function user_login($email_address) { global $order, $customer_id, $customer_default_address_id, $customer_first_name, $customer_country_id, $customer_zone_id; /* This allows the user to login with only a valid email (the email address sent back by PayPal) Their PayPal payerID is stored in the database, but I still don't know if that number changes. If it doesn't, it could be used to help identify an existing customer who hasn't logged in. Until I know for sure, the email address is enough */ global $session_started, $language, $cart; if ($session_started == false) { olc_redirect(olc_href_link(FILENAME_COOKIE_USAGE)); } require DIR_WS_LANGUAGES . SESSION_LANGUAGE . SLASH . FILENAME_LOGIN; $check_customer_query = olc_db_query("select customers_id, customers_firstname, customers_password,\n\t\tcustomers_email_address, customers_default_address_id, customers_paypal_payerid from " . TABLE_CUSTOMERS . " where customers_email_address = '" . olc_db_input($email_address) . APOS); $check_customer = olc_db_fetch_array($check_customer_query); if (!olc_db_num_rows($check_customer_query)) { $this->away_with_you(MODULE_PAYMENT_PAYPAL_DP_TEXT_BAD_LOGIN, true); } else { if (SESSION_RECREATE == TRUE_STRING_S) { olc_session_recreate(); } $check_country_query = olc_db_query("select entry_country_id, entry_zone_id from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . (int) $check_customer['customers_id'] . "' and address_book_id = '" . (int) $check_customer['customers_default_address_id'] . APOS); $check_country = olc_db_fetch_array($check_country_query); $customer_id = $check_customer['customers_id']; $customer_default_address_id = $check_customer['customers_default_address_id']; $customer_first_name = $check_customer['customers_firstname']; $customer_country_id = $check_country['entry_country_id']; $customer_zone_id = $check_country['entry_zone_id']; $_SESSION['customer_id']; $_SESSION['customer_default_address_id']; $_SESSION['customer_first_name']; $_SESSION['customer_country_id']; $_SESSION['customer_zone_id']; $order->customer['id'] = $customer_id; olc_db_query(SQL_UPDATE . TABLE_CUSTOMERS_INFO . " set\n\t\t\tcustomers_info_date_of_last_logon = now(),\n\t\t\tcustomers_info_number_of_logons = customers_info_number_of_logons+1\n\t\t\twhere customers_info_id = '" . (int) $customer_id . APOS); $cart->restore_contents(); $this->away_with_you(); } }
*/ olc_db_query(DELETE_FROM . TABLE_BLACKLIST . " where blacklist_id = '" . olc_db_input($blacklist_id) . APOS); // olc_db_query(DELETE_FROM . TABLE_MANUFACTURERS_INFO . " where manufacturers_id = '" . olc_db_input($manufacturers_id) . APOS); /* if ($_POST['delete_products'] == 'on') { $products_query = olc_db_query("select products_id from " . TABLE_PRODUCTS . " where manufacturers_id = '" . olc_db_input($manufacturers_id) . APOS); while ($products = olc_db_fetch_array($products_query)) { olc_remove_product($products['products_id']); } } else { olc_db_query(SQL_UPDATE . TABLE_PRODUCTS . " set manufacturers_id = '' where manufacturers_id = '" . olc_db_input($manufacturers_id) . APOS); } */ if (USE_CACHE == TRUE_STRING_S) { olc_reset_cache_block('manufacturers'); } olc_redirect(olc_href_link(FILENAME_BLACKLIST, 'page=' . $_GET['page'])); break; } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"><table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- left_navigation_eof //--> </table></td> <!-- body_text //--> <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
