Exemple #1
0
 public function execute()
 {
     global $login_customer_id;
     $OSCOM_Db = Registry::get('Db');
     if (is_int($login_customer_id) && $login_customer_id > 0) {
         if (SESSION_RECREATE == 'True') {
             tep_session_recreate();
         }
         $Qcustomer = $OSCOM_Db->prepare('select c.customers_firstname, c.customers_default_address_id, ab.entry_country_id, ab.entry_zone_id from :table_customers c left join :table_address_book ab on (c.customers_id = ab.customers_id and c.customers_default_address_id = ab.address_book_id) where c.customers_id = :customers_id');
         $Qcustomer->bindInt(':customers_id', $login_customer_id);
         $Qcustomer->execute();
         $_SESSION['customer_id'] = $login_customer_id;
         $_SESSION['customer_default_address_id'] = $Qcustomer->valueInt('customers_default_address_id');
         $_SESSION['customer_first_name'] = $Qcustomer->value('customers_firstname');
         $_SESSION['customer_country_id'] = $Qcustomer->valueInt('entry_country_id');
         $_SESSION['customer_zone_id'] = $Qcustomer->valueInt('entry_zone_id');
         $Qupdate = $OSCOM_Db->prepare('update :table_customers_info set customers_info_date_of_last_logon = now(), customers_info_number_of_logons = customers_info_number_of_logons+1, password_reset_key = null, password_reset_date = null where customers_info_id = :customers_info_id');
         $Qupdate->bindInt(':customers_info_id', $_SESSION['customer_id']);
         $Qupdate->execute();
         // reset session token
         $_SESSION['sessiontoken'] = md5(tep_rand() . tep_rand() . tep_rand() . tep_rand());
         // restore cart contents
         $_SESSION['cart']->restore_contents();
         if (count($_SESSION['navigation']->snapshot) > 0) {
             $origin_href = OSCOM::link($_SESSION['navigation']->snapshot['page'], tep_array_to_string($_SESSION['navigation']->snapshot['get'], array(session_name())), $_SESSION['navigation']->snapshot['mode']);
             $_SESSION['navigation']->clear_snapshot();
             HTTP::redirect($origin_href);
         }
         OSCOM::redirect('index.php');
     }
 }
Exemple #2
0
function tep_session_start()
{
    $sane_session_id = true;
    if (isset($_GET[session_name()])) {
        if (SESSION_FORCE_COOKIE_USE == 'True' || preg_match('/^[a-zA-Z0-9,-]+$/', $_GET[session_name()]) == false) {
            unset($_GET[session_name()]);
            $sane_session_id = false;
        }
    }
    if (isset($_POST[session_name()])) {
        if (SESSION_FORCE_COOKIE_USE == 'True' || preg_match('/^[a-zA-Z0-9,-]+$/', $_POST[session_name()]) == false) {
            unset($_POST[session_name()]);
            $sane_session_id = false;
        }
    }
    if (isset($_COOKIE[session_name()])) {
        if (preg_match('/^[a-zA-Z0-9,-]+$/', $_COOKIE[session_name()]) == false) {
            $session_data = session_get_cookie_params();
            setcookie(session_name(), '', time() - 42000, $session_data['path'], $session_data['domain']);
            unset($_COOKIE[session_name()]);
            $sane_session_id = false;
        }
    }
    if ($sane_session_id == false) {
        OSCOM::redirect('index.php', '', 'NONSSL', false);
    }
    register_shutdown_function('session_write_close');
    return session_start();
}
 function execute()
 {
     global $order_id;
     $OSCOM_Db = Registry::get('Db');
     if ((int) MODULE_CONTENT_CHECKOUT_SUCCESS_REDIRECT_OLD_ORDER_MINUTES > 0) {
         $Qcheck = $OSCOM_Db->prepare('select 1 from :table_orders where orders_id = :orders_id and date_purchased < date_sub(now(), interval :limit_minutes minute) limit 1');
         $Qcheck->bindInt(':orders_id', $order_id);
         $Qcheck->bindInt(':limit_minutes', MODULE_CONTENT_CHECKOUT_SUCCESS_REDIRECT_OLD_ORDER_MINUTES);
         $Qcheck->execute();
         if ($Qcheck->fetch() !== false) {
             OSCOM::redirect('account.php');
         }
     }
 }
Exemple #4
0
 public function execute()
 {
     global $login_customer_id, $oscTemplate, $breadcrumb;
     $this->page->setFile('login.php');
     // redirect the customer to a friendly cookie-must-be-enabled page if cookies are disabled (or the session has not started)
     if (session_status() !== PHP_SESSION_ACTIVE) {
         if (!isset($_GET['cookie_test'])) {
             $all_get = tep_get_all_get_params(['Account', 'LogIn', 'Process']);
             OSCOM::redirect('index.php', 'Account&LogIn&' . $all_get . (empty($all_get) ? '' : '&') . 'cookie_test=1', 'SSL');
         }
         OSCOM::redirect('cookie_usage.php');
     }
     // login content module must return $login_customer_id as an integer after successful customer authentication
     $login_customer_id = false;
     $this->page->data['content'] = $oscTemplate->getContent('login');
     require OSCOM::BASE_DIR . 'languages/' . $_SESSION['language'] . '/login.php';
     $breadcrumb->add(NAVBAR_TITLE, OSCOM::link('index.php', 'Account&LogIn', 'SSL'));
 }
Exemple #5
0
 public function execute()
 {
     $OSCOM_Session = Registry::get('Session');
     // initialize a session token
     if (!isset($_SESSION['sessiontoken'])) {
         $_SESSION['sessiontoken'] = md5(Hash::getRandomInt() . Hash::getRandomInt() . Hash::getRandomInt() . Hash::getRandomInt());
     }
     // verify the ssl_session_id if the feature is enabled
     if (HTTP::getRequestType() === 'SSL' && SESSION_CHECK_SSL_SESSION_ID == 'True' && $OSCOM_Session->hasStarted()) {
         if (!isset($_SESSION['SSL_SESSION_ID'])) {
             $_SESSION['SESSION_SSL_ID'] = $_SERVER['SSL_SESSION_ID'];
         }
         if ($_SESSION['SESSION_SSL_ID'] != $_SERVER['SSL_SESSION_ID']) {
             $OSCOM_Session->kill();
             OSCOM::redirect('ssl_check.php');
         }
     }
     // verify the browser user agent if the feature is enabled
     if (SESSION_CHECK_USER_AGENT == 'True') {
         if (!isset($_SESSION['SESSION_USER_AGENT'])) {
             $_SESSION['SESSION_USER_AGENT'] = $_SERVER['HTTP_USER_AGENT'];
         }
         if ($_SESSION['SESSION_USER_AGENT'] != $_SERVER['HTTP_USER_AGENT']) {
             $OSCOM_Session->kill();
             OSCOM::redirect('login.php');
         }
     }
     // verify the IP address if the feature is enabled
     if (SESSION_CHECK_IP_ADDRESS == 'True') {
         if (!isset($_SESSION['SESSION_IP_ADDRESS'])) {
             $_SESSION['SESSION_IP_ADDRESS'] = HTTP::getIpAddress();
         }
         if ($_SESSION['SESSION_IP_ADDRESS'] != HTTP::getIpAddress()) {
             $OSCOM_Session->kill();
             OSCOM::redirect('login.php');
         }
     }
 }
<?php

