function PageCompPageMainCodeWithForm() { global $oTemplConfig, $site; $aForm = array('form_attrs' => array('id' => 'post_us_form', 'action' => BX_DOL_URL_ROOT . 'contact.php', 'method' => 'post'), 'params' => array('db' => array('submit_name' => 'do_submit')), 'inputs' => array('name' => array('type' => 'text', 'name' => 'name', 'caption' => _t('_Your name'), 'required' => true, 'checker' => array('func' => 'length', 'params' => array(1, 150), 'error' => _t('_Name is required'))), 'email' => array('type' => 'text', 'name' => 'email', 'caption' => _t('_Your email'), 'required' => true, 'checker' => array('func' => 'email', 'error' => _t('_Incorrect Email'))), 'message_subject' => array('type' => 'text', 'name' => 'subject', 'caption' => _t('_message_subject'), 'required' => true, 'checker' => array('func' => 'length', 'params' => array(5, 300), 'error' => _t('_ps_ferr_incorrect_length'))), 'message_text' => array('type' => 'textarea', 'name' => 'body', 'caption' => _t('_Message text'), 'required' => true, 'checker' => array('func' => 'length', 'params' => array(10, 5000), 'error' => _t('_ps_ferr_incorrect_length'))), 'captcha' => array('type' => 'captcha', 'caption' => _t('_Enter what you see'), 'name' => 'securityImageValue', 'required' => true, 'checker' => array('func' => 'captcha', 'error' => _t('_Incorrect Captcha'))), 'submit' => array('type' => 'submit', 'name' => 'do_submit', 'value' => _t('_Submit')))); $oForm = new BxTemplFormView($aForm); $sForm = $oForm->getCode(); $oForm->initChecker(); if ($oForm->isSubmittedAndValid()) { $sSenderName = process_pass_data($_POST['name'], BX_TAGS_STRIP); $sSenderEmail = process_pass_data($_POST['email'], BX_TAGS_STRIP); $sLetterSubject = process_pass_data($_POST['subject'], BX_TAGS_STRIP); $sLetterBody = process_pass_data($_POST['body'], BX_TAGS_STRIP); $sLetterBody = $sLetterBody . "\r\n" . '============' . "\r\n" . _t('_from') . ' ' . $sSenderName . "\r\n" . 'with email ' . $sSenderEmail; if (sendMail($site['email'], $sLetterSubject, $sLetterBody)) { $sActionKey = '_ADM_PROFILE_SEND_MSG'; } else { $sActionKey = '_Email sent failed'; } $sActionText = MsgBox(_t($sActionKey)); $sForm = $sActionText . $sForm; } else { $sForm = $oForm->getCode(); } return DesignBoxContent(_t('_CONTACT_H1'), $sForm, $oTemplConfig->PageCompThird_db_num); }
function getPreValues($sKey, $aFields = array(), $iTagsFilter = BX_TAGS_NO_ACTION) { $sKeyDb = process_db_input($sKey, $iTagsFilter); $sKey = process_pass_data($sKey); $sqlFields = "*"; if (is_array($aFields) && !empty($aFields)) { foreach ($aFields as $sValue) { $sqlFields .= "`{$sValue}`, "; } $sqlFields = trim($sqlFields, ', '); } $sqlQuery = "SELECT {$sqlFields} FROM `" . BX_SYS_PRE_VALUES_TABLE . "`\n WHERE `Key` = '{$sKeyDb}'\n ORDER BY `Order` ASC"; return $GLOBALS['MySQL']->getAllWithKey($sqlQuery, 'Value'); }
/** * page code function */ function PageCompPageMainCode() { $aForm = array('form_attrs' => array('id' => 'test_email_templates', 'action' => BX_DOL_URL_ROOT . '_ml.php', 'method' => 'post'), 'params' => array('db' => array('submit_name' => 'do_submit')), 'inputs' => array('l_new' => array('type' => 'textarea', 'name' => 'l_new', 'caption' => 'New Language'), 'l_old' => array('type' => 'textarea', 'name' => 'l_old', 'caption' => 'Old Language'), 'module_lang_file' => array('type' => 'checkbox', 'name' => 'module_lang_file', 'caption' => 'Module language file', 'value' => 1, 'checked' => true), 'submit' => array('type' => 'submit', 'name' => 'do_submit', 'value' => _t('_Submit')))); $oForm = new BxTemplFormView($aForm); $oForm->initChecker(); if ($oForm->isSubmittedAndValid()) { $isModuleLangFile = $_POST['module_lang_file'] ? true : false; $aLang71 = getLangArray(process_pass_data($_POST['l_new']), $isModuleLangFile); $aLang70 = getLangArray(process_pass_data($_POST['l_old']), $isModuleLangFile); if (is_array($aLang71) && is_array($aLang70)) { $s .= prepareTextarea('Added Keys', findAddedKeys($aLang71, $aLang70)); $s .= prepareTextarea('Changed Keys', findChangedKeys($aLang71, $aLang70)); $aDeletedKeys = findDeletedKeys($aLang71, $aLang70); $s .= prepareTextarea('Deleted Keys', $aDeletedKeys); $s .= prepareTextareaWithDeltedKeys($aDeletedKeys); } else { $s = MsgBox("Invalid arrays") . $oForm->getCode(); } } else { $s = $oForm->getCode(); } return DesignBoxContent($GLOBALS['_page']['header'], $s, 11); }
function saveItem($aData) { $this->genSaveItemHeader(); $this->isHaveErrors = false; //echoDbg( $aData ); $iItemID = (int) $aData['id']; $aItem = db_assoc_arr("SELECT * FROM `sys_profile_fields` WHERE `ID` = {$iItemID}"); if (!$aItem) { $this->genSaveItemError(_t('_adm_fields_warning_field_not_found')); $this->genSaveItemFooter(); return false; } // just a flag $bHaveErrors = false; // this array will be put into db $aUpdate = array(); // check name if ($aItem['Type'] != 'system' and $aItem['Deletable']) { //we can change the name $sName = trim(strip_tags(process_pass_data($aData['Name']))); if ($sName === '') { $this->genSaveItemError(_t('_adm_fields_error_you_must_enter_name'), 'Name'); $bHaveErrors = true; } elseif ($aItem['Type'] != 'block' and !preg_match('/^[a-z][a-z0-9_]*$/i', $sName)) { $this->genSaveItemError(_t('_adm_fields_error_name_latin'), 'Name'); $bHaveErrors = true; } elseif ($GLOBALS['MySQL']->getOne("SELECT COUNT(*) FROM `sys_profile_fields` WHERE `Name`='" . $sName . "' AND `ID`<>'" . $iItemID . "'") || $sName != $aItem['Name'] && $GLOBALS['MySQL']->isFieldExists('Profiles', $sName)) { $this->genSaveItemError(_t('_adm_fields_error_name_already_exists'), 'Name'); $bHaveErrors = true; } elseif ($sName == $aItem['Name']) { // all ok. don't change } else { $aUpdate['Name'] = $sName; } //change } $sNewName = isset($aUpdate['Name']) ? $aUpdate['Name'] : $aItem['Name']; $this->fieldCaption = "_FieldCaption_{$sNewName}_{$this->areaPageName}"; // _FieldCaption_Sex_Join $this->fieldDesc = "_FieldDesc_{$sNewName}_{$this->areaPageName}"; // _FieldDesc_Sex_Join // check Caption $sCaption = trim(process_pass_data($aData['Caption'])); if ($sCaption === '') { $this->genSaveItemError(_t('_adm_fields_error_you_must_enter_caption'), 'Caption'); $bHaveErrors = true; } elseif ($this->getLangString($this->fieldCaption) == $sCaption) { // all ok dont change } else { $this->updateLangString($this->fieldCaption, $sCaption); } // check Description $sDesc = trim(process_pass_data($aData['Desc'])); if ($this->getLangString($this->fieldDesc) != $sDesc) { $this->updateLangString($this->fieldDesc, $sDesc); } // check type if ($aItem['Type'] != 'system' and $aItem['Type'] != 'block') { //we can change the type $sType = trim(strip_tags(process_pass_data($aData['Type']))); if (!isset($this->aTypes[$sType])) { $this->genSaveItemError(_t('_adm_fields_error_i_dont_know_this_type'), 'Type'); $bHaveErrors = true; } elseif ($sType == $aItem['Type']) { // all ok. don't change } else { $aUpdate['Type'] = $sType; } //change // check the additional properties if (!