function vam_hide_session_id()
{
global $session_started;
if ($session_started == true && defined('SID') && vam_not_null(SID)) {
return vam_draw_hidden_field(vam_session_name(), vam_session_id());
}
}
function vam_update_whos_online()
{
if (isset($_SESSION['customer_id'])) {
$wo_customer_id = $_SESSION['customer_id'];
$wo_full_name = addslashes($_SESSION['customer_first_name'] . ' ' . $_SESSION['customer_last_name']);
} else {
$wo_customer_id = 0;
$wo_full_name = TEXT_GUEST;
}
$wo_session_id = vam_session_id();
$wo_ip_address = vam_get_ip_address();
$wo_last_page_url = addslashes(getenv('REQUEST_URI'));
$current_time = time();
$xx_mins_ago = $current_time - 900;
// remove entries that have expired
vam_db_query("delete from " . TABLE_WHOS_ONLINE . " where time_last_click < '" . $xx_mins_ago . "'");
$stored_customer_query = vam_db_query("select count(*) as count from " . TABLE_WHOS_ONLINE . " where session_id = '" . $wo_session_id . "'");
$stored_customer = vam_db_fetch_array($stored_customer_query);
if ($stored_customer['count'] > 0) {
vam_db_query("update " . TABLE_WHOS_ONLINE . " set customer_id = '" . $wo_customer_id . "', full_name = '" . $wo_full_name . "', ip_address = '" . $wo_ip_address . "', time_last_click = '" . $current_time . "', last_page_url = '" . $wo_last_page_url . "' where session_id = '" . $wo_session_id . "'");
} else {
vam_db_query("insert into " . TABLE_WHOS_ONLINE . " (customer_id, full_name, session_id, ip_address, time_entry, time_last_click, last_page_url) values ('" . $wo_customer_id . "', '" . $wo_full_name . "', '" . $wo_session_id . "', '" . $wo_ip_address . "', '" . $current_time . "', '" . $current_time . "', '" . $wo_last_page_url . "')");
}
}
</button></span>
</form>
</td>
</tr>
<tr>
<td class="pageHeading"><hr noshade><?php
echo CROSS_SELLING_SEARCH;
?>
<table>
<br><br>
<tr class="dataTableRow">
<?php
echo vam_draw_form('product_search', FILENAME_CATEGORIES, '', 'GET');
echo vam_draw_hidden_field('action', 'edit_crossselling');
echo vam_draw_hidden_field(vam_session_name(), vam_session_id());
echo vam_draw_hidden_field('current_product_id', $_GET['current_product_id']);
echo vam_draw_hidden_field('cpath', $_GET['cpath']);
?>
<td class="dataTableContent" width="40"><?php
echo vam_draw_input_field('search', '', 'size="30"');
?>
</td>
<td class="dataTableContent">
<?php
echo '<span class="button"><button type="submit" value="' . BUTTON_SEARCH . '"/>' . vam_image(DIR_WS_IMAGES . 'icons/buttons/search.png', '', '12', '12') . ' ' . BUTTON_SEARCH . '</button></span>';
?>
</td>
</form>
</tr>
</table>
<?php
echo vam_draw_form('status', FILENAME_ORDERS, '', 'get');
?>
<?php
echo HEADING_TITLE_STATUS . ' ' . vam_draw_pull_down_menu('status', array_merge(array(array('id' => '', 'text' => TEXT_ALL_ORDERS)), $orders_statuses), $_GET['status'], 'onChange="this.form.submit();"') . vam_draw_hidden_field(vam_session_name(), vam_session_id());
?>
</form>
</td>
<td align="right">
<?php
echo vam_draw_form('orders', FILENAME_ORDERS, '', 'get');
?>
<?php
echo HEADING_TITLE_SEARCH . ' ' . vam_draw_input_field('oID', '', 'size="12"') . vam_draw_hidden_field('action', 'edit') . vam_draw_hidden_field(vam_session_name(), vam_session_id());
?>
</form>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td>
<table border="0" width="100%" cellspacing="0" cellpadding="0">
<tr>
<?php
/*