/**
 * osCommerce Online Merchant
 *
 * @copyright (c) 2016 osCommerce; https://www.oscommerce.com
 * @license MIT; https://www.oscommerce.com/license/mit.txt
 */
use OSC\OM\DateTime;
use OSC\OM\HTML;
use OSC\OM\OSCOM;
use OSC\OM\Registry;
require 'includes/application_top.php';
if (!isset($_GET['products_id'])) {
    OSCOM::redirect('index.php');
}
$OSCOM_Language->loadDefinitions('product_info');
$product_exists = true;
$Qproduct = $OSCOM_Db->prepare('select p.products_id, pd.products_name, pd.products_description, p.products_model, p.products_quantity, p.products_image, pd.products_url, p.products_price, p.products_tax_class_id, p.products_date_added, p.products_date_available, p.manufacturers_id from :table_products p, :table_products_description pd where p.products_id = :products_id and p.products_status = 1 and p.products_id = pd.products_id and pd.language_id = :language_id');
$Qproduct->bindInt(':products_id', $_GET['products_id']);
$Qproduct->bindInt(':language_id', $OSCOM_Language->getId());
$Qproduct->execute();
$product_exists = $Qproduct->fetch() !== false;
if ($product_exists === false) {
    header('HTTP/1.0 404 Not Found');
} elseif (!empty($Qproduct->value('products_model'))) {
    // add the products model to the breadcrumb trail
    $breadcrumb->add($Qproduct->value('products_model'), OSCOM::link('product_info.php', 'cPath=' . $cPath . '&products_id=' . $Qproduct->valueInt('products_id')));
}
require $oscTemplate->getFile('template_top.php');
if ($product_exists === false) {
        $Qcheck = $OSCOM_Db->prepare('select address_book_id from :table_address_book where address_book_id = :address_book_id and customers_id = :customers_id');
        $Qcheck->bindInt(':address_book_id', $_SESSION['billto']);
        $Qcheck->bindInt(':customers_id', $_SESSION['customer_id']);
        $Qcheck->execute();
        if ($Qcheck->fetch() !== false) {
            if ($reset_payment == true) {
                unset($_SESSION['payment']);
            }
            OSCOM::redirect('checkout_payment.php', '', 'SSL');
        } else {
            unset($_SESSION['billto']);
        }
        // no addresses to select from - customer decided to keep the current assigned address
    } else {
        $_SESSION['billto'] = $_SESSION['customer_default_address_id'];
        OSCOM::redirect('checkout_payment.php', '', 'SSL');
    }
}
// if no billing destination address was selected, use their own address as default
if (!isset($_SESSION['billto'])) {
    $_SESSION['billto'] = $_SESSION['customer_default_address_id'];
}
$breadcrumb->add(NAVBAR_TITLE_1, OSCOM::link('checkout_payment.php', '', 'SSL'));
$breadcrumb->add(NAVBAR_TITLE_2, OSCOM::link('checkout_payment_address.php', '', 'SSL'));
$addresses_count = tep_count_customer_address_book_entries();
require 'includes/template_top.php';
?>

<div class="page-header">
  <h1><?php 
echo HEADING_TITLE;
Exemple #8
0
    }
    $customerEmail = new Mail();
    $customerEmail->setFrom($_POST['from']);
    $customerEmail->setSubject($_POST['subject']);
    if (!empty($_POST['message'])) {
        $customerEmail->setBodyPlain($_POST['message']);
    }
    if (!empty($_POST['message_html'])) {
        $customerEmail->setBodyHTML($_POST['message_html']);
    }
    while ($Qmail->fetch()) {
        $customerEmail->clearTo();
        $customerEmail->addTo($Qmail->value('customers_email_address'), $Qmail->value('customers_firstname') . ' ' . $Qmail->value('customers_lastname'));
        $customerEmail->send();
    }
    OSCOM::redirect(FILENAME_MAIL, 'mail_sent_to=' . urlencode($mail_sent_to));
}
if ($action == 'preview' && !isset($_POST['customers_email_address'])) {
    $OSCOM_MessageStack->add(OSCOM::getDef('error_no_customer_selected'), 'error');
}
if (isset($_GET['mail_sent_to'])) {
    $OSCOM_MessageStack->add(OSCOM::getDef('notice_email_sent_to', ['mail_sent_to' => $_GET['mail_sent_to']]), 'success');
}
require $oscTemplate->getFile('template_top.php');
?>

    <table border="0" width="100%" cellspacing="0" cellpadding="0">
      <tr>
        <td width="100%"><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading"><?php 
/*
  $Id$

  osCommerce, Open Source E-Commerce Solutions
  http://www.oscommerce.com

  Copyright (c) 2015 osCommerce

  Released under the GNU General Public License
*/
use OSC\OM\HTML;
use OSC\OM\OSCOM;
require 'includes/application_top.php';
if (!isset($_SESSION['customer_id'])) {
    $_SESSION['navigation']->set_snapshot();
    OSCOM::redirect('login.php', '', 'SSL');
}
require DIR_WS_LANGUAGES . $_SESSION['language'] . '/account_history.php';
$breadcrumb->add(NAVBAR_TITLE_1, OSCOM::link('account.php', '', 'SSL'));
$breadcrumb->add(NAVBAR_TITLE_2, OSCOM::link('account_history.php', '', 'SSL'));
require 'includes/template_top.php';
?>