$bHaveErrors) { // do not continue if have errors // check selectors controls if ($sType == 'select_one') { if ($aData['Control_one'] == $aItem['Control']) { //all ok } elseif ($aData['Control_one'] == 'select' or $aData['Control_one'] == 'radio') { $aUpdate['Control'] = $aData['Control_one']; } else { $this->genSaveItemError(_t('_adm_fields_error_i_dont_know_this_control_type'), 'Control_one'); $bHaveErrors = true; } } elseif ($sType == 'select_set') { if ($aData['Control_set'] == $aItem['Control']) { //all ok } elseif ($aData['Control_set'] == 'select' or $aData['Control_set'] == 'checkbox') { $aUpdate['Control'] = $aData['Control_set']; } else { $this->genSaveItemError(_t('_adm_fields_error_i_dont_know_this_control_type'), 'Control_set'); $bHaveErrors = true; } } else { $aUpdate['Control'] = null; } //check Min $iMin = trim($aData['Min']); if ($iMin === '' || $sType == 'bool' || $sType == 'select_one' || $sType == 'select_set') { $iMin = null; } else { $iMin = (int) $iMin; if (($sType == 'area' || $sType == 'html_area') && $iMin > 65534) { $iMin = 65534; } else { if ($sType != 'area' && $sType != 'html_area' && $iMin > 254) { $iMin = 254; } else { if ($iMin < 0) { $iMin = 0; } } } } $aUpdate['Min'] = $iMin; //check Max $iMax = trim($aData['Max']); if ($iMax === '' || $sType == 'bool' || $sType == 'select_one' || $sType == 'select_set') { $iMax = null; } else { $iMax = (int) $iMax; if (($sType == 'area' || $sType == 'html_area') && $iMax > 65534) { $iMax = 65534; } else { if ($sType != 'area' && $sType != 'html_area' && $iMax > 254) { $iMax = 254; } else { if ($iMax < 0) { $iMax = 0; } } } } $aUpdate['Max'] = $iMax; // set min and max search age if ($sNewName == 'DateOfBirth') { $this->setMinMaxAge($iMin ? $iMin : 18, $iMax ? $iMax : 75); } //check Check :) if ($sType == 'select_one' or $sType == 'select_set' or $sType == 'bool') { $aUpdate['Check'] = ''; } else { $sCheck = trim(process_pass_data($aData['Check'])); if ($aItem['Check'] != $sCheck) { $aUpdate['Check'] = $sCheck; } } //Unique $aUpdate['Unique'] = (isset($aData['Unique']) and $aData['Unique'] == 'yes' and ($sType == 'text' or $sType == 'area' or $sType == 'html_area' or $sType == 'num')) ? 1 : 0; //Mandatory $aUpdate['Mandatory'] = (isset($aData['Mandatory']) and $aData['Mandatory'] == 'yes') ? 1 : 0; //check Values if ($sType == 'select_one' or $sType == 'select_set') { $sValues = trim(strip_tags(process_pass_data($aData['Values']))); $sValues = str_replace("\r", "\n", $sValues); // for mac $sValues = str_replace("\n\n", "\n", $sValues); // for win // for *nix ;) if ($sValues === '') { $this->genSaveItemError(_t('_adm_fields_error_you_must_enter_values'), 'Values'); $bHaveErrors = true; } elseif ($sValues != $aItem['Values']) { if (substr($sValues, 0, 2) == $this->sLinkPref and !$this->checkValuesLink(substr($sValues, 2))) { $this->genSaveItemError(_t('_adm_fields_error_you_entered_incorrect_link'), 'Values'); $bHaveErrors = true; } else { $aUpdate['Values'] = $sValues; } } // get LKey $sUseLKey = trim(process_pass_data($aData['UseLKey'])); if (!$sUseLKey) { $sUseLKey = 'LKey'; } $aUpdate['UseLKey'] = $sUseLKey; if (substr($sValues, 0, 2) != $this->sLinkPref) { // if not a link //Add Lang key for each value: _FieldValues_Example $aValues2LF = explode("\n", $sValues); foreach ($aValues2LF as $sValues2LF) { $sLFKey = '_FieldValues_' . $sValues2LF; $sLFValue = $sValues2LF; //print "{$sLFKey}<br />"; if ($this->getLangString($sLFKey) != $sLFValue) { $this->updateLangString($sLFKey, $sLFValue); } } } } elseif ($aItem['Values'] != '') { $aUpdate['Values'] = ''; } if (!$bHaveErrors) { //Default switch ($sType) { case 'text': $aUpdate['Default'] = trim(process_pass_data($aData['Default'])); break; case 'pass': case 'area': case 'html_area': case 'select_set': $aUpdate['Default'] = ''; break; case 'num': $aUpdate['Default'] = (int) $aData['Default']; break; case 'bool': $aUpdate['Default'] = (int) (bool) $aData['Default']; break; case 'range': if (trim($aData['Default']) == '') { $aUpdate['Default'] = ''; } else { list($sFirst, $sSecond) = explode('-', trim($aData['Default'], 2)); $sFirst = (int) trim($sFirst); $sSecond = (int) trim($sSecond); $aUpdate['Default'] = "{$sFirst}-{$sSecond}"; } break; case 'date': if ($aData['Default'] === '') { $aUpdate['Default'] = ''; } else { $aUpdate['Default'] = date('Y-m-d', strtotime(trim(process_pass_data($aData['Default'])))); } break; case 'select_one': $sDefault = trim(process_pass_data($aData['Default'])); if ($sDefault === '') { $aUpdate['Default'] = ''; } else { if ($this->checkSelectDefault($sValues, $sDefault)) { $aUpdate['Default'] = $sDefault; } else { $this->genSaveItemError(_t('_adm_fields_error_you_entered_incorrect_value'), 'Default'); $bHaveErrors = true; } } break; } //matching. not implemented yet } } } if ($aItem['Type'] == 'block' and $this->iAreaID == 1) { //Join //get JoinPage $iJoinPage = (int) $aData['JoinPage']; if ($aItem['JoinPage'] != $iJoinPage) { $aUpdate['JoinPage'] = $iJoinPage; } } //system fields properties if ($aItem['Name'] == 'Keyword') { if (is_array($aData['KeywordFields'])) { $sKeywordFields = implode("\n", $aData['KeywordFields']); if (process_pass_data($sKeywordFields) != $aItem['Extra']) { $aUpdate['Extra'] = $sKeywordFields; } } } if ($aItem['Name'] == 'Couple') { if (is_array($aData['CoupleFields'])) { $sKeywordFields = implode("\n", $aData['CoupleFields']); if (process_pass_data($sKeywordFields) != $aItem['Extra']) { $aUpdate['Extra'] = $sKeywordFields; } } } // update error messages foreach (array('Mandatory', 'Min', 'Max', 'Unique', 'Check') as $sErrName) { $sErrMsg = trim(process_pass_data($aData[$sErrName . '_msg'])); if (empty($sErrMsg)) { continue; } $sErrKey = "_FieldError_{$sNewName}_{$sErrName}"; $this->updateLangString($sErrKey, $sErrMsg); } // add matching if (isset($aData['MatchField']) and (int) $aData['MatchField'] != $aItem['MatchField']) { $aUpdate['MatchField'] = (int) $aData['MatchField']; } if (isset($aData['MatchPercent']) and (int) $aData['MatchPercent'] != $aItem['MatchPercent']) { $aUpdate['MatchPercent'] = (int) $aData['MatchPercent']; } if (!empty($aUpdate) and !$bHaveErrors) { $this->doUpdateItem($aItem, $aUpdate); if (isset($aUpdate['Name'])) { $this->genSaveItemFormUpdate('updateItem', $iItemID, $aUpdate['Name']); } if ($aItem['Type'] == 'block' and $aUpdate['Name']) { $sQuery = "\n UPDATE `sys_page_compose` SET\n `Caption` = '_FieldCaption_" . addslashes($sNewName) . "_View'\n WHERE\n `Func` = 'PFBlock' AND\n `Content` = '{$iItemID}'\n "; db_res($sQuery); } } if (!$bHaveErrors) { $this->genSaveItemFormClose(); } $this->genSaveItemFooter(); }
function getBlockCode_Search() { global $logged; $aProfile = $logged['member'] ? getProfileInfo((int) $_COOKIE['memberID']) : array(); // default params for search form $sCountry = ''; $mixedCountry = bx_get('Country'); if ($mixedCountry && is_array($mixedCountry)) { $sCountry = process_pass_data($mixedCountry[0], 1); } elseif ($mixedCountry && is_string($mixedCountry)) { $sCountry = process_pass_data($mixedCountry, 1); } $sSex = ''; $mixedSex = bx_get('Sex'); if ($mixedSex && is_array($mixedSex)) { $sSex = array(); foreach ($mixedSex as $v) { $sSex[] = process_pass_data($v, 1); } } elseif ($mixedSex && is_string($mixedSex)) { $sSex = process_pass_data($mixedSex, 1); } $aDefaultParams = array('LookingFor' => bx_get('LookingFor') ? process_pass_data(bx_get('LookingFor'), 1) : ($aProfile['Sex'] ? $aProfile['Sex'] : 'male'), 'Sex' => $sSex ? $sSex : ($aProfile['LookingFor'] ? $aProfile['LookingFor'] : 'female'), 'Country' => $sCountry ? $sCountry : ($aProfile['Country'] ? $aProfile['Country'] : getParam('default_country')), 'DateOfBirth' => bx_get('DateOfBirth') ? process_pass_data(bx_get('DateOfBirth'), 1) : getParam('search_start_age') . '-' . getParam('search_end_age'), 'Tags' => bx_get('Tags') ? process_pass_data(bx_get('Tags'), 1) : '', 'online_only' => bx_get('online_only') ? process_pass_data(bx_get('online_only'), 1) : '', 'photos_only' => bx_get('photos_only') ? process_pass_data(bx_get('photos_only'), 1) : ''); bx_import('BxDolProfileFields'); $oPF = new BxDolProfileFields(9); $a = array('default_params' => $aDefaultParams, 'form_attrs' => array('action' => $this->oConfig->getBaseUri()), 'inputs' => array(array('type' => 'hidden', 'name' => 'r', 'value' => $this->oMain->_aModule['uri']))); $aVars = array('content' => $oPF->getFormCode($a)); return $this->oTemplate->parseHtmlByName('search_form_wrapper', $aVars); }
function PreviewMessage() { $oEmailTemplate = new BxDolEmailTemplates(); $aMessage = $oEmailTemplate->parseTemplate('t_AdminEmail', array('MessageText' => process_pass_data($_POST['body']))); return DesignBoxContent(_t('_Preview'), $aMessage['body'], 11); }