(c) 2000-2001 The Exchange Project (earlier name of osCommerce) (c) 2002-2003 osCommerce(customers.php,v 1.76 2003/05/04); www.oscommerce.com (c) 2003 nextcommerce (customers.php,v 1.22 2003/08/24); www.nextcommerce.org (c) 2004 XT - Commerce; www.xt-commerce.com Released under the GNU General Public License -------------------------------------------------------------- Third Party contribution: Customers Status v3.x (c) 2002-2003 Copyright Elari elari@free.fr | www.unlockgsm.com/dload-osc/ | CVS : http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/elari/?sortby=date#dirlist Released under the GNU General Public License --------------------------------------------------------------*/ // if the customer is not logged on, redirect them to the login page require 'includes/application_top.php'; if (!isset($_SESSION['customer_id'])) { olc_redirect(olc_href_link(FILENAME_LOGIN, EMPTY_STRING, NONSSL)); } include DIR_WS_INCLUDES . 'html_head_full.php'; $button_back = HTML_A_START . olc_href_link(FILENAME_START, EMPTY_STRING, NONSSL) . '">' . olc_template_image_button('button_back.gif', 'Zurück zur Startseite') . HTML_A_END; $checkstatus = !$_GET['ignorestatus']; if ($checkstatus && !isset($_POST["submitted"])) { $main_content = EMPTY_STRING; $err_message = $_GET['err_message']; if ($err_message != EMPTY_STRING) { $main_content .= '<p><b><font color="red">' . $err_message . "</font></b></p>"; } $main_content .= '<input type="hidden" name="submitted" value="TRUE" id="' . time() . '">'; $main_content .= HTML_BR . '<input type="file" name="file" size="50">' . HTML_BR; $smarty->assign('FORM_ACTION', olc_draw_form('blz_update', $PHP_SELF, 'full=1', 'post', 'enctype="multipart/form-data"')); $smarty->assign('BUTTON_CONTINUE', olc_template_image_submit('button_continue.gif', IMAGE_BUTTON_CONTINUE)); $smarty->assign('SHOW_EXPLANATION', "1");
$coupon_code = create_coupon_code(); $insert_query = olc_db_query(INSERT_INTO . TABLE_COUPONS . " (coupon_code, coupon_type, coupon_amount, date_created) values ('" . $coupon_code . "', 'G', '" . NEW_SIGNUP_GIFT_VOUCHER_AMOUNT . "', now())"); $insert_id = olc_db_insert_id($insert_query); $insert_query = olc_db_query(INSERT_INTO . TABLE_COUPON_EMAIL_TRACK . " (coupon_id, customer_id_sent, sent_firstname, emailed_to, date_sent) values ('" . $insert_id . "', '0', 'Admin', '" . $customers_email_address . "', now() )"); $html_mail .= '<br/><br/>' . sprintf(EMAIL_GV_INCENTIVE_HEADER, $currencies->format(NEW_SIGNUP_GIFT_VOUCHER_AMOUNT)) . "<br/><br/>" . sprintf(EMAIL_GV_REDEEM, $coupon_code) . "<br/><br/>" . EMAIL_GV_LINK . olc_href_link(FILENAME_GV_REDEEM, 'gv_no=' . $coupon_code, NONSSL, false) . "<br/><br/>"; $txt_mail .= "\n\n" . sprintf(EMAIL_GV_INCENTIVE_HEADER, $currencies->format(NEW_SIGNUP_GIFT_VOUCHER_AMOUNT)) . "\n\n" . sprintf(EMAIL_GV_REDEEM, $coupon_code) . "\n\n" . EMAIL_GV_LINK . olc_href_link(FILENAME_GV_REDEEM, 'gv_no=' . $coupon_code, NONSSL, false) . "\n\n"; } if (NEW_SIGNUP_DISCOUNT_COUPON != '') { $coupon_code = NEW_SIGNUP_DISCOUNT_COUPON; $coupon_query = olc_db_query("select * from " . TABLE_COUPONS . " where coupon_code = '" . $coupon_code . APOS); $coupon = olc_db_fetch_array($coupon_query); $coupon_id = $coupon['coupon_id']; $coupon_desc_query = olc_db_query("select * from " . TABLE_COUPONS_DESCRIPTION . " where coupon_id = '" . $coupon_id . "' and language_id = '" . (int) $_SESSION['languages_id'] . APOS); $coupon_desc = olc_db_fetch_array($coupon_desc_query); $insert_query = olc_db_query(INSERT_INTO . TABLE_COUPON_EMAIL_TRACK . " (coupon_id, customer_id_sent, sent_firstname, emailed_to, date_sent) values ('" . $coupon_id . "', '0', 'Admin', '" . $customers_email_address . "', now() )"); $html_mail .= "<br/><br/>" . EMAIL_COUPON_INCENTIVE_HEADER . HTML_BR . sprintf("%s", $coupon_desc['coupon_description']) . "<br/><br/>" . sprintf(EMAIL_COUPON_REDEEM, $coupon['coupon_code']) . "<br/><br/>" . "<br/><br/>"; $txt_mail .= "\n\n" . EMAIL_COUPON_INCENTIVE_HEADER . NEW_LINE . sprintf("%s", $coupon_desc['coupon_description']) . "\n\n" . sprintf(EMAIL_COUPON_REDEEM, $coupon['coupon_code']) . "\n\n" . "\n\n"; } // ICW - CREDIT CLASS CODE BLOCK ADDED ******************************************************* END // GV Code End // W. Kaiser - eMail-type by customer olc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, $customers_email_address, $name, EMAIL_SUPPORT_FORWARDING_STRING, EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, '', '', EMAIL_SUPPORT_SUBJECT, $html_mail, $txt_mail, $customers_email_type); // W. Kaiser - eMail-type by customer if (!isset($mail_error)) { olc_redirect(olc_href_link(FILENAME_SHOPPING_CART)); } } } // W. Kaiser - Common code for "create_account.php" and "customers.php" include DIR_FS_INC . 'olc_show_customer_data_form.inc.php'; // W. Kaiser - Common code for "create_account.php" and "customers.php"