<div class="page-header">
  <h1><?php 
echo HEADING_TITLE;
?>
</h1>
</div>

<div class="contentContainer">
    if (!$actionRecorder->canPerform()) {
        $error = true;
        $actionRecorder->record(false);
        $messageStack->add('friend', sprintf(ERROR_ACTION_RECORDER, defined('MODULE_ACTION_RECORDER_TELL_A_FRIEND_EMAIL_MINUTES') ? (int) MODULE_ACTION_RECORDER_TELL_A_FRIEND_EMAIL_MINUTES : 15));
    }
    if ($error == false) {
        $email_subject = sprintf(TEXT_EMAIL_SUBJECT, $from_name, STORE_NAME);
        $email_body = sprintf(TEXT_EMAIL_INTRO, $to_name, $from_name, $Qproduct->value('products_name'), STORE_NAME) . "\n\n";
        if (tep_not_null($message)) {
            $email_body .= $message . "\n\n";
        }
        $email_body .= sprintf(TEXT_EMAIL_LINK, OSCOM::link('product_info.php', 'products_id=' . $Qproduct->valueInt('products_id'), 'NONSSL', false)) . "\n\n" . sprintf(TEXT_EMAIL_SIGNATURE, STORE_NAME . "\n" . HTTP_SERVER . DIR_WS_CATALOG . "\n");
        tep_mail($to_name, $to_email_address, $email_subject, $email_body, $from_name, $from_email_address);
        $actionRecorder->record();
        $messageStack->add_session('header', sprintf(TEXT_EMAIL_SUCCESSFUL_SENT, $Qproduct->value('products_name'), tep_output_string_protected($to_name)), 'success');
        OSCOM::redirect('product_info.php', 'products_id=' . $Qproduct->valueInt('products_id'));
    }
} elseif (isset($_SESSION['customer_id'])) {
    $Qcustomer = $OSCOM_Db->get('customers', ['customers_firstname', 'customers_lastname', 'customers_email_address'], ['customers_id' => $_SESSION['customer_id']]);
    $from_name = $Qcustomer->value('customers_firstname') . ' ' . $Qcustomer->value('customers_lastname');
    $from_email_address = $Qcustomer->value('customers_email_address');
}
$breadcrumb->add(NAVBAR_TITLE, OSCOM::link('tell_a_friend.php', 'products_id=' . $Qproduct->valueInt('products_id')));
require 'includes/template_top.php';
?>

<div class="page-header">
  <h1><?php 
echo sprintf(HEADING_TITLE, $Qproduct->value('products_name'));
?>
</h1>
        // restore cart contents
        $_SESSION['cart']->restore_contents();
        // build the message content
        $name = $firstname . ' ' . $lastname;
        if (ACCOUNT_GENDER == 'true') {
            if ($gender == 'm') {
                $email_text = sprintf(EMAIL_GREET_MR, $lastname);
            } else {
                $email_text = sprintf(EMAIL_GREET_MS, $lastname);
            }
        } else {
            $email_text = sprintf(EMAIL_GREET_NONE, $firstname);
        }
        $email_text .= EMAIL_WELCOME . EMAIL_TEXT . EMAIL_CONTACT . EMAIL_WARNING;
        tep_mail($name, $email_address, EMAIL_SUBJECT, $email_text, STORE_OWNER, STORE_OWNER_EMAIL_ADDRESS);
        OSCOM::redirect('create_account_success.php', '', 'SSL');
    }
}
$breadcrumb->add(NAVBAR_TITLE, OSCOM::link('create_account.php', '', 'SSL'));
require 'includes/template_top.php';
?>

<div class="page-header">
  <h1><?php 
echo HEADING_TITLE;
?>
</h1>
</div>

<?php 
if ($messageStack->size('create_account') > 0) {
Exemple #12
0
  osCommerce, Open Source E-Commerce Solutions
  http://www.oscommerce.com