} if (!file_exists($checkout_filename)) { $status_text = 'Checkout file not found'; } else { require_once $checkout_filename; $validate_res = moduleValidateConfiguration($status_text); if ($validate_res) { $status_text = 'Configuration is valid'; } } } } elseif ($_REQUEST['action'] == 'save_settings') { $res_setparam1 = setParam('currency_code', $_POST['currency_code']); $res_setparam3 = setParam('enable_recurring', $_POST['enable_recurring']); if ($res_setparam1 && $res_setparam3) { $currency_code = process_pass_data($_POST['currency_code']); $enable_recurring = $_POST['enable_recurring'] == 'on'; $settings_status_text = 'Settings successfully saved'; } else { $settings_status_text = 'Failed to save settings'; } } TopCodeAdmin(); ContentBlockHead("Common settings"); if (strlen($settings_status_text)) { echo "\r\n<center>\r\n\t<div class=\"err\">{$settings_status_text}</div>\r\n</center>"; } ?> <center> <form id="settingsForm" action="<?php
function collectRequestString($aGetParams, $sKeyPref = '', $sKeyPostf = '') { if (!is_array($aGetParams)) { return ''; } $sRet = ''; foreach ($aGetParams as $sKey => $sValue) { if ($sValue === '') { continue; } if (!is_array($sValue)) { $sRet .= '&' . urlencode($sKeyPref . $sKey . $sKeyPostf) . '=' . urlencode(process_pass_data($sValue)); } else { $sRet .= $this->collectRequestString($sValue, "{$sKeyPref}{$sKey}{$sKeyPostf}[", "]"); //recursive call } } return $sRet; }
/** * Cange story */ function MemberEditStory() { global $max_l; global $max_h; global $member; global $ADMIN; $story_id = (int) $_POST['edit_id']; $story_text = strlen($_POST['text']) > $max_l ? "LEFT ( '" . addslashes(clear_xss(process_pass_data($_POST['text']))) . "', {$max_l} )" : "'" . addslashes(clear_xss(process_pass_data($_POST['text']))) . "'"; $story_header = strlen($_POST['header']) > $max_h ? "LEFT ( '" . process_db_input($_POST['header']) . "', {$max_h} )" : "'" . process_db_input($_POST['header']) . "'"; $story_sender = $ADMIN ? (int) $_POST['sender'] : $member['ID']; $story_active_add = $ADMIN ? '' : ", `active`=''"; //if admin logged, don't update status. if member - set inactive $sQuery = "UPDATE `Stories` SET `Date` = NOW(), `Header` = {$story_header}, `Text` = {$story_text} {$story_active_add} WHERE `ID` = {$story_id} AND `Sender` = {$story_sender}"; $res = db_res($sQuery); return $res; }
function getBlockCode_Results($iBlockID) { //collect inputs $aRequestParams = $this->oPF->collectSearchRequestParams(); if (isset($_REQUEST['Tags']) and trim($_REQUEST['Tags'])) { $aRequestParams['Tags'] = trim(process_pass_data($_REQUEST['Tags'])); } if (isset($_REQUEST['distance']) and (int) $_REQUEST['distance']) { $aRequestParams['distance'] = (int) $_REQUEST['distance']; } // start page generation $oProfile = new BxBaseProfileGenerator(getLoggedId()); switch ($_REQUEST['show']) { case 'match': list($aDBTopMenu, $sResults) = $this->showMatchProfiles($iBlockID); break; case 'calendar': list($sResults, $aDBTopMenu, $sPagination, $sTopFilter) = $oProfile->GenProfilesCalendarBlock(); break; default: $this->collectFilteredSettings(); list($sResults, $aDBTopMenu, $sPagination, $sTopFilter) = $oProfile->GenSearchResultBlock($this->oPF->aBlocks, $aRequestParams, $this->aFilterSortSettings, 'search.php'); break; } return array($sTopFilter . $sResults . $sPagination, $aDBTopMenu, array(), $this->getTitle()); }
/** * collect data from source */ function CollectCheckoutInfo($source) { global $collectDataArr; global $collectDataInputs; if (!isset($source['checkout_action']) || strlen($source['data']) == 0) { return false; } $collectDataArr['checkout_action'] = process_pass_data($source['checkout_action']); $collectDataArr['amount'] = process_pass_data($source['amount']); $collectDataArr['data'] = process_pass_data($source['data']); if (isset($source['allow_subscribe'])) { $collectDataArr['allow_subscribe'] = process_pass_data($source['allow_subscribe']); } if (isset($source['subscribe_days'])) { $collectDataArr['subscribe_days'] = process_pass_data($source['subscribe_days']); } $collectDataArr['description'] = returnDescByAction($collectDataArr['checkout_action'], $collectDataArr['data'], true); if (strlen($collectDataArr['description']) == 0) { return false; } $collectDataInputs = ''; $collectDataInputs .= "<input type=\"hidden\" name=\"checkout_action\" value=\"{$collectDataArr['checkout_action']}\" />\n"; $collectDataInputs .= "<input type=\"hidden\" name=\"amount\" value=\"{$collectDataArr['amount']}\" />\n"; $collectDataInputs .= "<input type=\"hidden\" name=\"data\" value=\"{$collectDataArr['data']}\" />\n"; if (isset($source['allow_subscribe'])) { $collectDataInputs .= "<input type=\"hidden\" name=\"allow_subscribe\" value=\"{$collectDataArr['allow_subscribe']}\" />\n"; } if (isset($source['subscribe_days'])) { $collectDataInputs .= "<input type=\"hidden\" name=\"subscribe_days\" value=\"{$collectDataArr['subscribe_days']}\" />\n"; } return true; }
{ bx_import('BxTemplMenuQlinks2'); $oMenu = new BxTemplMenuQlinks2(); $sCodeBlock = $oMenu->getCode(); return $sCodeBlock; } } //-------------------------------------------------------------------------------------------------------// // --------------- page variables and login $_page['name_index'] = 81; $_page['css_name'] = array('member_panel.css', 'categories.css', 'alert.css'); $_page['extra_js'] = "<script type=\"text/javascript\">urlIconLoading = \"" . getTemplateIcon('loading.gif') . "\";\n\t\$(document).ready( function() {\n\t\t\n\t\tvar sSendUrl = '" . $site['url'] . "alerts.php';\n\t\t\n\t\t\$('input', '#alertsMenu').click(function(){\n\t\t\tvar sQuery = \$('input', '#alertsMenu').serialize();\n\t\t\t\$.post(sSendUrl, sQuery, function(data) {\n\t\t\t\t\$('#alertsView').html(data);\n\t\t\t}\n\t\t);\n\t\t\n\t} );})\n\t</script>"; $_page['header'] = _t("_My Account"); // --------------- GET/POST actions $member['ID'] = process_pass_data(empty($_POST['ID']) ? '' : $_POST['ID']); $member['Password'] = process_pass_data(empty($_POST['Password']) ? '' : $_POST['Password']); $bAjxMode = (isset($_SERVER['HTTP_X_REQUESTED_WITH']) and $_SERVER['HTTP_X_REQUESTED_WITH'] == 'XMLHttpRequest') ? true : false; if (!(isset($_POST['ID']) && $_POST['ID'] && isset($_POST['Password']) && $_POST['Password']) && (!empty($_COOKIE['memberID']) && $_COOKIE['memberID'] && $_COOKIE['memberPassword'])) { if (!($logged['member'] = member_auth(0, false))) { login_form(_t("_LOGIN_OBSOLETE"), 0, $bAjxMode); } } else { if (!isset($_POST['ID']) && !isset($_POST['Password'])) { // this is dynamic page - send headers to not cache this page send_headers_page_changed(); login_form('', 0, $bAjxMode); } else { require_once BX_DIRECTORY_PATH_CLASSES . 'BxDolAlerts.php'; $oZ = new BxDolAlerts('profile', 'before_login', 0, 0, array('login' => $member['ID'], 'password' => $member['Password'], 'ip' => getVisitorIP())); $oZ->alert(); $member['ID'] = getID($member['ID']);