$Id: attributeManagerHeader.inc.php,v 1.0 21/02/06 Sam West$
osCommerce, Open Source E-Commerce Solutions
http://www.oscommerce.com
Released under the GNU General Public License
Copyright © 2006 Kangaroo Partners
http://kangaroopartners.com
osc@kangaroopartners.com
*/
if ('new_product' == $_GET['action'] || 'update_product' == $_GET['action']) {
$amSessionVar = vam_session_name() . '=' . vam_session_id();
echo <<<HEADER
<script language="JavaScript" type="text/JavaScript">
\tvar productsId='{$_GET['pID']}';
\tvar pageAction='{$_GET['action']}';
\tvar sessionId='{$amSessionVar}';
</script>
<script language="JavaScript" type="text/JavaScript" src="attributeManager/javascript/requester.js"></script>
<script language="JavaScript" type="text/JavaScript" src="attributeManager/javascript/alertBoxes.js"></script>
<script language="JavaScript" type="text/JavaScript" src="attributeManager/javascript/attributeManager.js"></script>
<link rel="stylesheet" type="text/css" href="attributeManager/css/attributeManager.css" />
HEADER;
}
?>
function process_button()
{
global $order, $vamPrice;
$worldpay_url = vam_session_name() . '=' . vam_session_id();
$total = number_format($vamPrice->CalculateCurr($order->info['total']), $vamPrice->get_decimal_places($_SESSION['currency']), '.', '');
$process_button_string = vam_draw_hidden_field('instId', MODULE_PAYMENT_WORLDPAY_ID) . vam_draw_hidden_field('currency', $_SESSION['currency']) . vam_draw_hidden_field('desc', 'Purchase from ' . STORE_NAME) . vam_draw_hidden_field('cartId', $worldpay_url) . vam_draw_hidden_field('amount', $total);
// Pre Auth Mod 3/1/2002 - Graeme Conkie
if (MODULE_PAYMENT_WORLDPAY_USEPREAUTH == 'True') {
$process_button_string .= vam_draw_hidden_field('authMode', MODULE_PAYMENT_WORLDPAY_PREAUTH);
}
// Ian-san: Create callback and language links here 6/4/2003:
$language_code_raw = vam_db_query("select code from " . TABLE_LANGUAGES . " where languages_id ='" . $_SESSION['languages_id'] . "'");
$language_code_array = vam_db_fetch_array($language_code_raw);
$language_code = $language_code_array['code'];
$address = htmlspecialchars($order->customer['street_address'] . "\n" . $order->customer['suburb'] . "\n" . $order->customer['city'] . "\n" . $order->customer['state'], ENT_QUOTES);
$process_button_string .= vam_draw_hidden_field('testMode', MODULE_PAYMENT_WORLDPAY_MODE) . vam_draw_hidden_field('name', $order->customer['firstname'] . ' ' . $order->customer['lastname']) . vam_draw_hidden_field('address', $address) . vam_draw_hidden_field('postcode', $order->customer['postcode']) . vam_draw_hidden_field('country', $order->customer['country']['iso_code_2']) . vam_draw_hidden_field('tel', $order->customer['telephone']) . vam_draw_hidden_field('myvar', 'Y') . vam_draw_hidden_field('fax', $order->customer['fax']) . vam_draw_hidden_field('email', $order->customer['email_address']) . vam_draw_hidden_field('lang', $language_code) . vam_draw_hidden_field('MC_callback', vam_href_link(wpcallback) . '.php') . vam_draw_hidden_field('MC_sid', $sid);
// Ian-san: Added MD5 here 6/4/2003:
if (MODULE_PAYMENT_WORLDPAY_USEMD5 == '1') {
$md5_signature_fields = 'amount:language:email';
$md5_signature = MODULE_PAYMENT_WORLDPAY_MD5KEY . ':' . number_format($order->info['total'] * $currencies->get_value($currency), $currencies->get_decimal_places($currency), '.', '') . ':' . $language_code . ':' . $order->customer['email_address'];