  Copyright (c) 2015 osCommerce

  Released under the GNU General Public License
*/
use OSC\OM\HTML;
use OSC\OM\OSCOM;
chdir('../../../../');
require 'includes/application_top.php';
// if the customer is not logged on, redirect them to the login page
if (!isset($_SESSION['customer_id'])) {
    $_SESSION['navigation']->set_snapshot(array('mode' => 'SSL', 'page' => 'checkout_payment.php'));
    OSCOM::redirect('index.php', 'Account&LogIn', 'SSL');
}
if (isset($_GET['payment_error']) && tep_not_null($_GET['payment_error'])) {
    $redirect_url = OSCOM::link('checkout_payment.php', 'payment_error=' . $_GET['payment_error'] . (isset($_GET['error']) && tep_not_null($_GET['error']) ? '&error=' . $_GET['error'] : ''), 'SSL');
} else {
    $hidden_params = '';
    if ($_SESSION['payment'] == 'sage_pay_direct') {
        $redirect_url = OSCOM::link('checkout_process.php', 'check=3D', 'SSL');
        $hidden_params = HTML::hiddenField('MD', $_POST['MD']) . HTML::hiddenField('PaRes', $_POST['PaRes']);
    } else {
        $redirect_url = OSCOM::link('checkout_success.php', '', 'SSL');
    }
}
require DIR_WS_LANGUAGES . $_SESSION['language'] . '/checkout_confirmation.php';
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
Exemple #13
0
                    header('Content-type: application/x-octet-stream');
                    header('Content-disposition: attachment; filename=' . $_GET['file']);
                    echo $buffer;
                    exit;
                }
            } else {
                $OSCOM_MessageStack->add(OSCOM::getDef('error_download_link_not_acceptable'), 'error');
            }
            break;
        case 'deleteconfirm':
            if (strstr($_GET['file'], '..')) {
                OSCOM::redirect(FILENAME_BACKUP);
            }
            if (unlink($backup_directory . '/' . $_GET['file'])) {
                $OSCOM_MessageStack->add(OSCOM::getDef('success_backup_deleted'), 'success');
                OSCOM::redirect(FILENAME_BACKUP);
            }
            break;
    }
}
// check if the backup directory exists
$dir_ok = false;
if (is_dir($backup_directory)) {
    if (FileSystem::isWritable($backup_directory)) {
        $dir_ok = true;
    } else {
        $OSCOM_MessageStack->add(OSCOM::getDef('error_backup_directory_not_writeable'), 'error');
    }
} else {
    $OSCOM_MessageStack->add(OSCOM::getDef('error_backup_directory_does_not_exist'), 'error');
}
Exemple #14
0
 protected function init()
 {
     global $request_type, $cookie_domain, $cookie_path, $PHP_SELF, $SID, $currencies, $messageStack, $oscTemplate, $breadcrumb;
     Registry::set('Cache', new Cache());
     $OSCOM_Db = Db::initialize();
     Registry::set('Db', $OSCOM_Db);
     // set the application parameters
     $Qcfg = $OSCOM_Db->get('configuration', ['configuration_key as k', 'configuration_value as v']);
     //, null, null, null, 'configuration'); // TODO add cache when supported by admin
     while ($Qcfg->fetch()) {
         define($Qcfg->value('k'), $Qcfg->value('v'));
     }
     // set the type of request (secure or not)
     if (isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) == 'on' || isset($_SERVER['SERVER_PORT']) && $_SERVER['SERVER_PORT'] == 443) {
         $request_type = 'SSL';
         define('DIR_WS_CATALOG', DIR_WS_HTTPS_CATALOG);
         $cookie_domain = HTTPS_COOKIE_DOMAIN;
         $cookie_path = HTTPS_COOKIE_PATH;
     } else {
         $request_type = 'NONSSL';
         define('DIR_WS_CATALOG', DIR_WS_HTTP_CATALOG);
         $cookie_domain = HTTP_COOKIE_DOMAIN;
         $cookie_path = HTTP_COOKIE_PATH;
     }
     // set php_self in the global scope
     $req = parse_url($_SERVER['SCRIPT_NAME']);
     $PHP_SELF = substr($req['path'], $request_type == 'NONSSL' ? strlen(DIR_WS_HTTP_CATALOG) : strlen(DIR_WS_HTTPS_CATALOG));
     // set the session name and save path
     session_name('oscomid');
     session_save_path(SESSION_WRITE_DIRECTORY);
     // set the session cookie parameters
     session_set_cookie_params(0, $cookie_path, $cookie_domain);
     if (function_exists('ini_set')) {
         ini_set('session.use_only_cookies', SESSION_FORCE_COOKIE_USE == 'True' ? 1 : 0);
     }
     // set the session ID if it exists
     if (SESSION_FORCE_COOKIE_USE == 'False') {
         if (isset($_GET[session_name()]) && (!isset($_COOKIE[session_name()]) || $_COOKIE[session_name()] != $_GET[session_name()])) {
             session_id($_GET[session_name()]);
         } elseif (isset($_POST[session_name()]) && (!isset($_COOKIE[session_name()]) || $_COOKIE[session_name()] != $_POST[session_name()])) {
             session_id($_POST[session_name()]);
         }
     }
     // start the session
     if (SESSION_FORCE_COOKIE_USE == 'True') {
         tep_setcookie('cookie_test', 'please_accept_for_session', time() + 60 * 60 * 24 * 30);
         if (isset($_COOKIE['cookie_test'])) {
             tep_session_start();
         }
     } elseif (SESSION_BLOCK_SPIDERS == 'True') {
         $user_agent = '';
         if (isset($_SERVER['HTTP_USER_AGENT'])) {
             $user_agent = strtolower($_SERVER['HTTP_USER_AGENT']);
         }
         $spider_flag = false;
         if (!empty($user_agent)) {
             foreach (file(OSCOM::BASE_DIR . 'spiders.txt') as $spider) {
                 if (!empty($spider)) {
                     if (strpos($user_agent, $spider) !== false) {
                         $spider_flag = true;
                         break;
                     }
                 }
             }
         }
         if ($spider_flag === false) {
             tep_session_start();
         }
     } else {
         tep_session_start();
     }
     $this->ignored_actions[] = session_name();
     // initialize a session token
     if (!isset($_SESSION['sessiontoken'])) {
         $_SESSION['sessiontoken'] = md5(tep_rand() . tep_rand() . tep_rand() . tep_rand());
     }
     // set SID once, even if empty
     $SID = defined('SID') ? SID : '';
     // verify the ssl_session_id if the feature is enabled
     if ($request_type == 'SSL' && SESSION_CHECK_SSL_SESSION_ID == 'True' && ENABLE_SSL == true && session_status() === PHP_SESSION_ACTIVE) {
         if (!isset($_SESSION['SSL_SESSION_ID'])) {
             $_SESSION['SESSION_SSL_ID'] = $_SERVER['SSL_SESSION_ID'];
         }
         if ($_SESSION['SESSION_SSL_ID'] != $_SERVER['SSL_SESSION_ID']) {
             tep_session_destroy();
             OSCOM::redirect('ssl_check.php');
         }
     }
     // verify the browser user agent if the feature is enabled
     if (SESSION_CHECK_USER_AGENT == 'True') {
         if (!isset($_SESSION['SESSION_USER_AGENT'])) {
             $_SESSION['SESSION_USER_AGENT'] = $_SERVER['HTTP_USER_AGENT'];
         }
         if ($_SESSION['SESSION_USER_AGENT'] != $_SERVER['HTTP_USER_AGENT']) {
             tep_session_destroy();
             OSCOM::redirect('index.php', 'Account&LogIn');
         }
     }
     // verify the IP address if the feature is enabled
     if (SESSION_CHECK_IP_ADDRESS == 'True') {
         if (!isset($_SESSION['SESSION_IP_ADDRESS'])) {
             $_SESSION['SESSION_IP_ADDRESS'] = tep_get_ip_address();
         }
         if ($_SESSION['SESSION_IP_ADDRESS'] != tep_get_ip_address()) {
             tep_session_destroy();
             OSCOM::redirect('index.php', 'Account&LogIn');
         }
     }
     // create the shopping cart
     if (!isset($_SESSION['cart']) || !is_object($_SESSION['cart']) || get_class($_SESSION['cart']) != 'shoppingCart') {
         $_SESSION['cart'] = new \shoppingCart();
     }
     // include currencies class and create an instance
     $currencies = new \currencies();
     // set the language
     if (!isset($_SESSION['language']) || isset($_GET['language'])) {
         $lng = new \language();
         if (isset($_GET['language']) && !empty($_GET['language'])) {
             $lng->set_language($_GET['language']);
         } else {
             $lng->get_browser_language();
         }
         $_SESSION['language'] = $lng->language['directory'];
         $_SESSION['languages_id'] = $lng->language['id'];
     }
     // include the language translations
     $system_locale_numeric = setlocale(LC_NUMERIC, 0);
     include OSCOM::BASE_DIR . 'languages/' . $_SESSION['language'] . '.php';
     setlocale(LC_NUMERIC, $system_locale_numeric);
     // Prevent LC_ALL from setting LC_NUMERIC to a locale with 1,0 float/decimal values instead of 1.0 (see bug #634)
     // currency
     if (!isset($_SESSION['currency']) || isset($_GET['currency']) || USE_DEFAULT_LANGUAGE_CURRENCY == 'true' && LANGUAGE_CURRENCY != $_SESSION['currency']) {
         if (isset($_GET['currency']) && $currencies->is_set($_GET['currency'])) {
             $_SESSION['currency'] = $_GET['currency'];
         } else {
             $_SESSION['currency'] = USE_DEFAULT_LANGUAGE_CURRENCY == 'true' && $currencies->is_set(LANGUAGE_CURRENCY) ? LANGUAGE_CURRENCY : DEFAULT_CURRENCY;
         }
     }
     // navigation history
     if (!isset($_SESSION['navigation']) || !is_object($_SESSION['navigation']) || get_class($_SESSION['navigation']) != 'navigationHistory') {
         $_SESSION['navigation'] = new \navigationHistory();
     }
     $_SESSION['navigation']->add_current_page();
     $messageStack = new \messageStack();
     tep_update_whos_online();
     tep_activate_banners();
     tep_expire_banners();
     tep_expire_specials();
     $oscTemplate = new \oscTemplate();
     $breadcrumb = new \breadcrumb();
     $breadcrumb->add(HEADER_TITLE_TOP, HTTP_SERVER);
     $breadcrumb->add(HEADER_TITLE_CATALOG, OSCOM::link('index.php'));
     Registry::set('Hooks', new Hooks());
 }
Exemple #15
0
}
require DIR_WS_LANGUAGES . $_SESSION['language'] . '/modules/content/account/cm_account_braintree_cards.php';
require 'includes/modules/content/account/cm_account_braintree_cards.php';
$braintree_cards = new cm_account_braintree_cards();
if (!$braintree_cards->isEnabled()) {
    OSCOM::redirect('account.php', '', 'SSL');
}
if (isset($_GET['action'])) {
    if ($_GET['action'] == 'delete' && isset($_GET['id']) && is_numeric($_GET['id']) && isset($_GET['formid']) && $_GET['formid'] == md5($_SESSION['sessiontoken'])) {
        $Qtoken = $OSCOM_Db->get('customers_braintree_tokens', ['id', 'braintree_token'], ['id' => $_GET['id'], 'customers_id' => $_SESSION['customer_id']]);
        if ($Qtoken->fetch() !== false) {
            $braintree_cc->deleteCard($Qtoken->value('braintree_token'), $Qtoken->valueInt('id'));
            $messageStack->add_session('cards', MODULE_CONTENT_ACCOUNT_BRAINTREE_CARDS_SUCCESS_DELETED, 'success');
        }
    }
    OSCOM::redirect('ext/modules/content/account/braintree/cards.php', '', 'SSL');
}
$breadcrumb->add(MODULE_CONTENT_ACCOUNT_BRAINTREE_CARDS_NAVBAR_TITLE_1, OSCOM::link('account.php', '', 'SSL'));
$breadcrumb->add(MODULE_CONTENT_ACCOUNT_BRAINTREE_CARDS_NAVBAR_TITLE_2, OSCOM::link('ext/modules/content/account/braintree/cards.php', '', 'SSL'));
require 'includes/template_top.php';
?>