function actionBrowse($sParamName = '', $sParamValue = '', $sParamValue1 = '', $sParamValue2 = '', $sParamValue3 = '') { $bAlbumView = false; if ($sParamName == 'album' && $sParamValue1 == 'owner') { $bAlbumView = true; $aAlbumInfo = $this->oAlbums->getAlbumInfo(array('fileUri' => $sParamValue, 'owner' => getID($sParamValue2)), array('ID', 'Caption', 'Owner', 'AllowAlbumView', 'Description')); if (empty($aAlbumInfo)) { $this->_oTemplate->displayPageNotFound(); exit; } else { if ($aAlbumInfo['Owner'] == $this->_iProfileId && $sParamValue2 === getUsername($this->_iProfileId)) { $this->actionAlbumsViewMy('main_objects', $sParamValue, $sParamValue1, $sParamValue2, $sParamValue3); return; } elseif (!empty($aAlbumInfo['AllowAlbumView']) && !$this->oAlbumPrivacy->check('album_view', $aAlbumInfo['ID'], $this->_iProfileId)) { $sKey = _t('_' . $this->_oConfig->getMainPrefix() . '_access_denied'); $sCode = DesignBoxContent($sKey, MsgBox($sKey), 1); $this->aPageTmpl['header'] = $sKey; $this->_oTemplate->pageCode($this->aPageTmpl, array('page_main_code' => $sCode)); return; } else { $GLOBALS['oTopMenu']->setCustomSubHeader($aAlbumInfo['Caption']); } } } if ('calendar' == $sParamName) { $sParamValue = (int) $sParamValue; $sParamValue1 = (int) $sParamValue1; $sParamValue2 = (int) $sParamValue2; } $sClassName = $this->_oConfig->getClassPrefix() . 'Search'; bx_import('Search', $this->_aModule); $oSearch = new $sClassName($sParamName, $sParamValue, $sParamValue1, $sParamValue2); $sRss = bx_get('rss'); if ($sRss !== false && $sRss) { $oSearch->aCurrent['paginate']['perPage'] = 10; header('Content-Type: text/xml; charset=UTF-8'); echo $oSearch->rss(); exit; } $sTopPostfix = isset($oSearch->aCurrent['restriction'][$sParamName]) || $oSearch->aCurrent['sorting'] == $sParamName ? $sParamName : 'all'; $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_top_menu_' . $sTopPostfix); if (!empty($sParamValue) && isset($oSearch->aCurrent['restriction'][$sParamName])) { $sParamValue = $this->getBrowseParam($sParamName, $sParamValue); $oSearch->aCurrent['restriction'][$sParamName]['value'] = $sParamValue; $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_browse_by_' . $sParamName, htmlspecialchars_adv(process_pass_data($sParamValue))); } if ($bAlbumView) { $oSearch->aCurrent['restriction']['allow_view']['value'] = array($aAlbumInfo['AllowAlbumView']); $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_browse_by_' . $sParamName, $aAlbumInfo['Caption']); $this->_oTemplate->setPageDescription(substr(strip_tags($aAlbumInfo['Description']), 0, 255)); } else { $oSearch->aCurrent['restriction']['not_allow_view']['value'] = array(BX_DOL_PG_HIDDEN); } if ($sParamName == 'calendar') { $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_caption_browse_by_day') . ': ' . getLocaleDate(strtotime("{$sParamValue}-{$sParamValue1}-{$sParamValue2}"), BX_DOL_LOCALE_DATE_SHORT); } $oSearch->aCurrent['paginate']['perPage'] = (int) $this->_oConfig->getGlParam('number_all'); $sCode = $oSearch->displayResultBlock(); $sPaginate = ''; if ($oSearch->aCurrent['paginate']['totalNum'] > 0) { $aAdd = array($sParamName, $sParamValue, $sParamValue1, $sParamValue2, $sParamValue3); foreach ($aAdd as $sValue) { if (strlen($sValue) > 0) { $sArg .= '/' . $sValue; } else { break; } } $sLink = $this->_oConfig->getBaseUri() . 'browse' . $sArg; $oPaginate = new BxDolPaginate(array('page_url' => $sLink . '&page={page}&per_page={per_page}', 'count' => $oSearch->aCurrent['paginate']['totalNum'], 'per_page' => $oSearch->aCurrent['paginate']['perPage'], 'page' => $oSearch->aCurrent['paginate']['page'], 'on_change_per_page' => 'return !loadDynamicBlock(1, \'' . $sLink . '&page=1&per_page=\' + this.value);')); $sPaginate = $oPaginate->getPaginate(); } else { $sCode = MsgBox(_t('_Empty')); } $aMenu = array(); $sCode = DesignBoxContent($sCaption, $sCode . $sPaginate, 1); if ($bAlbumView) { $sCode = $this->getAlbumPageView($aAlbumInfo, $sCode); } $this->aPageTmpl['css_name'] = array('browse.css'); $this->aPageTmpl['header'] = $sCaption; $this->_oTemplate->pageCode($this->aPageTmpl, array('page_main_code' => $sCode)); }
function actionBrowse($sParamName = '', $sParamValue = '', $sParamValue1 = '', $sParamValue2 = '', $sParamValue3 = '') { $bAlbumView = false; if ($sParamName == 'album' && $sParamValue1 == 'owner') { $bAlbumView = true; $aAlbumInfo = $this->oAlbums->getAlbumInfo(array('fileUri' => $sParamValue, 'owner' => getID($sParamValue2)), array('ID', 'Caption', 'Owner', 'AllowAlbumView')); $GLOBALS['oTopMenu']->setCustomSubHeader($aAlbumInfo['Caption']); $GLOBALS['oTopMenu']->setCustomBreadcrumbs(array(_t('_' . $this->_oConfig->getMainPrefix()) => BX_DOL_URL_ROOT . $this->_oConfig->getBaseUri() . 'home/', $aAlbumInfo['Caption'] => '')); $sAlbumPreview = ''; if ($this->_oConfig->getGlParam('album_slideshow_on') == 'on') { $sAlbumPreview = $this->_oTemplate->getAlbumPreview('rss/album/' . $sParamValue . '/owner/' . $sParamValue2); if (strlen($sAlbumPreview) > 0) { $sAlbumPreview = DesignBoxContent($aAlbumInfo['Caption'], $sAlbumPreview, 1); } } } if (!empty($aAlbumInfo) && $aAlbumInfo['Owner'] == $this->_iProfileId && $sParamValue2 === getNickName($this->_iProfileId)) { $this->actionAlbumsViewMy('main_objects', $sParamValue, $sParamValue1, $sParamValue2, $sParamValue3); return; } if ($bAlbumView && !empty($aAlbumInfo['AllowAlbumView']) && !$this->oAlbumPrivacy->check('album_view', $aAlbumInfo['ID'], $this->_iProfileId)) { $sKey = _t('_' . $this->_oConfig->getMainPrefix() . '_access_denied'); $sCode = DesignBoxContent($sKey, MsgBox($sKey), 1); $this->aPageTmpl['header'] = $sKey; $this->_oTemplate->pageCode($this->aPageTmpl, array('page_main_code' => $sCode)); return; } $sClassName = $this->_oConfig->getClassPrefix() . 'Search'; bx_import('Search', $this->_aModule); $oSearch = new $sClassName($sParamName, $sParamValue, $sParamValue1, $sParamValue2); $sRss = bx_get('rss'); if ($sRss !== false && $sRss) { $oSearch->aCurrent['paginate']['perPage'] = 10; echo $oSearch->rss(); exit; } $sTopPostfix = isset($oSearch->aCurrent['restriction'][$sParamName]) || $oSearch->aCurrent['sorting'] == $sParamName ? $sParamName : 'all'; $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_top_menu_' . $sTopPostfix); if (mb_strlen($sParamValue) > 0 && isset($oSearch->aCurrent['restriction'][$sParamName])) { $sParamValue = $this->getBrowseParam($sParamName, $sParamValue); $oSearch->aCurrent['restriction'][$sParamName]['value'] = $sParamValue; $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_browse_by_' . $sParamName, process_pass_data($sParamValue)); } if ($bAlbumView) { $oSearch->aCurrent['restriction']['allow_view']['value'] = array($aAlbumInfo['AllowAlbumView']); $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_browse_by_' . $sParamName, $aAlbumInfo['Caption']); } if ($sParamName == 'calendar') { $sCaption = _t('_' . $this->_oConfig->getMainPrefix() . '_caption_browse_by_day') . ': ' . getLocaleDate(strtotime("{$sParamValue}-{$sParamValue1}-{$sParamValue2}"), BX_DOL_LOCALE_DATE_SHORT); } $oSearch->aCurrent['paginate']['perPage'] = (int) $this->_oConfig->getGlParam('number_all'); $sCode = $oSearch->displayResultBlock(); if ($oSearch->aCurrent['paginate']['totalNum'] > 0) { $sCode = $GLOBALS['oFunctions']->centerContent($sCode, '.sys_file_search_unit'); $aAdd = array($sParamName, $sParamValue, $sParamValue1, $sParamValue2, $sParamValue3); foreach ($aAdd as $sValue) { if (strlen($sValue) > 0) { $sArg .= '/' . rawurlencode($sValue); } else { break; } } $sLink = $this->_oConfig->getBaseUri() . 'browse' . $sArg; $oPaginate = new BxDolPaginate(array('page_url' => $sLink . '&page={page}&per_page={per_page}', 'count' => $oSearch->aCurrent['paginate']['totalNum'], 'per_page' => $oSearch->aCurrent['paginate']['perPage'], 'page' => $oSearch->aCurrent['paginate']['page'], 'per_page_changer' => true, 'page_reloader' => true, 'on_change_per_page' => 'document.location=\'' . BX_DOL_URL_ROOT . $sLink . '&page=1&per_page=\' + this.value;')); $sPaginate = $oPaginate->getPaginate(); } else { $sCode = MsgBox(_t('_Empty')); } $aMenu = array(); $sCode = DesignBoxContent($sCaption, $sCode . $sPaginate, 1, $this->_oTemplate->getExtraTopMenu($aMenu, BX_DOL_URL_ROOT . $this->_oConfig->getBaseUri())); $this->aPageTmpl['css_name'] = array('browse.css'); $this->aPageTmpl['header'] = $sCaption; $this->_oTemplate->pageCode($this->aPageTmpl, array('page_main_code' => $sCode . $sAlbumPreview)); }
