echo '<span style="float:right" class="whiteText"><strong>' . TEXT_WELCOME . $admin_login_username . '</strong> <a href="' . get_admin_link(PAGE_ADMIN_LOGOUT) . '" class="linkWhite">' . TEXT_LOGOUT . '</a></span>';
}
?>
</td></tr>
</table>
case 'deleteconfirm':
$admin_id = $_GET['adminid'];
$sql_delete = "DELETE FROM " . _TABLE_ADMINS . " WHERE admin_id='" . $admin_id . "'";
db_query($sql_delete);
$feedbackmsgs[] = TEXT_MESSAGE_ADMIN_DELETED;
$smarty->assign('feedbackmsgs', $feedbackmsgs);
break;
}
$smarty->assign('link_new_admin', get_admin_link(PAGE_ADMIN_NEW, 'pg=' . $_GET['pg']));
$smarty->assign('link_admins', get_admin_link(PAGE_ADMIN_ACCOUNTS, 'pg=' . $_GET['pg']));
$sql_admins = "SELECT * FROM " . _TABLE_ADMINS . " WHERE 1 {$where_filter} ";
$sql_admins_page = "SELECT * FROM " . _TABLE_ADMINS . " WHERE 1 {$where_filter} ORDER BY admin_id ASC";
$admins_query = db_query($sql_admins);
$admin_numbers = db_num_rows($admins_query);
$adminpage =& new Paginator($_GET['pg'], $admin_numbers);
$adminpage->set_Limit(20);
$adminpage->pagename = get_admin_link(PAGE_ADMIN_ACCOUNTS, tep_get_all_get_params(array('pg', 'x', 'y')));
$adminpage->set_Links(6);
$limit1 = $adminpage->getRange1();
$limit2 = $adminpage->getRange2();
$sql_admins_page .= " LIMIT {$limit1}, {$limit2}";
$admin_page_query = db_query($sql_admins_page);
// get smarty admins list
$admins_array = array();
while ($admin = db_fetch_array($admin_page_query)) {
$admin['admin_url'] = get_admin_link(PAGE_ADMIN_EDIT, 'admin_id=' . $admin['admin_id']);
$admins_array[] = $admin;
}
$smarty->assign('page_links', $adminpage->getPageLinks());
$smarty->assign('admins', $admins_array);
$_html_main_content = $smarty->fetch('admins/list.html');
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getDeleteForm':
$languageid = $_POST['languageid'];
$languageinfo = db_fetch_array(db_query("SELECT language_id, language_name FROM " . _TABLE_LANGUAGES . " WHERE language_id='" . $languageid . "'"));
$smarty->assign('link_languages', get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('languageinfo', $languageinfo);
echo $smarty->fetch('langs/deleteform.html');
break;
}
die;
}
<script type="text/javascript">
function getDeleteConfirmForm(languageid)
{
$.post('<?php
echo get_admin_link(PAGE_LANGUAGE_AJAX, tep_get_all_get_params(array('action', 'module', 'page')));
?>
',{action:'ajax', ajaxaction:'getDeleteForm',languageid:languageid}, function(data)
{
$("#ajaxContent").html(data);
$("#ajaxContent").fadeIn();
}
);
}
// close delete new confirmform
function closeConfirmForm()
{
$("#ajaxContent").fadeOut();
}
</script>
// password passed ==> correct account
$admin_login_id = $admin_info['admin_id'];
$admin_login_username = $admin_info['admin_username'];
tep_session_register('admin_login_id');
tep_session_register('admin_login_username');
// set cookies for autologin
if ($_POST['remember_me']) {
/// tep_setcookie("login_email",$login_email , time()+60*60*24*100, HTTP_COOKIE_PATH, HTTP_COOKIE_DOMAIN);
// tep_setcookie("login_password",$login_password, time()+60*60*24*100, HTTP_COOKIE_PATH, HTTP_COOKIE_DOMAIN);
setcookie("admin_login_username", $login_username, time() + 60 * 60 * 24 * 30, "/");
setcookie("admin_login_password", $login_password, time() + 60 * 60 * 24 * 30, "/");
}
if (sizeof($navigation->snapshot) > 0) {
$origin_href = get_admin_link($navigation->snapshot['page'], tep_array_to_string($navigation->snapshot['get'], array(tep_session_name())), $navigation->snapshot['mode']);
$navigation->clear_snapshot();
tep_redirect($origin_href);
} else {
tep_redirect(get_admin_link(PAGE_DEFAULT));
}
}
} else {
$validator->addError('Account', ERROR_INVALID_ACCOUNT);
}
if (count($validator->errors) == 0) {
// create new admin
} else {
postAssign($smarty);
$smarty->assign('validerrors', $validator->errors);
}
}
$_html_main_content = $smarty->fetch('home/login.html');
if (tep_not_null($to_account)) {
$where_filter .= " AND to_account LIKE '" . $to_account . "%' ";