<h1><?php 
echo MODULE_CONTENT_ACCOUNT_BRAINTREE_CARDS_HEADING_TITLE;
?>
</h1>

<?php 
if ($messageStack->size('cards') > 0) {
    echo $messageStack->output('cards');
}
        $Qcheck = $OSCOM_Db->prepare('select address_book_id from :table_address_book where address_book_id = :address_book_id and customers_id = :customers_id');
        $Qcheck->bindInt(':address_book_id', $_GET['delete']);
        $Qcheck->bindInt(':customers_id', $_SESSION['customer_id']);
        $Qcheck->execute();
        if ($Qcheck->fetch() === false) {
            $messageStack->add_session('addressbook', ERROR_NONEXISTING_ADDRESS_BOOK_ENTRY);
            OSCOM::redirect('address_book.php', '', 'SSL');
        }
    }
} else {
    $entry = array();
}
if (!isset($_GET['delete']) && !isset($_GET['edit'])) {
    if (tep_count_customer_address_book_entries() >= MAX_ADDRESS_BOOK_ENTRIES) {
        $messageStack->add_session('addressbook', ERROR_ADDRESS_BOOK_FULL);
        OSCOM::redirect('address_book.php', '', 'SSL');
    }
}
$breadcrumb->add(NAVBAR_TITLE_1, OSCOM::link('account.php', '', 'SSL'));
$breadcrumb->add(NAVBAR_TITLE_2, OSCOM::link('address_book.php', '', 'SSL'));
if (isset($_GET['edit']) && is_numeric($_GET['edit'])) {
    $breadcrumb->add(NAVBAR_TITLE_MODIFY_ENTRY, OSCOM::link('address_book_process.php', 'edit=' . $_GET['edit'], 'SSL'));
} elseif (isset($_GET['delete']) && is_numeric($_GET['delete'])) {
    $breadcrumb->add(NAVBAR_TITLE_DELETE_ENTRY, OSCOM::link('address_book_process.php', 'delete=' . $_GET['delete'], 'SSL'));
} else {
    $breadcrumb->add(NAVBAR_TITLE_ADD_ENTRY, OSCOM::link('address_book_process.php', '', 'SSL'));
}
require 'includes/template_top.php';
?>