if ($finished) { // finished $limit1_query = olc_db_query("SELECT count(*) as count" . $temp_table_from . " WHERE comment='send'"); $limit1_data = olc_db_fetch_array($limit1_query); if ($limit1_data['count'] - $limit_data['count'] <= 0) { olc_db_query(SQL_UPDATE . TABLE_MODULE_NEWSLETTER . " SET status='1' WHERE newsletter_id='" . $id_get . APOS); olc_redirect(olc_href_link(FILENAME_MODULE_NEWSLETTER)); } else { $count = $limit1_data['count']; echo HTML_B_START . $count . '<b> eMails verschickt<br/>'; echo HTML_B_START . $count - $limit_data['count'] . '<b> eMails übrig'; } } else { $limit_low = $limit_high + 1; $limit_high = $limit_low + EMAIL_NEWSLETTER_PACAKGE_SIZE; olc_redirect(olc_href_link(FILENAME_MODULE_NEWSLETTER, 'send=' . $limit_low . COMMA . $limit_high . '&id=' . $id_get)); } } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"> <table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- left_navigation_eof //--> </table> </td>
$date_added = olc_db_prepare_input($_POST['date_added']); olc_db_query(INSERT_INTO . TABLE_TAX_CLASS . " (tax_class_title, tax_class_description, date_added) values ('" . olc_db_input($tax_class_title) . "', '" . olc_db_input($tax_class_description) . "', now())"); olc_redirect(olc_href_link(FILENAME_TAX_CLASSES)); break; case 'save': $tax_class_id = olc_db_prepare_input($_GET['tID']); $tax_class_title = olc_db_prepare_input($_POST['tax_class_title']); $tax_class_description = olc_db_prepare_input($_POST['tax_class_description']); $last_modified = olc_db_prepare_input($_POST['last_modified']); olc_db_query(SQL_UPDATE . TABLE_TAX_CLASS . " set tax_class_id = '" . olc_db_input($tax_class_id) . "', tax_class_title = '" . olc_db_input($tax_class_title) . "', tax_class_description = '" . olc_db_input($tax_class_description) . "', last_modified = now() where tax_class_id = '" . olc_db_input($tax_class_id) . APOS); olc_redirect(olc_href_link(FILENAME_TAX_CLASSES, 'page=' . $_GET['page'] . '&tID=' . $tax_class_id)); break; case 'deleteconfirm': $tax_class_id = olc_db_prepare_input($_GET['tID']); olc_db_query(DELETE_FROM . TABLE_TAX_CLASS . " where tax_class_id = '" . olc_db_input($tax_class_id) . APOS); olc_redirect(olc_href_link(FILENAME_TAX_CLASSES, 'page=' . $_GET['page'])); break; } } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"><table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- left_navigation_eof //--> </table></td> <!-- body_text //-->
$message = olc_db_prepare_input($_POST['message']); // Instantiate a new mail object $mimemessage = new email(array('X-Mailer: OLC mailer')); // Build the text version $text = strip_tags($text); if (EMAIL_USE_HTML == TRUE_STRING_S) { $mimemessage->add_html($message); } else { $mimemessage->add_text($message); } // Send message $mimemessage->build_message(); while ($mail = olc_db_fetch_array($mail_query)) { $mimemessage->send($mail['affiliate_firstname'] . BLANK . $mail['affiliate_lastname'], $mail['affiliate_email_address'], '', $from, $subject); } olc_redirect(olc_href_link(FILENAME_AFFILIATE_CONTACT, 'mail_sent_to=' . urlencode($mail_sent_to))); } if ($_GET['action'] == 'preview' && !$_POST['affiliate_email_address']) { $messageStack->add(ERROR_NO_AFFILIATE_SELECTED, 'error'); } if (olc_not_null($_GET['mail_sent_to'])) { $messageStack->add(sprintf(NOTICE_EMAIL_SENT_TO, $_GET['mail_sent_to']), 'notice'); } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"><table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php';