$md5_signature_md5 = md5($md5_signature);
$process_button_string .= vam_draw_hidden_field('signatureFields', $md5_signature_fields) . vam_draw_hidden_field('signature', $md5_signature_md5);
}
return $process_button_string;
}
<h1 class="contentBoxHeading"><?php
echo HEADING_TITLE;
?>
</h1>
</td>
<td align="right">
<?php
echo vam_draw_form('goto', FILENAME_CATEGORIES, '', 'get');
echo HEADING_TITLE_GOTO . ' ' . vam_draw_pull_down_menu('cPath', vam_get_category_tree(), $current_category_id, 'onChange="this.form.submit();"') . vam_draw_hidden_field(vam_session_name(), vam_session_id());
?>
</form>
</td>
<td align="right">
<?php
echo vam_draw_form('search', FILENAME_CATEGORIES, '', 'get');
echo HEADING_TITLE_SEARCH . ' ' . vam_draw_input_field('search') . vam_draw_hidden_field(vam_session_name(), vam_session_id());
?>
</form>
</td>
</tr>
</table>
<table border="0" width="100%" cellspacing="0" cellpadding="2">
<?php
//----- new_category / edit_category (when ALLOW_CATEGORY_DESCRIPTIONS is 'true') -----
if ($_GET['action'] == 'new_category' || $_GET['action'] == 'edit_category') {
include DIR_WS_MODULES . 'new_category.php';
} elseif ($_GET['action'] == 'new_product') {
function process_button()
{
global $order;
$sequence = rand(1, 1000);
if ($_SESSION['customers_status']['customers_status_show_price_tax'] == 0 && $_SESSION['customers_status']['customers_status_add_tax_ot'] == 1) {
$total = $order->info['total'] + $order->info['tax'];
} else {
$total = $order->info['total'];
}
$process_button_string = vam_draw_hidden_field('x_Login', MODULE_PAYMENT_AUTHORIZENET_LOGIN) . vam_draw_hidden_field('x_Card_Num', $this->cc_card_number) . vam_draw_hidden_field('x_Exp_Date', $this->cc_expiry_month . substr($this->cc_expiry_year, -2)) . vam_draw_hidden_field('x_Amount', round($total, 2)) . vam_draw_hidden_field('x_Relay_URL', vam_href_link(FILENAME_CHECKOUT_PROCESS, '', 'SSL', false)) . vam_draw_hidden_field('x_Method', MODULE_PAYMENT_AUTHORIZENET_METHOD == 'Credit Card' ? 'CC' : 'ECHECK') . vam_draw_hidden_field('x_Version', '3.0') . vam_draw_hidden_field('x_Cust_ID', $_SESSION['customer_id']) . vam_draw_hidden_field('x_Email_Customer', MODULE_PAYMENT_AUTHORIZENET_EMAIL_CUSTOMER == 'True' ? 'TRUE' : 'FALSE') . vam_draw_hidden_field('x_first_name', $order->billing['firstname']) . vam_draw_hidden_field('x_last_name', $order->billing['lastname']) . vam_draw_hidden_field('x_address', $order->billing['street_address']) . vam_draw_hidden_field('x_city', $order->billing['city']) . vam_draw_hidden_field('x_state', $order->billing['state']) . vam_draw_hidden_field('x_zip', $order->billing['postcode']) . vam_draw_hidden_field('x_country', $order->billing['country']['title']) . vam_draw_hidden_field('x_phone', $order->customer['telephone']) . vam_draw_hidden_field('x_email', $order->customer['email_address']) . vam_draw_hidden_field('x_ship_to_first_name', $order->delivery['firstname']) . vam_draw_hidden_field('x_ship_to_last_name', $order->delivery['lastname']) . vam_draw_hidden_field('x_ship_to_address', $order->delivery['street_address']) . vam_draw_hidden_field('x_ship_to_city', $order->delivery['city']) . vam_draw_hidden_field('x_ship_to_state', $order->delivery['state']) . vam_draw_hidden_field('x_ship_to_zip', $order->delivery['postcode']) . vam_draw_hidden_field('x_ship_to_country', $order->delivery['country']['title']) . vam_draw_hidden_field('x_Customer_IP', $_SERVER['REMOTE_ADDR']) . $this->InsertFP(MODULE_PAYMENT_AUTHORIZENET_LOGIN, MODULE_PAYMENT_AUTHORIZENET_TXNKEY, round($total, 2), $sequence);