<div class="page-header">
 function after_process()
 {
     global $insert_id, $sagepay_server_transaction_details;
     $OSCOM_Db = Registry::get('Db');
     $sql_data_array = array('orders_id' => $insert_id, 'orders_status_id' => DEFAULT_ORDERS_STATUS_ID, 'date_added' => 'now()', 'customer_notified' => '0', 'comments' => trim($sagepay_server_transaction_details));
     $OSCOM_Db->save('orders_status_history', $sql_data_array);
     if (MODULE_PAYMENT_SAGE_PAY_SERVER_PROFILE_PAGE == 'Low') {
         $_SESSION['cart']->reset(true);
         // unregister session variables used during checkout
         unset($_SESSION['sendto']);
         unset($_SESSION['billto']);
         unset($_SESSION['shipping']);
         unset($_SESSION['payment']);
         unset($_SESSION['comments']);
         unset($_SESSION['sage_pay_server_nexturl']);
         OSCOM::redirect('ext/modules/payment/sage_pay/redirect.php', '', 'SSL');
     }
 }
    $review = HTML::sanitize($_POST['review']);
    $error = false;
    if (strlen($review) < REVIEW_TEXT_MIN_LENGTH) {
        $error = true;
        $messageStack->add('review', JS_REVIEW_TEXT);
    }
    if ($rating < 1 || $rating > 5) {
        $error = true;
        $messageStack->add('review', JS_REVIEW_RATING);
    }
    if ($error == false) {
        $OSCOM_Db->save('reviews', ['products_id' => $Qcheck->valueInt('products_id'), 'customers_id' => $_SESSION['customer_id'], 'customers_name' => $Qcustomer->value('customers_firstname') . ' ' . $Qcustomer->value('customers_lastname'), 'reviews_rating' => $rating, 'date_added' => 'now()']);
        $insert_id = $OSCOM_Db->lastInsertId();
        $OSCOM_Db->save('reviews_description', ['reviews_id' => $insert_id, 'languages_id' => $_SESSION['languages_id'], 'reviews_text' => $review]);
        $messageStack->add_session('product_reviews', TEXT_REVIEW_RECEIVED, 'success');
        OSCOM::redirect('product_reviews.php', tep_get_all_get_params(array('action')));
    }
}
if ($new_price = tep_get_products_special_price($Qcheck->valueInt('products_id'))) {
    $products_price = '<del>' . $currencies->display_price($Qcheck->valueDecimal('products_price'), tep_get_tax_rate($Qcheck->valueInt('products_tax_class_id'))) . '</del> <span class="productSpecialPrice">' . $currencies->display_price($new_price, tep_get_tax_rate($Qcheck->valueInt('products_tax_class_id'))) . '</span>';
} else {
    $products_price = $currencies->display_price($Qcheck->valueDecimal('products_price'), tep_get_tax_rate($Qcheck->valueInt('products_tax_class_id')));
}
$products_name = $Qcheck->value('products_name');
if (!empty($Qcheck->value('products_model'))) {
    $products_name .= ' <small>[' . $Qcheck->value('products_model') . ']</small>';
}
$breadcrumb->add(NAVBAR_TITLE, OSCOM::link('product_reviews.php', tep_get_all_get_params()));
require 'includes/template_top.php';
?>
Exemple #19
0
            OSCOM::redirect(FILENAME_LANGUAGES, 'page=' . $_GET['page'] . '&lID=' . $_GET['lID']);
            break;
        case 'deleteconfirm':
            $lID = HTML::sanitize($_GET['lID']);
            $Qlanguage = $OSCOM_Db->get('languages', 'languages_id', ['code' => DEFAULT_LANGUAGE]);
            if ($Qlanguage->valueInt('languages_id') === (int) $lID) {
                $OSCOM_Db->save('configuration', ['configuration_value' => ''], ['configuration_key' => 'DEFAULT_CURRENCY']);
            }
            $OSCOM_Db->delete('categories_description', ['language_id' => $lID]);
            $OSCOM_Db->delete('products_description', ['language_id' => $lID]);
            $OSCOM_Db->delete('products_options', ['language_id' => $lID]);
            $OSCOM_Db->delete('products_options_values', ['language_id' => $lID]);
            $OSCOM_Db->delete('manufacturers_info', ['languages_id' => $lID]);
            $OSCOM_Db->delete('orders_status', ['language_id' => $lID]);
            $OSCOM_Db->delete('languages', ['languages_id' => $lID]);
            OSCOM::redirect(FILENAME_LANGUAGES, 'page=' . $_GET['page']);
            break;
        case 'delete':
            $lID = HTML::sanitize($_GET['lID']);
            $Qlanguage = $OSCOM_Db->get('languages', 'code', ['languages_id' => $lID]);
            $remove_language = true;
            if ($Qlanguage->value('code') == DEFAULT_LANGUAGE) {
                $remove_language = false;
                $OSCOM_MessageStack->add(OSCOM::getDef('error_remove_default_language'), 'error');
            }
            break;
    }
}
$icons = [];
foreach (glob(OSCOM::getConfig('dir_root', 'Shop') . 'public/third_party/flag-icon-css/flags/4x3/*.svg') as $file) {
    $code = basename($file, '.svg');
         if (isset($_POST['delete_image']) && $_POST['delete_image'] == 'on') {
             $Qbanner = $OSCOM_Db->get('banners', 'banners_image', ['banners_id' => (int) $banners_id]);
             if (tep_not_null($Qbanner->value('banners_image')) && is_file(OSCOM::getConfig('dir_root', 'Shop') . 'images/' . $Qbanner->value('banners_image'))) {
                 if (FileSystem::isWritable(OSCOM::getConfig('dir_root', 'Shop') . 'images/' . $Qbanner->value('banners_image'))) {
                     unlink(OSCOM::getConfig('dir_root', 'Shop') . 'images/' . $Qbanner->value('banners_image'));
                 } else {
                     $OSCOM_MessageStack->add(OSCOM::getDef('error_image_is_not_writeable'), 'error');
                 }
             } else {
                 $OSCOM_MessageStack->add(OSCOM::getDef('error_image_does_not_exist'), 'error');
             }
         }
         $OSCOM_Db->delete('banners', ['banners_id' => (int) $banners_id]);
         $OSCOM_Db->delete('banners_history', ['banners_id' => (int) $banners_id]);
         $OSCOM_MessageStack->add(OSCOM::getDef('success_banner_removed'), 'success');
         OSCOM::redirect(FILENAME_BANNER_MANAGER, 'page=' . $_GET['page']);
         break;
     case 'preview':
         $banners_id = HTML::sanitize($_GET['banner']);
         $Qbanner = $OSCOM_Db->get('banners', ['banners_title', 'banners_image', 'banners_html_text'], ['banners_id' => (int) $banners_id]);
         if ($Qbanner->check()) {
             echo '<h1>' . $Qbanner->valueProtected('banners_title') . '</h1>';
             if (tep_not_null($Qbanner->value('banners_html_text'))) {
                 echo $Qbanner->value('banners_html_text');
             } elseif (tep_not_null($Qbanner->value('banners_image'))) {
                 echo HTML::image(OSCOM::linkImage('Shop/' . $Qbanner->value('banners_image')), $Qbanner->value('banners_title'));
             }
             exit;
         }
         break;
 }
if (!isset($_SESSION['customer_id'])) {
    $_SESSION['navigation']->set_snapshot();
    OSCOM::redirect('login.php');
}
$OSCOM_Language->loadDefinitions('account_newsletters');
$Qnewsletter = $OSCOM_Db->prepare('select customers_newsletter from :table_customers where customers_id = :customers_id');
$Qnewsletter->bindInt(':customers_id', $_SESSION['customer_id']);
$Qnewsletter->execute();
if (isset($_POST['action']) && $_POST['action'] == 'process' && isset($_POST['formid']) && $_POST['formid'] == $_SESSION['sessiontoken']) {
    $newsletter_general = isset($_POST['newsletter_general']) && $_POST['newsletter_general'] == '1' ? 1 : 0;
    if ($newsletter_general !== $Qnewsletter->valueInt('customers_newsletter')) {
        $newsletter_general = $Qnewsletter->valueInt('customers_newsletter') === 1 ? 0 : 1;
        $OSCOM_Db->save('customers', ['customers_newsletter' => $newsletter_general], ['customers_id' => $_SESSION['customer_id']]);
    }
    $messageStack->add_session('account', OSCOM::getDef('success_newsletter_updated'), 'success');
    OSCOM::redirect('account.php');
}
$breadcrumb->add(OSCOM::getDef('navbar_title_1'), OSCOM::link('account.php'));
$breadcrumb->add(OSCOM::getDef('navbar_title_2'), OSCOM::link('account_newsletters.php'));
require $oscTemplate->getFile('template_top.php');
?>