} else { olc_db_query(SQL_UPDATE . TABLE_REVIEWS . " set customers_id = null" . $where_customers_id); } olc_db_query(DELETE_FROM . TABLE_ADDRESS_BOOK . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_INFO . " where customers_info_id" . $customers_id_db); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_BASKET . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_BASKET_ATTRIBUTES . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_PRODUCTS_NOTIFICATIONS . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_WHOS_ONLINE . $where_customers_id_1); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_STATUS_HISTORY . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_IP . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_BASKET_SAVE_BASKETS . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_BASKET_SAVE . $where_customers_id); olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_BASKET_ATTRIBUTES . $where_customers_id); olc_redirect(olc_href_link(FILENAME_CUSTOMERS, olc_get_all_get_params(array('cID', 'action')))); break; default: // $customers_query = olc_db_query(SELECT."c.customers_id,c.customers_cid, c.customers_gender, c.customers_firstname, c.customers_lastname, c.customers_dob, c.customers_email_address, a.entry_company, a.entry_street_address, a.entry_suburb, a.entry_postcode, a.entry_city, a.entry_state, a.entry_zone_id, a.entry_country_id, c.customers_telephone, c.customers_fax, c.customers_newsletter, c.customers_default_address_id from " . TABLE_CUSTOMERS . " c left join " . TABLE_ADDRESS_BOOK . " a on c.customers_default_address_id = a.address_book_id where a.customers_id = c.customers_id and c.customers_id = '" . $cId . APOS); // W. Kaiser - eMail-type by customer $Have_cInfo = true; //The same query will be done later again! Show that we already have the data. $customers_query = olc_db_query($customers_query_text); $customers = olc_db_fetch_array($customers_query); if (is_null($customers['customers_email_type'])) { $customers['customers_email_type'] = EMAIL_USE_HTML; } $customers_email_address = $customers['customers_email_address']; $customers_email_type = $customers['customers_email_type']; $check_query = olc_db_query(SELECT . "count(*) as total" . $from_table_zones . olc_db_input($customers['entry_country_id']) . APOS); $check_value = olc_db_fetch_array($check_query);
$check_address_query = olc_db_query("select count(*) as total from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . CUSTOMER_ID . "' and address_book_id = '" . $address_id . APOS); $check_address = olc_db_fetch_array($check_address_query); $doit = $check_address['total'] == '1'; } if ($doit) { unset($_SESSION[$checkout_session_text]); } else { $checkout_id = 0; unset($_SESSION[$checkout_id_text]); } } else { $checkout_id = $_SESSION['customer_default_address_id']; } if ($checkout_id) { $_SESSION[$checkout_id_text] = $checkout_id; olc_redirect(olc_href_link($redirect_link, EMPTY_STRING, SSL)); } } } require DIR_WS_INCLUDES . 'header.php'; //W. Kaiser - AJAX require_once DIR_FS_INC . 'olc_address_label.inc.php'; require_once DIR_FS_INC . 'olc_count_customer_address_book_entries.inc.php'; $addresses_count = olc_count_customer_address_book_entries(); if ($IsAccount) { if (isset($delete)) { $smarty->assign('delete', '1'); $smarty->assign('ADDRESS', olc_address_label(CUSTOMER_ID, $delete, true, BLANK, HTML_BR)); $smarty->assign('BUTTON_BACK', HTML_A_START . $address_book_link . '">' . olc_image_button('button_back.gif', IMAGE_BUTTON_BACK) . HTML_A_END); $smarty->assign('BUTTON_DELETE', HTML_A_START . olc_href_link(FILENAME_ADDRESS_BOOK_PROCESS, 'delete=' . $delete . '&action=deleteconfirm') . '">' . olc_image_button('button_delete.gif', IMAGE_BUTTON_DELETE) . HTML_A_END); } else {