if (MODULE_PAYMENT_AUTHORIZENET_TESTMODE == 'Test') {
$process_button_string .= vam_draw_hidden_field('x_Test_Request', 'TRUE');
}
$process_button_string .= vam_draw_hidden_field(vam_session_name(), vam_session_id());
return $process_button_string;
}
function process_button()
{
global $order, $vamPrice;
switch (MODULE_PAYMENT_SECPAY_CURRENCY) {
case 'Default Currency':
$sec_currency = DEFAULT_CURRENCY;
break;
case 'Any Currency':
default:
$sec_currency = $_SESSION['currency'];
break;
}
switch (MODULE_PAYMENT_SECPAY_TEST_STATUS) {
case 'Always Fail':
$test_status = 'false';
break;
case 'Production':
$test_status = 'live';
break;
case 'Always Successful':
default:
$test_status = 'true';
break;
}
if ($_SESSION['customers_status']['customers_status_show_price_tax'] == 0 && $_SESSION['customers_status']['customers_status_add_tax_ot'] == 1) {
$total = $order->info['total'] + $order->info['tax'];
} else {
$total = $order->info['total'];
}
$process_button_string = vam_draw_hidden_field('merchant', MODULE_PAYMENT_SECPAY_MERCHANT_ID) . vam_draw_hidden_field('trans_id', STORE_NAME . date('Ymdhis')) . vam_draw_hidden_field('amount', round($vamPrice->CalculateCurrEx($total, $sec_currency), $vamPrice->get_decimal_places($sec_currency))) . vam_draw_hidden_field('bill_name', $order->billing['firstname'] . ' ' . $order->billing['lastname']) . vam_draw_hidden_field('bill_addr_1', $order->billing['street_address']) . vam_draw_hidden_field('bill_addr_2', $order->billing['suburb']) . vam_draw_hidden_field('bill_city', $order->billing['city']) . vam_draw_hidden_field('bill_state', $order->billing['state']) . vam_draw_hidden_field('bill_post_code', $order->billing['postcode']) . vam_draw_hidden_field('bill_country', $order->billing['country']['title']) . vam_draw_hidden_field('bill_tel', $order->customer['telephone']) . vam_draw_hidden_field('bill_email', $order->customer['email_address']) . vam_draw_hidden_field('ship_name', $order->delivery['firstname'] . ' ' . $order->delivery['lastname']) . vam_draw_hidden_field('ship_addr_1', $order->delivery['street_address']) . vam_draw_hidden_field('ship_addr_2', $order->delivery['suburb']) . vam_draw_hidden_field('ship_city', $order->delivery['city']) . vam_draw_hidden_field('ship_state', $order->delivery['state']) . vam_draw_hidden_field('ship_post_code', $order->delivery['postcode']) . vam_draw_hidden_field('ship_country', $order->delivery['country']['title']) . vam_draw_hidden_field('currency', $sec_currency) . vam_draw_hidden_field('callback', vam_href_link(FILENAME_CHECKOUT_PROCESS, '', 'SSL', false) . ';' . vam_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code, 'SSL', false)) . vam_draw_hidden_field(vam_session_name(), vam_session_id()) . vam_draw_hidden_field('options', 'test_status=' . $test_status . ',dups=false,cb_post=true,cb_flds=' . vam_session_name());
return $process_button_string;
}
} else {
$filterlist_sql = "select distinct m.manufacturers_id as id, m.manufacturers_name as name from " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_TO_CATEGORIES . " p2c, " . TABLE_MANUFACTURERS . " m where p.products_status = '1' and p.manufacturers_id = m.manufacturers_id and p.products_id = p2c.products_id and p2c.categories_id = '" . $current_category_id . "' order by m.manufacturers_name";