/** * Validate if transaction real and successful * * @param array $dataArr - array with data to validate * @param string &$errorMessage - error message when return result is not 1 * * @return int - validation result * possible variants: * -1 - fraud attempt * 0 - transaction was declined * 1 - transaction was approved * 2 - inner error * * */ function moduleValidateTransaction(&$dataArr, &$errorMessage) { global $providerConf; $maxReadSize = 8192; if ($providerConf['Param_process_type'] == 'Direct' || $providerConf['Param_process_type'] == 'IPN') { if ($dataArr['payment_status'] != 'Completed') { $errorMessage = 'Payment is not completed'; return 0; } if ($providerConf['Mode'] != 'live') { $businessValue = $providerConf['Param_test_business']; } else { $businessValue = $providerConf['Param_business']; } if ($dataArr['business'] != $businessValue) { $errorMessage = 'Wrong receiver email'; return -1; } if ($providerConf['Debug']) { writeDebugLog('Direct/IPN validation for transaction', $dataArr, false); } $req = 'cmd=_notify-validate'; foreach ($dataArr as $key => $value) { $req .= '&' . urlencode($key) . '=' . urlencode(process_pass_data($value)); } // post back to PayPal system to validate $header = "POST /cgi-bin/webscr HTTP/1.0\r\n"; $header .= "Host: www.paypal.com\r\n"; $header .= "Content-Type: application/x-www-form-urlencoded\r\n"; $header .= "Content-Length: " . strlen($req) . "\r\n"; $header .= "Connection: close\r\n\r\n"; // open socket if ($providerConf['Mode'] != 'live') { $connectURL = 'www.sandbox.paypal.com'; } else { $connectURL = 'www.paypal.com'; } if ($providerConf['Param_connection_type'] == 'SSL') { $fp = fsockopen("ssl://{$connectURL}", 443, $errno, $errstr, 60); } else { $fp = fsockopen("tcp://{$connectURL}", 80, $errno, $errstr, 60); } if (!$fp) { $errorMessage = "Can't connect to remote host for validation ({$errstr})"; return 2; } // send data fputs($fp, $header . $req); // read the body data $response = fread($fp, $maxReadSize); $responseArr = explode("\r\n\r\n", $response); $responseHeader = $responseArr[0]; $res = $responseArr[1]; // parse the data $lines = explode("\n", $res); array_walk($lines, create_function('&$arg', "\$arg = trim(\$arg);")); if ($providerConf['Debug']) { writeDebugLog('Direct/IPN reply lines', $lines, false); } if (strcmp($lines[0], "INVALID") == 0) { $errorMessage = 'Transaction verification failed'; fclose($fp); return -1; } elseif (strcmp($lines[0], "VERIFIED") != 0) { $errorMessage = 'No verification status received'; fclose($fp); return 2; } $paymentAmount = getPaymentAmount($dataArr); if (!commonValidateTransaction($dataArr['item_number'], $paymentAmount, $errorMessage)) { return -1; } if (!customCheck($dataArr, $errorMessage)) { return -1; } fclose($fp); return 1; } elseif ($providerConf['Param_process_type'] == 'PDT') { if ($providerConf['Debug']) { writeDebugLog('PDT validation for transaction', $dataArr, false); } $req = 'cmd=_notify-synch'; $req .= "&tx={$dataArr['tx']}&at={$providerConf['Param_auth_token']}"; // post back to PayPal system to validate $header = "POST /cgi-bin/webscr HTTP/1.0\r\n"; $header .= "Host: www.paypal.com\r\n"; $header .= "Content-Type: application/x-www-form-urlencoded\r\n"; $header .= "Content-Length: " . strlen($req) . "\r\n"; $header .= "Connection: close\r\n\r\n"; // open socket if ($providerConf['Mode'] != 'live') { $connectURL = 'www.sandbox.paypal.com'; } else { $connectURL = 'www.paypal.com'; } if ($providerConf['Param_connection_type'] == 'SSL') { $fp = fsockopen("ssl://{$connectURL}", 443, $errno, $errstr, 60); } else { $fp = fsockopen("tcp://{$connectURL}", 80, $errno, $errstr, 60); } if (!$fp) { $errorMessage = "Can't connect to remote host for validation ({$errstr})"; return 2; } // send data fputs($fp, $header . $req); // read the body data $res = ''; $headerdone = false; while (!feof($fp)) { $line = fgets($fp, 1024); if (strcmp($line, "\r\n") == 0) { // read the header $headerdone = true; } elseif ($headerdone) { // header has been read. now read the contents $res .= $line; } } // parse the data $lines = explode("\n", $res); if ($providerConf['Debug']) { writeDebugLog('PDT reply lines', $lines, false); } if (strcmp($lines[0], "FAIL") == 0) { $errorMessage = 'Transaction verification failed'; fclose($fp); return -1; } elseif (strcmp($lines[0], "SUCCESS") != 0) { $errorMessage = 'No verification status received'; fclose($fp); return 2; } fclose($fp); for ($i = 1; $i < count($lines); $i++) { list($key, $val) = explode("=", $lines[$i]); $keyarray[urldecode($key)] = urldecode($val); } $dataArr['item_name'] = $keyarray['item_name']; $dataArr['item_number'] = $keyarray['item_number']; $dataArr['payment_status'] = $keyarray['payment_status']; $dataArr['custom'] = $keyarray['custom']; $dataArr['memo'] = $keyarray['memo']; $dataArr['business'] = $keyarray['business']; $dataArr['payment_gross'] = $keyarray['payment_gross']; $dataArr['mc_gross'] = $keyarray['mc_gross']; $dataArr['mc_currency'] = $keyarray['mc_currency']; $dataArr['settle_amount'] = $keyarray['settle_amount']; $dataArr['settle_currency'] = $keyarray['settle_currency']; $dataArr['exchange_rate'] = $keyarray['exchange_rate']; $dataArr['payer_email'] = $keyarray['payer_email']; $dataArr['txn_id'] = $keyarray['txn_id']; if ($dataArr['payment_status'] != 'Completed') { $errorMessage = 'Payment is not completed'; return 0; } if ($providerConf['Mode'] != 'live') { $businessValue = $providerConf['Param_test_business']; } else { $businessValue = $providerConf['Param_business']; } if ($dataArr['business'] != $businessValue) { $errorMessage = 'Wrong receiver email'; return -1; } $paymentAmount = getPaymentAmount($dataArr); if (!commonValidateTransaction($dataArr['item_number'], $paymentAmount, $errorMessage)) { return -1; } if (!customCheck($dataArr, $errorMessage)) { return -1; } return 1; } return 2; }
function member_auth($member = 0, $error_handle = true, $bAjx = false) { global $site; switch ($member) { case 0: $mem = 'member'; $login_page = BX_DOL_URL_ROOT . "member.php"; $iRole = BX_DOL_ROLE_MEMBER; break; case 1: $mem = 'admin'; $login_page = BX_DOL_URL_ADMIN . "index.php"; $iRole = BX_DOL_ROLE_ADMIN; break; } if (empty($_COOKIE['memberID']) || !isset($_COOKIE['memberPassword'])) { if ($error_handle) { $text = _t("_LOGIN_REQUIRED_AE1"); if ($member == 0) { $text .= "<br />" . _t("_LOGIN_REQUIRED_AE2", $site['images'], BX_DOL_URL_ROOT, $site['title']); } $bAjxMode = (isset($_SERVER['HTTP_X_REQUESTED_WITH']) and $_SERVER['HTTP_X_REQUESTED_WITH'] == 'XMLHttpRequest') ? true : false; if ($member = 1 && $bAjx == true) { $bAjxMode = true; } login_form($text, $member, $bAjxMode); } return false; } return check_login(process_pass_data($_COOKIE['memberID']), process_pass_data($_COOKIE['memberPassword']), $iRole, $error_handle); }
<?php /** * Copyright (c) BoonEx Pty Limited - http://www.boonex.com/ * CC-BY License - http://creativecommons.org/licenses/by/3.0/ */ require_once './inc/header.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'design.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'admin.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'db.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'utils.inc.php'; require_once BX_DIRECTORY_PATH_CLASSES . 'BxDolPageView.php'; check_logged(); $_page['name_index'] = 81; $sPageName = process_pass_data($_GET['ID']); $oIPV = new BxDolPageView($sPageName); if ($oIPV->isLoaded()) { $sPageTitle = htmlspecialchars($oIPV->getPageTitle()); $_page['header'] = $sPageTitle; $_page['header_text'] = $sPageTitle; $_ni = $_page['name_index']; $_page_cont[$_ni]['page_main_code'] = $oIPV->getCode(); PageCode(); } else { $oSysTemplate->displayPageNotFound(); }