$sp_price = olc_oe_products_price($_POST['pID'], $price_special = '0', 1, $customers_status); $inp_price = $sa_price + $sp_price; $final_price = $inp_price * $_POST['qTY']; $sql_data_array = array('products_price' => olc_db_prepare_input($inp_price)); $update_sql_data = array('final_price' => olc_db_prepare_input($final_price)); $sql_data_array = olc_array_merge($sql_data_array, $update_sql_data); olc_db_perform(TABLE_ORDERS_PRODUCTS, $sql_data_array, 'update', 'orders_products_id = \'' . olc_db_input($_POST['opID']) . '\''); olc_redirect(olc_href_link(FILENAME_ORDERS_EDIT, 'edit_action=products&cID=' . $_POST['cID'] . '&oID=' . $_POST['oID'])); } if ($_GET['action'] == "shipping_del") { olc_db_query(DELETE_FROM . TABLE_ORDERS_TOTAL . " where orders_total_id = '" . olc_db_input($_POST['otID']) . APOS); olc_redirect(olc_href_link(FILENAME_ORDERS_EDIT, 'edit_action=shipping&cID=' . $_POST['cID'] . '&oID=' . $_POST['oID'])); } if ($_GET['action'] == "cod_del") { olc_db_query(DELETE_FROM . TABLE_ORDERS_TOTAL . " where orders_total_id = '" . olc_db_input($_POST['otID']) . APOS); olc_redirect(olc_href_link(FILENAME_ORDERS_EDIT, 'edit_action=shipping&cID=' . $_POST['cID'] . '&oID=' . $_POST['oID'])); } // Löschfunktionen Ende require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td valign="top"><table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- left_navigation_eof //--> </table></td> <!-- body_text //--> <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="0">
$search_text = $function_text . $class_smarty_text; $poss = strpos($s, $search_text, $poss); if ($poss === false) { $search_text = $function_text . '__construct'; //New style class constructor??? $poss = strpos($s, $search_text, $poss); $replace_constructor = false; } else { $replace_constructor = true; } if ($poss !== false) { if ($replace_constructor) { $s = substr($s, 0, $poss) . $function_text . $class_std_smarty_text . substr($s, $poss + strlen($search_text)); } $file = str_replace($smarty_class, $std_smarty_class, $smarty_file); file_put_contents($file, $s); rename($smarty_file, str_replace(PHP, '.save' . PHP, $smarty_file)); $inc_dir = dirname(__FILE__) . SLASH; $file = $inc_dir . basename($smarty_file); copy($file, $smarty_file); $file0 = 'function.olc_template_init.php'; $file = $smarty_dir . 'plugins' . SLASH . $file0; if (!is_file($file)) { copy($inc_dir . $file0, $file); } //$_SESSION[SMARTY_DIR]=$smarty_dir; file_put_contents('smarty_dir.txt', $smarty_dir); olc_redirect(FILENAME_DEFAULT, true); } } }
function before_process() { if (!class_exists('PayPal_osC')) { include_once PAYPAL_IPN_DIR . 'Classes/osC/osC.class.php'; } if (PayPal_osC::check_order_status()) { olc_redirect(olc_href_link(FILENAME_SHOPPING_CART, EMPTY_STRING, SSL)); } else { include PAYPAL_IPN_DIR . 'catalog/checkout_process.inc.php'; } exit; }
unset($_SESSION['customer_country_id']); unset($_SESSION['customer_zone_id']); unset($_SESSION['comments']); unset($_SESSION['user_info']); unset($_SESSION['customers_status']); unset($_SESSION['selected_box']); unset($_SESSION['navigation']); unset($_SESSION['shipping']); unset($_SESSION['payment']); // GV Code Start unset($_SESSION['gv_id']); unset($_SESSION['cc_id']); // GV Code End $_SESSION['cart']->reset(); $assign_constants = true; // write customers status guest in session again //require(DIR_WS_INCLUDES . 'write_customers_status.php'); if ($_GET['admin_logoff']) { olc_redirect(FILENAME_DEFAULT); } else { include_once DIR_FS_INC . 'olc_create_navigation_links.inc.php'; olc_create_navigation_links(true, false); require DIR_WS_INCLUDES . 'header.php'; //W. Kaiser - AJAX //W. Kaiser - AJAX $smarty->assign('BUTTON_CONTINUE', HTML_A_START . olc_href_link(FILENAME_DEFAULT) . '">' . olc_image_button('button_continue.gif', IMAGE_BUTTON_CONTINUE) . HTML_A_END); $main_content = $smarty->fetch(CURRENT_TEMPLATE_MODULE . 'logoff' . HTML_EXT, SMARTY_CACHE_ID); $smarty->assign(MAIN_CONTENT, $main_content); require BOXES; $smarty->display(INDEX_HTML); }