}
}
$filterlist_query = vamDBquery($filterlist_sql);
if (vam_db_num_rows($filterlist_query, true) > 1) {
$manufacturer_dropdown = vam_draw_form('filter', vam_href_link(FILENAME_DEFAULT, 'cat=' . $current_category_id), 'get');
if (isset($_GET['manufacturers_id'])) {
$manufacturer_dropdown .= vam_draw_hidden_field('manufacturers_id', (int) $_GET['manufacturers_id']);
$options = array(array('text' => TEXT_ALL_CATEGORIES));
} else {
$manufacturer_dropdown .= vam_draw_hidden_field('cat', $_GET['cat']);
$options = array(array('text' => TEXT_ALL_MANUFACTURERS));
}
$manufacturer_dropdown .= vam_draw_hidden_field('sort', $_GET['sort']);
$manufacturer_dropdown .= vam_draw_hidden_field(vam_session_name(), vam_session_id());
global $current_category_id;
while ($filterlist = vam_db_fetch_array($filterlist_query, true)) {
$options[] = array('id' => $filterlist['id'], 'text' => $filterlist['name']);
if (isset($current_category_id)) {
$manufacturer_sort .= '<a href="' . vam_href_link(FILENAME_DEFAULT, 'cat=' . $current_category_id . '&filter_id=' . $filterlist['id']) . '">' . $filterlist['name'] . '</a> ';
} else {
$manufacturer_sort .= '<a href="' . vam_href_link(FILENAME_DEFAULT, 'filter_id=' . $filterlist['id']) . '">' . $filterlist['name'] . '</a> ';
}
}
$manufacturer_sort .= '<a href="' . vam_href_link(FILENAME_DEFAULT, 'cat=' . $current_category_id) . '">' . TEXT_ALL_MANUFACTURERS . '</a> ';
$manufacturer_dropdown .= vam_draw_pull_down_menu('filter_id', $options, $_GET['filter_id'], 'onchange="this.form.submit()"');
$manufacturer_dropdown .= '</form>' . "\n";
}
}
// Get the right image for the top-right
function process_button()
{
global $customer_id, $order, $sendto, $vamPrice, $currencies, $shipping;
$process_button_string = '';
$OrderID = substr($_SESSION['cart_interkassa_id'], strpos($_SESSION['cart_interkassa_id'], '-') + 1);
$TotalAmount = number_format($vamPrice->CalculateCurrEx($order->info['total'], MODULE_PAYMENT_IK_CURRENCY), 2, '.', '');
$ik_sign_hash_str = MODULE_PAYMENT_IK_SHOP_ID . ':' . $TotalAmount . ':' . $OrderID . ':' . '' . ':' . vam_session_id() . ':' . MODULE_PAYMENT_IK_SECRET_KEY;
$ik_sign_hash = md5($ik_sign_hash_str);
$process_button_string = vam_draw_hidden_field('ik_shop_id', MODULE_PAYMENT_IK_SHOP_ID) . vam_draw_hidden_field('ik_payment_amount', $TotalAmount) . vam_draw_hidden_field('ik_payment_id', $OrderID) . vam_draw_hidden_field('ik_payment_desc', 'Order-' . $OrderID) . vam_draw_hidden_field('ik_paysystem_alias', '') . vam_draw_hidden_field('ik_baggage_fields', vam_session_id()) . vam_draw_hidden_field('ik_sign_hash', $ik_sign_hash);
return $process_button_string;
}
echo TEXT_EASYPOPULATE_QUICK_LINKS_18;
?>
<?php
echo EP_EXCEL_SAFE_OUTPUT == true ? ".csv" : ".txt";
?>
<?php
echo TEXT_EASYPOPULATE_QUICK_LINKS_6;
?>
</a><br />
<!-- VJ product attributes begin //-->
<?php
if (EP_PRODUCTS_WITH_ATTRIBUTES == true) {
?>
<a href="easypopulate.php?download=tempfile&dltype=attrib<?php
if (defined('SID') && vam_not_null(SID)) {
echo '&' . vam_session_name() . '=' . vam_session_id();
}
?>
"><?php
echo TEXT_EASYPOPULATE_QUICK_LINKS_19;
?>
<?php
echo EP_EXCEL_SAFE_OUTPUT == true ? ".csv" : ".txt";
?>
<?php
echo TEXT_EASYPOPULATE_QUICK_LINKS_6;
?>
</a><br />
<?php
}
?>