function saveItem($aData) { $iID = (int) $aData['id']; $sQuery = "SELECT `Func` FROM `{$this->sDBTable}` WHERE `ID` = {$iID}"; $sFunc = db_value($sQuery); if (!$sFunc) { return; } $sCaption = process_db_input($aData['Caption']); $sVisible = implode(',', $aData['Visible']); if ($sFunc == 'RSS') { $sContentUpd = "`Content` = '" . process_db_input($aData['Url']) . '#' . (int) $aData['Num'] . "',"; } elseif ($sFunc == 'Echo') { $sContentUpd = "`Content` = '" . process_db_input($aData['Content']) . "',"; } else { $sContentUpd = ''; } $sQuery = "\r\n\t\t\tUPDATE `{$this->sDBTable}` SET\r\n\t\t\t\t`Caption` = '{$sCaption}',\r\n\t\t\t\t{$sContentUpd}\r\n\t\t\t\t`Visible` = '{$sVisible}'\r\n\t\t\tWHERE `ID` = {$iID}\r\n\t\t"; db_res($sQuery); echo _t(process_pass_data($aData['Caption'])); }
function _addThumbToForm($sThumbHTML, &$aParam) { $aParam['thumbnail'] = process_pass_data($sThumbHTML); $aParam['thumbnail_html'] = process_pass_data($sThumbHTML); }
function PageCompPageMainCode() { global $iAmInPopup; global $aFields; $sPopupAdd = $iAmInPopup ? '&popup=1' : ''; $sResultMsg = ''; if (isset($_POST['action']) and $_POST['action'] == 'Save' and isset($_POST['PreList']) and is_array($_POST['PreList'])) { if (true === saveList($_POST['list'], $_POST['PreList'])) { $sResultMsg = _t('_Success'); } else { $sResultMsg = _t('_Failed to apply changes'); } } //get lists $aLists = array(); $aKeys = getPreKeys(); foreach ($aKeys as $aList) { $aLists[$aList['Key']] = $aList['Key']; } $sListIn = bx_get('list'); if ($sListIn !== false) { $sList_db = process_db_input($sListIn); $sList = process_pass_data($sListIn); $iCount = getPreValuesCount($sListIn); if (!$iCount) { //if no rows returned... $aLists[$sList] = $sList; } //create new list } else { $sList = ''; } ob_start(); if ($sResultMsg) { echo MsgBox($sResultMsg); } ?> <script type="text/javascript"> function createNewList() { var sNewList = prompt( '<?php echo bx_js_string(_t('_adm_pvalues_msg_enter_list_name')); ?> ' ); if( sNewList == null ) return false; sNewList = $.trim( sNewList ); if( !sNewList.length ) { alert( '<?php echo bx_js_string(_t('_adm_pvalues_msg_enter_correct_name')); ?> ' ); return false; } window.location = '<?php echo $GLOBALS['site']['url_admin'] . 'preValues.php'; ?> ?list=' + encodeURIComponent( sNewList ) + '<?php echo $sPopupAdd; ?> '; } function addRow( eImg ) { $( eImg ).parent().parent().before( '<tr>' + <?php foreach ($aFields as $sField => $sHelp) { ?> '<td><input type="text" class="value_input" name="PreList[' + iNextInd + '][<?php echo $sField; ?> ]" value="" /></td>' + <?php } ?> '<th class="row_controls">' + '<a class="row_control bx-def-margin-thd-left-auto" href="javascript:void(0)" onclick="javascript:delRow(this);" title="<?php echo bx_html_attribute(_t('_Delete')); ?> "><i class="sys-icon times"></i></a>' + '<a class="row_control bx-def-margin-thd-left-auto" href="javascript:void(0)" onclick="javascript:moveUpRow(this);" title="<?php echo bx_html_attribute(_t('_adm_pvalues_txt_move_up')); ?> "><i class="sys-icon arrow-up"></i></a>' + '<a class="row_control bx-def-margin-thd-left-auto" href="javascript:void(0)" onclick="javascript:moveDownRow(this);" title="<?php echo bx_html_attribute(_t('_adm_pvalues_txt_move_down')); ?> "><i class="sys-icon arrow-down"></i></a>' + '</th>' + '</tr>' ); iNextInd ++; sortZebra(); } function delRow( eImg ) { $( eImg ).parent().parent().remove(); sortZebra(); } function moveUpRow( eImg ) { var oCur = $( eImg ).parent().parent(); var oPrev = oCur.prev( ':not(.headers)' ); if( !oPrev.length ) return; // swap elements values var oCurElems = $('input', oCur.get(0)); var oPrevElems = $('input', oPrev.get(0)); oCurElems.each( function(iInd) { var oCurElem = $( this ); var oPrevElem = oPrevElems.filter( ':eq(' + iInd + ')' ); // swap them var sCurValue = oCurElem.val(); oCurElem.val( oPrevElem.val() ); oPrevElem.val( sCurValue ); } ); } function moveDownRow( eImg ) { var oCur = $( eImg ).parent().parent(); var oPrev = oCur.next( ':not(.headers)' ); if( !oPrev.length ) return; // swap elements values var oCurElems = $('input', oCur.get(0)); var oPrevElems = $('input', oPrev.get(0)); oCurElems.each( function(iInd) { var oCurElem = $( this ); var oPrevElem = oPrevElems.filter( ':eq(' + iInd + ')' ); // swap them var sCurValue = oCurElem.val(); oCurElem.val( oPrevElem.val() ); oPrevElem.val( sCurValue ); } ); } function sortZebra() { $( '#listEdit tr:even' ).removeClass( 'even odd' ).addClass( 'even' ); $( '#listEdit tr:odd' ).removeClass( 'even odd' ).addClass( 'odd' ); } //just a design $( document ).ready( sortZebra ); </script> <form action="<?php echo $GLOBALS['site']['url_admin'] . 'preValues.php'; ?> " method="post" enctype="multipart/form-data"> <div class="adm-pv-cp-selector bx-def-margin-bottom"> <div class="adm-pv-cp-item"> <span><?php echo _t('_adm_pvalues_txt_select_list'); ?> :</span> <div class="input_wrapper input_wrapper_select bx-def-margin-sec-leftright clearfix"> <select class="form_input_select bx-def-font-inputs" name="list" onchange="if( this.value != '' ) window.location = '<?php echo $GLOBALS['site']['url_admin'] . 'preValues.php'; ?> ' + '?list=' + encodeURIComponent( this.value ) + '<?php echo $sPopupAdd; ?> ';"><?php echo genListOptions($aLists, $sList); ?> </select> </div> </div> <div class="input_wrapper input_wrapper_submit clearfix"> <input class="form_input_submit bx-btn" type="button" value="<?php echo bx_html_attribute(_t('_adm_pvalues_txt_create_new')); ?> " onclick="createNewList();" /> </div> </div> <table class="bx-def-table" id="listEdit" cellpadding="0" cellspacing="1"><?php $iNextInd = $sList !== '' ? genListRows($sList_db) : 0; ?> </table> <div class="adm-pv-submit bx-def-margin-top"> <input type="hidden" name="popup" value="<?php echo $iAmInPopup; ?> " /> <input type="hidden" name="action" value="Save" /> <div class="input_wrapper input_wrapper_submit clearfix"> <input class="form_input_submit bx-btn" type="submit" name="submit" value="<?php echo bx_html_attribute(_t('_Save')); ?> " /> </div> </div> <script type="text/javascript"> iNextInd = <?php echo $iNextInd; ?> ; </script> </form> <?php return $GLOBALS['oAdmTemplate']->parseHtmlByName('design_box_content.html', array('content' => ob_get_clean())); }
function showPagination($iTotalPages, $iCurPage, $iPerPage = 10, $bAdmin = false) { $sMainUrl = ''; $iTotalPages = (int) $iTotalPages; $iCurPage = (int) $iCurPage; $iPerPage = (int) $iPerPage; $bLinkMode = $this->isPermalinkEnabled() ? true : false; $bLinkMode = $bAdmin ? false : $bLinkMode; if ($iTotalPages > 1) { if ($bLinkMode) { $sMainUrl = $this->sType . '/all'; $aFields = array('ownerName', 'tag', 'rate'); foreach ($aFields as $field) { if (isset($_GET[$field])) { $sParam = htmlentities(process_pass_data($_GET[$field])); switch ($field) { case 'ownerName': $sMainUrl = $this->sType . '/gallery/all/' . $sParam; break; case 'tag': $sMainUrl = $this->sType . '/gallery_tag/' . $sParam; break; case 'rate': $sMainUrl = $this->sType . '/gallery_top'; break; } } } $sMainUrl = $GLOBALS['site']['url'] . $sMainUrl; $sReloc = "'{$sMainUrl}/' + this.value + '/{$iCurPage}'"; $sLinkTempl = $sMainUrl . "/{$iPerPage}/{page}"; } else { $sRequest = $_SERVER['PHP_SELF'] . '?'; $aFields = array('userID', 'tag', 'rate'); if ($bAdmin) { $aFields[] = 'type'; } foreach ($aFields as $field) { if (isset($_GET[$field])) { $sRequest .= "&{$field}=" . htmlentities(process_pass_data($_GET[$field])); } } $sReloc = "'{$sRequest}&page={$iCurPage}&per_page=' + this.value"; $sLinkTempl = $sRequest . "&page={page}&per_page={$iPerPage}"; } $sPagination = '<div style="text-align: center; position: relative; margin: 10px 0px;">' . _t("_Results per page") . ': <select name="per_page" onchange="window.location=' . $sReloc . ';"> <option value="10"' . ($iPerPage == 10 ? ' selected="selected"' : '') . '>10</option> <option value="20"' . ($iPerPage == 20 ? ' selected="selected"' : '') . '>20</option> <option value="50"' . ($iPerPage == 50 ? ' selected="selected"' : '') . '>50</option> <option value="100"' . ($iPerPage == 100 ? ' selected="selected"' : '') . '>100</option> </select></div>'; $sPagination .= genPagination($iTotalPages, $iCurPage, $sLinkTempl); } else { return ''; } return $sPagination; }