<div class="page-header">
  <h1><?php 
echo OSCOM::getDef('heading_title');
?>
</h1>
</div>

<?php 
echo HTML::form('account_newsletter', OSCOM::link('account_newsletters.php'), 'post', 'class="form-horizontal"', ['tokenize' => true, 'action' => 'process']);
require DIR_WS_CLASSES . 'shipping.php';
$shipping_modules = new shipping($_SESSION['shipping']);
require DIR_WS_CLASSES . 'order_total.php';
$order_total_modules = new order_total();
$order_total_modules->process();
// Stock Check
$any_out_of_stock = false;
if (STOCK_CHECK == 'true') {
    for ($i = 0, $n = sizeof($order->products); $i < $n; $i++) {
        if (tep_check_stock($order->products[$i]['id'], $order->products[$i]['qty'])) {
            $any_out_of_stock = true;
        }
    }
    // Out of Stock
    if (STOCK_ALLOW_CHECKOUT != 'true' && $any_out_of_stock == true) {
        OSCOM::redirect('shopping_cart.php');
    }
}
require DIR_WS_LANGUAGES . $_SESSION['language'] . '/checkout_confirmation.php';
$breadcrumb->add(NAVBAR_TITLE_1, OSCOM::link('checkout_shipping.php', '', 'SSL'));
$breadcrumb->add(NAVBAR_TITLE_2);
require 'includes/template_top.php';
?>

<div class="page-header">
  <h1><?php 
echo HEADING_TITLE;
?>
</h1>
</div>
 * @copyright (c) 2016 osCommerce; https://www.oscommerce.com
 * @license MIT; https://www.oscommerce.com/license/mit.txt
 */
use OSC\OM\OSCOM;
chdir('../../../../');
require 'includes/application_top.php';
// if the customer is not logged on, redirect them to the login page
if (!isset($_SESSION['customer_id'])) {
    $_SESSION['navigation']->set_snapshot(array('page' => 'checkout_payment.php'));
    OSCOM::redirect('login.php');
}
if (!isset($_SESSION['sage_pay_direct_acsurl'])) {
    OSCOM::redirect('checkout_payment.php');
}
if (!isset($_SESSION['payment']) || $_SESSION['payment'] != 'sage_pay_direct') {
    OSCOM::redirect('checkout_payment.php');
}
$OSCOM_Language->loadDefinitions('checkout_confirmation');
$OSCOM_Language->loadDefinitions('modules/payment/sage_pay_direct');
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html <?php 
echo OSCOM::getDef('html_params');
?>
>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=<?php 
echo OSCOM::getDef('charset');
?>
">
<title><?php 
    if ($error == false) {
        $sql_data_array = array('customers_firstname' => $firstname, 'customers_lastname' => $lastname, 'customers_email_address' => $email_address, 'customers_telephone' => $telephone, 'customers_fax' => $fax);
        if (ACCOUNT_GENDER == 'true') {
            $sql_data_array['customers_gender'] = $gender;
        }
        if (ACCOUNT_DOB == 'true') {
            $sql_data_array['customers_dob'] = tep_date_raw($dob);
        }
        $OSCOM_Db->save('customers', $sql_data_array, ['customers_id' => (int) $_SESSION['customer_id']]);
        $OSCOM_Db->save('customers_info', ['customers_info_date_account_last_modified' => 'now()'], ['customers_info_id' => (int) $_SESSION['customer_id']]);
        $sql_data_array = ['entry_firstname' => $firstname, 'entry_lastname' => $lastname];
        $OSCOM_Db->save('address_book', $sql_data_array, ['customers_id' => (int) $_SESSION['customer_id'], 'address_book_id' => (int) $_SESSION['customer_default_address_id']]);
        // reset the session variables
        $_SESSION['customer_first_name'] = $firstname;
        $messageStack->add_session('account', SUCCESS_ACCOUNT_UPDATED, 'success');
        OSCOM::redirect('account.php', '', 'SSL');
    }
}
$Qaccount = $OSCOM_Db->prepare('select * from :table_customers where customers_id = :customers_id');
$Qaccount->bindInt(':customers_id', $_SESSION['customer_id']);
$Qaccount->execute();
$breadcrumb->add(NAVBAR_TITLE_1, OSCOM::link('account.php', '', 'SSL'));
$breadcrumb->add(NAVBAR_TITLE_2, OSCOM::link('account_edit.php', '', 'SSL'));
require 'includes/template_top.php';
?>

<div class="page-header">
  <h1><?php 
echo HEADING_TITLE;
?>
</h1>
Exemple #25
0
                    if (!in_array($class . $file_extension, $modules_installed)) {
                        $modules_installed[] = $class . $file_extension;
                    }
                    Registry::get('Db')->save('configuration', ['configuration_value' => implode(';', $modules_installed)], ['configuration_key' => $module_key]);
                    OSCOM::redirect(FILENAME_MODULES, 'set=' . $set . '&module=' . $class);
                } elseif ($action == 'remove') {
                    $module->remove();
                    $modules_installed = explode(';', constant($module_key));
                    if (in_array($class . $file_extension, $modules_installed)) {
                        unset($modules_installed[array_search($class . $file_extension, $modules_installed)]);
                    }
                    Registry::get('Db')->save('configuration', ['configuration_value' => implode(';', $modules_installed)], ['configuration_key' => $module_key]);
                    OSCOM::redirect(FILENAME_MODULES, 'set=' . $set);
                }
            }
            OSCOM::redirect(FILENAME_MODULES, 'set=' . $set . '&module=' . $class);
            break;
    }
}
require $oscTemplate->getFile('template_top.php');
$modules_installed = defined($module_key) ? explode(';', constant($module_key)) : array();
$new_modules_counter = 0;
$file_extension = substr($PHP_SELF, strrpos($PHP_SELF, '.'));
$directory_array = array();
if ($dir = @dir($module_directory)) {
    while ($file = $dir->read()) {
        if (!is_dir($module_directory . $file)) {
            if (substr($file, strrpos($file, '.')) == $file_extension) {
                if (isset($_GET['list']) && $_GET['list'] == 'new') {
                    if (!in_array($file, $modules_installed)) {
                        $directory_array[] = $file;
Exemple #26
0
            OSCOM::redirect(FILENAME_TAX_RATES);
            break;
        case 'save':
            $tax_rates_id = HTML::sanitize($_GET['tID']);
            $tax_zone_id = HTML::sanitize($_POST['tax_zone_id']);
            $tax_class_id = HTML::sanitize($_POST['tax_class_id']);
            $tax_rate = HTML::sanitize($_POST['tax_rate']);
            $tax_description = HTML::sanitize($_POST['tax_description']);
            $tax_priority = HTML::sanitize($_POST['tax_priority']);
            $OSCOM_Db->save('tax_rates', ['tax_zone_id' => (int) $tax_zone_id, 'tax_class_id' => (int) $tax_class_id, 'tax_rate' => $tax_rate, 'tax_description' => $tax_description, 'tax_priority' => (int) $tax_priority, 'last_modified' => 'now()'], ['tax_rates_id' => (int) $tax_rates_id]);
            OSCOM::redirect(FILENAME_TAX_RATES, 'page=' . $_GET['page'] . '&tID=' . $tax_rates_id);
            break;
        case 'deleteconfirm':
            $tax_rates_id = HTML::sanitize($_GET['tID']);
            $OSCOM_Db->delete('tax_rates', ['tax_rates_id' => (int) $tax_rates_id]);
            OSCOM::redirect(FILENAME_TAX_RATES, 'page=' . $_GET['page']);
            break;
    }
}
require $oscTemplate->getFile('template_top.php');
?>