}
if (tep_not_null($note)) {
$where_filter .= " AND transaction_memo LIKE '%" . $note . "%' ";
}
postAssign($smarty);
break;
}
$smarty->assign('link_transaction', get_admin_link(PAGE_TRANSACTIONS, tep_get_all_get_params(array('action', 'module', 'page'))));
$sql_transaction = "SELECT * FROM " . _TABLE_TRANSACTIONS . " WHERE 1 {$where_filter} ";
$sql_transaction_page = "SELECT * FROM " . _TABLE_TRANSACTIONS . " WHERE 1 {$where_filter} ORDER BY transaction_time DESC, transaction_id DESC";
$transaction_query = db_query($sql_transaction);
$transaction_numbers = db_num_rows($transaction_query);
$transactionpage =& new Paginator($_GET['pg'], $transaction_numbers);
$transactionpage->set_Limit(25);
$transactionpage->pagename = get_admin_link(PAGE_TRANSACTIONS, tep_get_all_get_params(array('pg', 'x', 'y', 'action', 'module', 'page')));
$transactionpage->set_Links(6);
$limit1 = $transactionpage->getRange1();
$limit2 = $transactionpage->getRange2();
$sql_transaction_page .= " LIMIT {$limit1}, {$limit2}";
$transaction_page_query = db_query($sql_transaction_page);
// get smarty transaction list
$transaction_array = array();
while ($transaction = db_fetch_array($transaction_page_query)) {
$transactions_array[] = $transaction;
}
$smarty->assign('page_links', $transactionpage->getPageLinks());
$smarty->assign('transactions', $transactions_array);
// get all transaction transactions
$_html_main_content = $smarty->fetch('transactions/history.html');
<?php
if ($_POST['action'] == 'ajax') {
$ajaxaction = $_POST['ajaxaction'];
switch ($ajaxaction) {
case 'getEditForm':
$configid = $_POST['configid'];
$configinfo = db_fetch_array(db_query("SELECT * FROM " . _TABLE_CONFIGURATIONS . " WHERE configuration_id='" . $configid . "'"));
if (tep_not_null($configinfo['set_function'])) {
eval('$value_field = ' . $configinfo['set_function'] . '"' . htmlspecialchars($configinfo['configuration_value']) . '");');
} else {
$value_field = tep_draw_input_field('configuration_value', $configinfo['configuration_value']);
}
$smarty->assign('configuration_value_field_html', $value_field);
$smarty->assign('link_settings', get_admin_link(PAGE_SETTINGS, tep_get_all_get_params(array('action', 'module', 'page', 'cID'))));
$smarty->assign('configinfo', $configinfo);
echo $smarty->fetch('settings/ajaxedit.html');
break;
}
die;
}
include 'includes/admin_login_check.php';
$smarty->assign('link_new_security_question', get_admin_link(PAGE_SECURITY_QUESTION_NEW, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('back_link', get_admin_link(PAGE_SECURITY_QUESTIONS, tep_get_all_get_params(array('action', 'module', 'page'))));
$status_options = array(0 => TEXT_INACTIVE, 1 => TEXT_ACTIVE);
$smarty->assign('status_options', $status_options);
$languages = get_all_languages();
$smarty->assign('languages', $languages);
if ($_POST['action'] == 'process') {
$security_questions_name = db_prepare_input($_POST['security_questions_name']);
$status = isset($_POST['status']) ? (int) $_POST['status'] : 1;
// active by default
$sort_order = (int) $_POST['sort_order'];
$validator->validateGeneral('Faq Name', $security_questions_name[$_SESSION['languages_id']], _ERROR_FIELD_EMPTY);
if (count($validator->errors) == 0) {
// create new member
$security_question_data_array = array('status' => $status, 'sort_order' => $sort_order);
db_perform(_TABLE_SECURITY_QUESTIONS, $security_question_data_array);
$security_question_id = db_insert_id();
// security_question description
for ($i = 0; $i < count($languages); $i++) {
$lang_id = $languages[$i]['id'];
$security_question_description_data_array = array('language_id' => $lang_id, 'security_questions_id' => $security_question_id, 'question' => $security_questions_name[$lang_id]);
db_perform(_TABLE_SECURITY_QUESTIONS_DESCRIPTION, $security_question_description_data_array);
}
tep_redirect(get_admin_link(PAGE_SECURITY_QUESTIONS, tep_get_all_get_params(array('action', 'module', 'page'))));
} else {