function AddRecord() { global $record_maxlength; global $period; global $record_limit; global $logged; $ret = ""; $record_text = addslashes(clear_xss(process_pass_data($_POST['newrecord']))); $record_sender = strlen($_COOKIE['memberID']) ? (int) $_COOKIE['memberID'] : ""; $record_recipient = (int) $_REQUEST['owner']; $ip = getenv('HTTP_CLIENT_IP') ? getenv('HTTP_CLIENT_IP') : getenv('REMOTE_ADDR'); if (!$record_recipient) { return $ret; } // Test if IP is defined if (!$ip) { $ret .= "<br />\r\n\t\t\t<table width=\"100%\" cellpadding=\"1\" cellspacing=\"1\" border=\"0\">\r\n\t\t\t\t<tr>\r\n\t\t\t\t\t<td class=\"text\" align=\"center\">\r\n\t\t\t\t\t\t<br />" . _t_err("_sorry, i can not define you ip adress. IT'S TIME TO COME OUT !") . "<br />\r\n\t\t\t\t\t</td>\r\n\t\t\t\t</tr>\r\n\t\t\t</table>\n"; return $ret; } // Test if last message is old enough $last_count = db_arr("SELECT COUNT( * ) AS `last_count` FROM `Guestbook` WHERE `IP` = '{$ip}' AND (UNIX_TIMESTAMP(NOW()) - UNIX_TIMESTAMP(`Date`) < {$period}*60)"); if ($last_count['last_count'] != 0) { $ret .= "<br />\r\n\t\t\t<table width=\"100%\" cellpadding=\"1\" cellspacing=\"1\" border=\"0\">\r\n\t\t\t\t<tr>\r\n\t\t\t\t\t<td class=\"text\" align=\"center\">\r\n\t\t\t\t\t\t<br />" . _t_err("_You have to wait for PERIOD minutes before you can write another message!", $period) . "<br />\r\n\t\t\t\t\t</td>\r\n\t\t\t\t</tr>\r\n\t\t\t</table>\n"; return $ret; } // Restrict with total records count $total_count = db_arr("SELECT COUNT(*) AS `total_count` FROM `Guestbook` WHERE `Recipient` = '{$record_recipient}'"); if ($total_count['total_count'] - 1 > $record_limit) { $del_res = db_res("SELECT `ID` FROM `Guestbook` WHERE `Recipient` = '{$record_recipient}' ORDER BY `Date` ASC LIMIT " . ($total_count['total_count'] - $record_limit + 1)); while ($del_arr = mysql_fetch_array($del_res)) { db_res("DELETE FROM `Guestbook` WHERE `ID` = {$del_arr['ID']}"); } } // Perform insertion db_res("INSERT INTO `Guestbook` SET `Date` = NOW(), `IP` = '{$ip}', `Sender` = '{$record_sender}', `Recipient` = '{$record_recipient}', `Text` = '{$record_text}', `New` = '1'"); return $ret; }
function actionShare($sFileUri) { $sLangPref = '_' . $this->_oConfig->getMainPrefix() . '_'; $sFileUrl = BX_DOL_URL_ROOT . $this->_oConfig->getBaseUri() . 'view/' . $sFileUri; $aForm = $this->getSubmitForm($sFileUri, 'share'); $oForm = new BxTemplFormView($aForm); $oForm->initChecker(); if ($oForm->isSubmittedAndValid()) { if ($this->sendFileInfo($_POST['email'], nl2br(process_pass_data($_POST['messageText'])), $sFileUrl, $_POST['mediaAction'])) { $sCode = $GLOBALS['oFunctions']->msgBox(_t('_File info was sent')); } else { $sCode = $GLOBALS['oFunctions']->msgBox(_t('_Error')); } } else { $sCode = $this->_oTemplate->parseHtmlByName('default_padding.html', array('content' => $oForm->getCode())); $sCode = $this->_oTemplate->parseHtmlByName('popup.html', array('title' => _t('_Share'), 'content' => $sCode)); $sCode = $GLOBALS['oFunctions']->transBox($sCode, TRUE); } header('Content-type:text/html;charset=utf-8'); echo $sCode; exit; }
<?php /*************************************************************************** * Dolphin Smart Community Builder * ----------------- * begin : Mon Mar 23 2006 * copyright : (C) 2006 BoonEx Group * website : http://www.boonex.com/ * This file is part of Dolphin - Smart Community Builder * * Dolphin is free software. This work is licensed under a Creative Commons Attribution 3.0 License. * http://creativecommons.org/licenses/by/3.0/ * * Dolphin is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; * without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. * See the Creative Commons Attribution 3.0 License for more details. * You should have received a copy of the Creative Commons Attribution 3.0 License along with Dolphin, * see license.txt file; if not, write to marketing@boonex.com ***************************************************************************/ require_once 'inc/header.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'utils.inc.php'; $sUrl = 'http://www.boonex.com/unity/id/export'; $sID = process_pass_data($_GET['ID']); $sPassword = process_pass_data($_GET['Password']); $sRequest = $sUrl . '?username='******'&password='******'&r=' . rand(); header('Content-Type: application/xml'); echo file_get_contents($sRequest);
function collectSearchRequestParams() { $aParams = array(); if (empty($_GET) and empty($_POST)) { return $aParams; } foreach ($this->aBlocks as $aBlock) { foreach ($aBlock['Items'] as $aItem) { $sItemName = $aItem['Name']; $mValue = null; switch ($aItem['Type']) { case 'text': case 'area': case 'html_area': if (isset($_REQUEST[$sItemName]) and $_REQUEST[$sItemName]) { $mValue = process_pass_data($_REQUEST[$sItemName]); } break; case 'num': case 'date': case 'range': if (isset($_REQUEST[$sItemName]) and !empty($_REQUEST[$sItemName])) { $mValue = explode('-', $_REQUEST[$sItemName], 2); $mValue[0] = (int) $mValue[0]; $mValue[1] = (int) $mValue[1]; if (!$mValue[0] and !$mValue[1]) { $mValue = null; } // if no values entered, skip them } break; case 'select_one': case 'select_set': if (isset($_REQUEST[$sItemName]) and !empty($_REQUEST[$sItemName])) { if (is_array($_REQUEST[$sItemName])) { $mValue = array(); foreach ($_REQUEST[$sItemName] as $sValue) { $sValue = trim(process_pass_data($sValue)); if ($sValue) { $mValue[] = $sValue; } } } else { $mValue = trim(process_pass_data($_REQUEST[$sItemName])); } } if (!$mValue) { $mValue = null; } break; case 'bool': if (isset($_REQUEST[$sItemName]) and $_REQUEST[$sItemName]) { $mValue = true; } break; case 'system': switch ($sItemName) { case 'ID': if (isset($_REQUEST[$sItemName]) and (int) $_REQUEST[$sItemName]) { $mValue = (int) $_REQUEST[$sItemName]; } break; case 'Couple': if (isset($_REQUEST[$sItemName]) and is_array($_REQUEST[$sItemName])) { if (isset($_REQUEST[$sItemName][0]) and isset($_REQUEST[$sItemName][1])) { $mValue = '-1'; } elseif (isset($_REQUEST[$sItemName][0])) { $mValue = 0; } elseif (isset($_REQUEST[$sItemName][1])) { $mValue = 1; } } elseif (isset($_REQUEST[$sItemName])) { $mValue = 'yes' == $_REQUEST[$sItemName] ? 1 : 0; } break; case 'Location': break; case 'Keyword': if (isset($_REQUEST[$sItemName]) and trim($_REQUEST[$sItemName])) { $mValue = trim(process_pass_data($_REQUEST[$sItemName])); } break; } break; } if (!is_null($mValue)) { $aParams[$sItemName] = $mValue; } } } return $aParams; }
function formTester() { $sMsg = ''; if ($_POST['tester_submit']) { $sRecipient = process_pass_data($_POST['recipient']); $sSubj = process_pass_data($_POST['subject']); $sBody = process_pass_data($_POST['body']); $isHTML = $_POST['html'] == 'on' ? true : false; if (sendMail($sRecipient, $sSubj, $sBody, 0, array(), $isHTML ? 'html' : '')) { $sMsg = MsgBox(_t('_bx_smtp_send_ok')); } else { $sMsg = MsgBox(_t('_bx_smtp_send_fail')); } } $aForm = array('form_attrs' => array('action' => BX_DOL_URL_ROOT . $this->_oConfig->getBaseUri() . 'administration/', 'method' => 'post'), 'inputs' => array('header' => array('type' => 'block_header', 'caption' => _t('_bx_smtp_tester')), 'recipient' => array('type' => 'text', 'name' => 'recipient', 'caption' => _t('_bx_smtp_recipient'), 'value' => ''), 'subject' => array('type' => 'text', 'name' => 'subject', 'caption' => _t('_bx_smtp_subject'), 'value' => ''), 'body' => array('type' => 'textarea', 'name' => 'body', 'caption' => _t('_bx_smtp_body'), 'value' => ''), 'html' => array('type' => 'checkbox', 'name' => 'html', 'caption' => _t('_bx_smtp_is_html'), 'checked' => false), 'Submit' => array('type' => 'submit', 'name' => 'tester_submit', 'value' => _t("_Submit")))); bx_import('BxTemplFormView'); $oForm = new BxTemplFormView($aForm); return $sMsg . $oForm->getCode(); }