    <table border="0" width="100%" cellspacing="0" cellpadding="2">
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading"><?php 
echo OSCOM::getDef('heading_title');
?>
</td>
          </tr>
                        $class = Apps::getModuleClass($code, 'Content');
                        $installed_code = $m['code'];
                    } else {
                        $installed_code = $m['group'] . '/' . $m['code'];
                    }
                    $module = new $class();
                    $module->remove();
                    $modules_installed = explode(';', MODULE_CONTENT_INSTALLED);
                    if (in_array($installed_code, $modules_installed)) {
                        unset($modules_installed[array_search($installed_code, $modules_installed)]);
                    }
                    Registry::get('Db')->save('configuration', ['configuration_value' => implode(';', $modules_installed), 'last_modified' => 'now()'], ['configuration_key' => 'MODULE_CONTENT_INSTALLED']);
                    OSCOM::redirect('modules_content.php');
                }
            }
            OSCOM::redirect('modules_content.php', 'module=' . $code);
            break;
    }
}
require $oscTemplate->getFile('template_top.php');
?>

    <table border="0" width="100%" cellspacing="0" cellpadding="2">
      <tr>
        <td width="100%"><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading"><?php 
echo OSCOM::getDef('heading_title');
?>
</td>
<?php 
Exemple #28
0
<?php

/**
 * osCommerce Online Merchant
 *
 * @copyright (c) 2016 osCommerce; https://www.oscommerce.com
 * @license MIT; https://www.oscommerce.com/license/mit.txt
 */
use OSC\OM\HTML;
use OSC\OM\OSCOM;
chdir('../../../../');
require 'includes/application_top.php';
// if the customer is not logged on, redirect them to the login page
if (!isset($_SESSION['customer_id'])) {
    $_SESSION['navigation']->set_snapshot(array('page' => 'checkout_payment.php'));
    OSCOM::redirect('login.php');
}
if (isset($_GET['payment_error']) && tep_not_null($_GET['payment_error'])) {
    $redirect_url = OSCOM::link('checkout_payment.php', 'payment_error=' . $_GET['payment_error'] . (isset($_GET['error']) && tep_not_null($_GET['error']) ? '&error=' . $_GET['error'] : ''));
} else {
    $hidden_params = '';
    if ($_SESSION['payment'] == 'sage_pay_direct') {
        $redirect_url = OSCOM::link('checkout_process.php', 'check=3D');
        $hidden_params = HTML::hiddenField('MD', $_POST['MD']) . HTML::hiddenField('PaRes', $_POST['PaRes']);
    } else {
        $redirect_url = OSCOM::link('checkout_success.php');
    }
}
$OSCOM_Language->loadDefinitions('checkout_confirmation');
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
                }
                OSCOM::redirect($PHP_SELF, tep_get_all_get_params(array('action')));
            } else {
                $_SESSION['navigation']->set_snapshot();
                OSCOM::redirect('login.php', '', 'SSL');
            }
            break;
        case 'cust_order':
            if (isset($_SESSION['customer_id']) && isset($_GET['pid'])) {
                if (tep_has_product_attributes($_GET['pid'])) {
                    OSCOM::redirect('product_info.php', 'products_id=' . $_GET['pid']);
                } else {
                    $_SESSION['cart']->add_cart($_GET['pid'], $_SESSION['cart']->get_quantity($_GET['pid']) + 1);
                }
            }
            OSCOM::redirect($goto, tep_get_all_get_params($parameters));
            break;
    }
}
// include the who's online functions
require 'includes/functions/whos_online.php';
tep_update_whos_online();
// include the password crypto functions
require 'includes/functions/password_funcs.php';
// include validation functions (right now only email address)
require 'includes/functions/validations.php';
// auto activate and expire banners
require 'includes/functions/banner.php';
tep_activate_banners();
tep_expire_banners();
// auto expire special products
Exemple #30
0
            OSCOM::redirect(FILENAME_REVIEWS, 'page=' . $_GET['page'] . '&rID=' . $_GET['rID']);
            break;
        case 'update':
            $reviews_id = HTML::sanitize($_GET['rID']);
            $reviews_rating = HTML::sanitize($_POST['reviews_rating']);
            $reviews_text = HTML::sanitize($_POST['reviews_text']);
            $reviews_status = HTML::sanitize($_POST['reviews_status']);
            $OSCOM_Db->save('reviews', ['reviews_rating' => $reviews_rating, 'reviews_status' => $reviews_status, 'last_modified' => 'now()'], ['reviews_id' => (int) $reviews_id]);
            $OSCOM_Db->save('reviews_description', ['reviews_text' => $reviews_text], ['reviews_id' => (int) $reviews_id]);
            OSCOM::redirect(FILENAME_REVIEWS, 'page=' . $_GET['page'] . '&rID=' . $reviews_id);
            break;
        case 'deleteconfirm':
            $reviews_id = HTML::sanitize($_GET['rID']);
            $OSCOM_Db->delete('reviews', ['reviews_id' => (int) $reviews_id]);
            $OSCOM_Db->delete('reviews_description', ['reviews_id' => (int) $reviews_id]);
            OSCOM::redirect(FILENAME_REVIEWS, 'page=' . $_GET['page']);
            break;
    }
}
require $oscTemplate->getFile('template_top.php');
?>

    <table border="0" width="100%" cellspacing="0" cellpadding="2">
      <tr>
        <td width="100%"><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading"><?php 
echo OSCOM::getDef('heading_title');
?>
</td>
          </tr>