postAssign($smarty);
$smarty->assign('validerrors', $validator->errors);
}
}
$_html_main_content = $smarty->fetch('security_questions/new.html');
$sql_delete = "DELETE FROM " . _TABLE_NEWS . " WHERE news_id='" . $news_id . "'";
db_query($sql_delete);
$feedbackmsgs[] = TEXT_MESSAGE_NEWS_DELETED;
$smarty->assign('feedbackmsgs', $feedbackmsgs);
break;
}
$smarty->assign('link_new_news', get_admin_link(PAGE_NEWS_NEW, 'pg=' . $_GET['pg']));
$smarty->assign('link_news', get_admin_link(PAGE_NEWS, 'pg=' . $_GET['pg']));
$smarty->assign('link_update_news', get_admin_link(PAGE_NEWS, 'action=update&pg=' . $_GET['pg']));
$sql_news = "SELECT * FROM " . _TABLE_NEWS . " WHERE 1 {$where_filter} ";
$sql_news_page = "SELECT * FROM " . _TABLE_NEWS . " WHERE 1 {$where_filter} ORDER BY news_date DESC, news_id DESC, news_title ASC";
$news_query = db_query($sql_news);
$news_numbers = db_num_rows($news_query);
$newspage =& new Paginator($_GET['pg'], $news_numbers);
$newspage->set_Limit(20);
$newspage->pagename = get_admin_link(PAGE_NEWS, tep_get_all_get_params(array('pg', 'x', 'y')));
$newspage->set_Links(6);
$limit1 = $newspage->getRange1();
$limit2 = $newspage->getRange2();
$sql_news_page .= " LIMIT {$limit1}, {$limit2}";
$news_page_query = db_query($sql_news_page);
// get smarty news list
$news_array = array();
while ($news = db_fetch_array($news_page_query)) {
$news['news_url'] = get_admin_link(PAGE_NEWS_EDIT, 'news_id=' . $news['news_id']);
$news['news_date'] = date('d M Y', strtotime($news['news_date']));
$news_array[] = $news;
}
$smarty->assign('page_links', $newspage->getPageLinks());
$smarty->assign('news', $news_array);
$_html_main_content = $smarty->fetch('news/list.html');
}
if ($SESSION_USER_AGENT != $http_user_agent) {
tep_session_destroy();
tep_redirect(get_admin_link(PAGE_LOGIN));
}
}
// verify the IP address if the feature is enabled
if (SESSION_CHECK_IP_ADDRESS == 'True') {
$ip_address = tep_get_ip_address();
if (!tep_session_is_registered('SESSION_IP_ADDRESS')) {
$SESSION_IP_ADDRESS = $ip_address;
tep_session_register('SESSION_IP_ADDRESS');
}
if ($SESSION_IP_ADDRESS != $ip_address) {
tep_session_destroy();
tep_redirect(get_admin_link(PAGE_LOGIN));
}
}
// END sesctions ----------------
// navigation history
if (tep_session_is_registered('navigation')) {
if (PHP_VERSION < 4) {
$broken_navigation = $navigation;
$navigation = new navigationHistory();
$navigation->unserialize($broken_navigation);
}
} else {
tep_session_register('navigation');
$navigation = new navigationHistory();
}
$navigation->add_current_page();
$cfgroups_query = db_query("SELECT configuration_group_id, configuration_group_title FROM " . _TABLE_CONFIGURATION_GROUPS . " WHERE visible ORDER BY sort_order, configuration_group_title ");
while ($cfgroup = db_fetch_array($cfgroups_query)) {
$cfgroups_array[$cfgroup['configuration_group_id']] = $cfgroup['configuration_group_title'];
}
$smarty->assign('cfgroups_options', $cfgroups_array);
$smarty->assign('configuration_group_id', $configuration_group_id);
// get current configuration group information
$cfgroup_info = db_fetch_array(db_query("SELECT configuration_group_title FROM " . _TABLE_CONFIGURATION_GROUPS . " WHERE configuration_group_id='" . $configuration_group_id . "'"));
$smarty->assign('cfgroupinfo', $cfgroup_info);
//Template generate
$smarty->assign('link_settings', get_admin_link(PAGE_SETTINGS, 'pg=' . $_GET['pg']));
$sql_settings = "SELECT * FROM " . _TABLE_CONFIGURATIONS . " WHERE configuration_group_id='" . $configuration_group_id . "' ";
$sql_settings_page = $sql_settings . " ORDER BY sort_order, configuration_title ASC ";
$settings_query = db_query($sql_settings);
$setting_numbers = db_num_rows($settings_query);
$settingpage =& new Paginator($_GET['pg'], $setting_numbers);
$settingpage->set_Limit(20);
$settingpage->pagename = get_admin_link(PAGE_SETTINGS, tep_get_all_get_params(array('pg', 'x', 'y')));
$settingpage->set_Links(6);
$limit1 = $settingpage->getRange1();