* Copyright (c) BoonEx Pty Limited - http://www.boonex.com/ * CC-BY License - http://creativecommons.org/licenses/by/3.0/ */ require_once '../inc/header.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'profiles.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'design.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'admin_design.inc.php'; require_once BX_DIRECTORY_PATH_INC . 'utils.inc.php'; bx_import('BxRSS'); bx_import('BxDolAdminDashboard'); define('BX_DOL_ADMIN_INDEX', 1); $bLogged = isLogged(); $bNeedCheck = $bLogged && isAdmin() && $_POST['relocate'] && strncasecmp($_POST['relocate'], BX_DOL_URL_ADMIN . 'license.php', strlen(BX_DOL_URL_ADMIN . 'license.php')) == 0; if ($bNeedCheck || isset($_POST['ID']) && isset($_POST['Password'])) { $iId = getID($_POST['ID']); $sPassword = process_pass_data($_POST['Password']); if (!$bLogged) { $oZ = new BxDolAlerts('profile', 'before_login', 0, 0, array('login' => $iId, 'password' => $sPassword, 'ip' => getVisitorIP())); $oZ->alert(); } if ($_SERVER['HTTP_X_REQUESTED_WITH'] == 'XMLHttpRequest') { echo check_password($iId, $sPassword, BX_DOL_ROLE_ADMIN, false) ? 'OK' : 'Fail'; } else { if ($bNeedCheck || check_password($iId, $sPassword, BX_DOL_ROLE_ADMIN)) { if ($_POST['relocate'] && (strncasecmp($_POST['relocate'], BX_DOL_URL_ROOT, strlen(BX_DOL_URL_ROOT)) == 0 || strncasecmp($_POST['relocate'], BX_DOL_URL_ADMIN . 'license.php', strlen(BX_DOL_URL_ADMIN . 'license.php')) == 0)) { $sUrlRelocate = $_POST['relocate']; } else { $sUrlRelocate = BX_DOL_URL_ADMIN . 'index.php'; } $sUrlRelocate = bx_html_attribute($sUrlRelocate); $r = $l($a);
$between_date1 = 0; } elseif ($_POST['tr_between_date1'] == 'now') { $between_date1 = time(); } else { $between_date1 = strtotime($_POST['tr_between_date1']); } // Second date parse if ($_POST['tr_between_date2'] == 'start') { $between_date2 = 0; } elseif ($_POST['tr_between_date2'] == 'now') { $between_date2 = time(); } else { $between_date2 = strtotime($_POST['tr_between_date2']); } $tr['between_date1'] = process_pass_data($_POST['tr_between_date1']); $tr['between_date2'] = process_pass_data($_POST['tr_between_date2']); if ($between_date1 != -1 && $between_date2 != -1) { $tr_query = "SELECT `ID`, `IDMember`, `IDProvider`, `gtwTransactionID`, DATE_FORMAT(`Date`, '{$date_format}' ) AS 'Date', `Amount`, `Currency`, `Status`, `Data`, `Description`, `Note` FROM `Transactions` INNER JOIN `aff_members` ON (`idProfile` = `IDMember`) WHERE `idAff` = {$affID} AND ( TO_DAYS( FROM_UNIXTIME({$between_date1}) ) <= TO_DAYS( `Date` ) AND TO_DAYS( FROM_UNIXTIME({$between_date2}) ) >= TO_DAYS( `Date` ) ) AND `Status` = 'approved' ORDER BY `Date` DESC"; } else { $tr_query = ""; $tr['error_text'] = "Please specify correct dates"; } $between_disabled = ""; break; } // Calculations if (strlen($tr_query)) { $fin = getFinanceAffStat($affID, $tr); } // Transactions if (strlen($tr_query)) {
function browseCode() { global $site; global $rData; global $iTotalPages; global $iCurPage; $sCode = '<div id = "browseMain">'; $sCode .= '<form method="post" action="' . $_SERVER['PHP_SELF'] . '">'; if (mysql_num_rows($rData)) { while ($aData = mysql_fetch_array($rData)) { $sStyle = $aData['Approved'] == 'true' ? ' style="border: 2px solid #00CC00;"' : ' style="border: 2px solid #CC0000;"'; $sProf = '<a href="' . $site['url'] . 'profile_edit.php?ID=' . $aData['medProfId'] . '">' . $aData['NickName'] . '</a>'; $sCode .= '<div class="browseUnit"' . $sStyle . '>'; $sCode .= '<div class="browseCheckbox"><input type="checkbox" name="Check[]" value="' . $aData['medID'] . '"></div>'; $sCode .= '<div class="lastFilesPic"><img src="' . $site['url_admin'] . 'images/music.png"></div>'; $sCode .= '<div class="browseInfo"><div><a href="' . $site['url'] . 'viewMusic.php?fileID=' . $aData['medID'] . '"><b>' . $aData['medTitle'] . '</b></a></div>'; $sCode .= '<div>' . _t("_Added") . ': <b>' . defineTimeInterval($aData['medDate']) . '</b> by ' . $sProf . '</div>'; $sCode .= '<div>' . _t("_Playbacks") . ': <b>' . $aData['medListens'] . '</b></div></div>'; $sCode .= '</div>'; } } else { $sCode .= '<div>There are no files</div>'; } $sCode .= '</div>'; $sCode .= '<div class="clear_both"></div>'; $sCode .= '<div class="bottomPart"><input type="submit" name="Delete" value="Delete"><input type="submit" name="Approve" value="Change status"></div>'; // generate pagination if ($iTotalPages > 1) { $sRequest = $_SERVER['PHP_SELF'] . '?page={page}'; $aFields = array('userID', 'tag'); foreach ($aFields as $field) { if (isset($_GET[$field])) { $sRequest .= "&{$field}=" . htmlentities(process_pass_data($_GET[$field])); } } $pagination = '<div style="text-align:center;">' . genPagination($iTotalPages, $iCurPage, $sRequest) . '</div>'; } else { $pagination = ''; } return $sCode . $pagination . '</form>'; }
function _validateCheckout(&$aData) { $iMode = (int) $this->getOption('mode'); if ($iMode == PP_MODE_LIVE) { $sBusiness = $this->getOption('business'); $sConnectionUrl = 'www.paypal.com'; } else { $sBusiness = $this->getOption('sandbox'); $sConnectionUrl = 'www.sandbox.paypal.com'; } $iPrcType = $this->getOption('prc_type'); if ($iPrcType == PP_PRC_TYPE_DIRECT || $iPrcType == PP_PRC_TYPE_IPN) { if ($aData['payment_status'] != 'Completed') { return array('code' => 0, 'message' => _t('_payment_pp_err_not_completed')); } if ($aData['business'] != $sBusiness) { return array('code' => -1, 'message' => _t('_payment_pp_err_wrong_business')); } $sRequest = 'cmd=_notify-validate'; foreach ($aData as $sKey => $sValue) { $sRequest .= '&' . urlencode($sKey) . '=' . urlencode(process_pass_data($sValue)); } $aResponse = $this->_readValidationData($sConnectionUrl, $sRequest); if ((int) $aResponse['code'] !== 0) { return $aResponse; } array_walk($aResponse['content'], create_function('&$arg', "\$arg = trim(\$arg);")); if (strcmp($aResponse['content'][0], "INVALID") == 0) { return array('code' => -1, 'message' => _t('_payment_pp_err_wrong_transaction')); } else { if (strcmp($aResponse['content'][0], "VERIFIED") != 0) { return array('code' => 2, 'message' => _t('_payment_pp_err_wrong_verification_status')); } } } else { if ($iPrcType == PP_PRC_TYPE_PDT) { $sRequest = "cmd=_notify-synch&tx=" . $aData['tx'] . "&at=" . $this->getOption('token'); $aResponse = $this->_readValidationData($sConnectionUrl, $sRequest); if ((int) $aResponse['code'] !== 0) { return $aResponse; } if (strcmp($aResponse['content'][0], "FAIL") == 0) { return array('code' => -1, 'message' => _t('_payment_pp_err_wrong_transaction')); } else { if (strcmp($aResponse['content'][0], "SUCCESS") != 0) { return array('code' => 2, 'message' => _t('_payment_pp_err_wrong_verification_status')); } } $aKeys = array(); foreach ($aResponse['content'] as $sLine) { list($sKey, $sValue) = explode("=", $sLine); $aKeys[urldecode($sKey)] = urldecode($sValue); } $aData = array_merge($aData, $aKeys); if ($aData['payment_status'] != 'Completed') { return array('code' => 0, 'message' => _t('_payment_pp_err_not_completed')); } if ($aData['business'] != $sBusiness) { return array('code' => -1, 'message' => _t('_payment_pp_err_wrong_business')); } } } $aPending = $this->_oDb->getPending(array('type' => 'id', 'id' => $aData['item_number'])); $aVendor = $this->_oDb->getVendorInfoProfile($aPending['seller_id']); $fAmount = (double) $this->_getReceivedAmount($aVendor['currency_code'], $aData); if ($fAmount != (double) $aPending['amount']) { return array('code' => -1, 'message' => _t('_payment_pp_err_wrong_amount')); } if ($aData['custom'] != md5($aPending['seller_id'] . $aPending['id'])) { return array('code' => -1, 'message' => _t('_payment_pp_err_wrong_custom_data')); } return array('code' => 1, 'message' => _t('_payment_pp_msg_verified')); }