$limit2 = $settingpage->getRange2();
$sql_settings_page .= " LIMIT {$limit1}, {$limit2}";
$setting_page_query = db_query($sql_settings_page);
// get smarty settings list
$settings_array = array();
while ($setting = db_fetch_array($setting_page_query)) {
$settings_array[] = $setting;
}
$smarty->assign('page_links', $settingpage->getPageLinks());
$smarty->assign('settings', $settings_array);
$_html_main_content = $smarty->fetch('settings/list.html');
if ($_GET['action'] == 'process') {
$admin_username = db_prepare_input(trim($_POST['admin_username']));
$admin_contactname = db_prepare_input(trim($_POST['admin_contactname']));
$admin_email = db_prepare_input($_POST['admin_email']);
$admin_password = db_prepare_input(trim($_POST['admin_password']));
$confirm_password = db_prepare_input(trim($_POST['confirm_password']));
if ($validator->validateGeneral(ERROR_FIELD_ADMIN_USERNAME, $admin_username, _ERROR_FIELD_EMPTY)) {
// check if the email avaible
$sql_username = "******" . _TABLE_ADMINS . " WHERE admin_username='******'";
if (db_num_rows(db_query($sql_username)) > 0) {
// email existed
$validator->addError(ERROR_FIELD_ADMIN_USERNAME, ERROR_ADMIN_USERNAME_NOT_AVAIABLE);
}
}
$validator->validateGeneral(ERROR_FIELD_ADMIN_CONTACTNAME, $admin_contactname, _ERROR_FIELD_EMPTY);
$validator->validateEmail(ERROR_FIELD_ADMIN_EMAIL, $admin_email, _ERROR_EMAIL_ADDRESS);
if ($validator->validateMinLength(ERROR_FIELD_ADMIN_PASSWORD, $admin_password, 5, sprintf(_ERROR_MIN_LENGTH, 5, strlen($admin_password)))) {
$validator->validateEqual(ERROR_FIELD_ADMIN_CONFIRM_PASSWORD, $admin_password, $confirm_password, ERROR_CONFIRM_PASSWORD);
}
if (count($validator->errors) == 0) {
// create new member
// create new admin info
$admin_data_array = array('admin_username' => $admin_username, 'admin_contactname' => $admin_contactname, 'admin_email' => $admin_email, 'admin_password' => encrypt_password($admin_password));
db_perform(_TABLE_ADMINS, $admin_data_array);
tep_redirect(get_admin_link(PAGE_ADMIN_ACCOUNTS, 'pg=' . $pg));
} else {
postAssign($smarty);
$smarty->assign('validerrors', $validator->errors);
}
}
$_html_main_content = $smarty->fetch('admins/new.html');
$cID = $_POST['cID'];
$sql_delete = "DELETE FROM " . _TABLE_CURRENCIES . " WHERE currencies_id='" . $cID . "'";
db_query($sql_delete);
$feedbackmsgs[] = TEXT_MESSAGE_CURRENCY_DELETED;
$smarty->assign('feedbackmsgs', $feedbackmsgs);
break;
}
$smarty->assign('link_currencies', get_admin_link(PAGE_CURRENCIES, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('link_new_currency', get_admin_link(PAGE_CURRENCY_NEW, tep_get_all_get_params(array('action', 'module', 'page'))));
$smarty->assign('link_currency_edit', get_admin_link(PAGE_CURRENCY_EDIT, tep_get_all_get_params(array('action', 'module', 'page'))));
$sql_currencies = "SELECT * FROM " . _TABLE_CURRENCIES . " WHERE 1 {$where_filter} ";
$sql_currencies_page = "SELECT * FROM " . _TABLE_CURRENCIES . " WHERE 1 {$where_filter} ORDER BY sort_order, title ASC";
$currencies_query = db_query($sql_currencies);
$currency_numbers = db_num_rows($currencies_query);
$currencypage =& new Paginator($_GET['pg'], $currency_numbers);
$currencypage->set_Limit(20);
$currencypage->pagename = get_admin_link(PAGE_CURRENCY_ACCOUNTS, tep_get_all_get_params(array('pg', 'x', 'y')));
$currencypage->set_Links(6);
$limit1 = $currencypage->getRange1();
$limit2 = $currencypage->getRange2();
$sql_currencies_page .= " LIMIT {$limit1}, {$limit2}";
$currency_page_query = db_query($sql_currencies_page);
// get smarty currencies list
$currencies_array = array();
while ($currency = db_fetch_array($currency_page_query)) {
$currency['currency_url'] = get_admin_link(PAGE_CURRENCY_EDIT, 'currencies_id=' . $currency['currencies_id']);
$currencies_array[] = $currency;
}
$smarty->assign('page_links', $currencypage->getPageLinks());
$smarty->assign('currencies', $currencies_array);
$_html_main_content = $smarty->fetch('currencies/list.html');