/* ----------------------------------------------------------------------------------------- $Id: checkout_shipping_address.php,v 1.1.1.1 2006/12/22 13:35:41 gswkaiser Exp $ OL-Commerce Version 1.0 http://www.ol-commerce.com Copyright (c) 2004 OL-Commerce ----------------------------------------------------------------------------------------- based on: (c) 2000-2001 The Exchange Project (earlier name of osCommerce) (c) 2002-2003 osCommerce(checkout_shipping_address.php,v 1.14 2003/05/27); www.oscommerce.com (c) 2003 nextcommerce (checkout_shipping_address.php,v 1.14 2003/08/17); www.nextcommerce.org (c) 2004 XT - Commerce; www.xt-commerce.com Released under the GNU General Public License ---------------------------------------------------------------------------------------*/ include 'includes/application_top.php'; // if the order contains only virtual products, forward the customer to the billing page as // a shipping address is not needed $checkout_id_text = 'sendto'; $checkout_session_text = 'shipping'; if ($order->content_type == 'virtual') { $_SESSION[$checkout_session_text] = false; $_SESSION[$checkout_id_text] = false; olc_redirect(olc_href_link(FILENAME_CHECKOUT_PAYMENT, EMPTY_STRING, SSL)); } $IsCheckout_shipping = true; $redirect_link = FILENAME_CHECKOUT_SHIPPING; define('MESSAGE_STACK_NAME', 'checkout_shipping_address'); include FILENAME_CHECKOUT_ADDRESS;
if ($_POST['default'] == 'on') { olc_db_query(SQL_UPDATE . TABLE_CONFIGURATION . " set configuration_value = '" . olc_db_input($customers_status_id) . "' where configuration_key = 'DEFAULT_CUSTOMERS_STATUS_ID'"); } olc_redirect(olc_href_link(FILENAME_CUSTOMERS_STATUS, 'page=' . $_GET['page'] . '&cID=' . $customers_status_id)); break; case 'deleteconfirm': $cID = olc_db_prepare_input($_GET['cID']); $customers_status_query = olc_db_query("select configuration_value from " . TABLE_CONFIGURATION . " where configuration_key = 'DEFAULT_CUSTOMERS_STATUS_ID'"); $customers_status = olc_db_fetch_array($customers_status_query); if ($customers_status['configuration_value'] == $cID) { olc_db_query(SQL_UPDATE . TABLE_CONFIGURATION . " set configuration_value = '' where configuration_key = 'DEFAULT_CUSTOMERS_STATUS_ID'"); } olc_db_query(DELETE_FROM . TABLE_CUSTOMERS_STATUS . " where customers_status_id = '" . olc_db_input($cID) . APOS); // We want to drop the existing corresponding personal_offers table olc_db_query("drop table IF EXISTS " . TABLE_PERSONAL_OFFERS_BY_CUSTOMERS_STATUS . olc_db_input($cID) . ""); olc_redirect(olc_href_link(FILENAME_CUSTOMERS_STATUS, 'page=' . $_GET['page'])); break; case 'delete': $cID = olc_db_prepare_input($_GET['cID']); $status_query = olc_db_query("select count(*) as count from " . TABLE_CUSTOMERS . " where customers_status = '" . olc_db_input($cID) . APOS); $status = olc_db_fetch_array($status_query); $remove_status = true; if ($cID == DEFAULT_CUSTOMERS_STATUS_ID || $cID == DEFAULT_CUSTOMERS_STATUS_ID_GUEST || $cID == DEFAULT_CUSTOMERS_STATUS_ID_NEWSLETTER) { $remove_status = false; $messageStack->add(ERROR_REMOVE_DEFAULT_CUSTOMERS_STATUS, 'error'); } elseif ($status['count'] > 0) { $remove_status = false; $messageStack->add(ERROR_STATUS_USED_IN_CUSTOMERS, 'error'); } else { $history_query = olc_db_query("select count(*) as count from " . TABLE_CUSTOMERS_STATUS_HISTORY . " where '" . olc_db_input($cID) . "' in (new_value, old_value)"); $history = olc_db_fetch_array($history_query);
if ($banner_extension) { if (function_exists('imagecreate')) { $file0 = DIR_WS_IMAGES . 'graphs/banner_#-' . $banners_id . DOT . $banner_extension; $banners = array('infobox', 'daily', 'monthly', 'yearly'); for ($banner = 0; $banner < sizeof($banners); $banner++) { $file = str_replace(HASH, $banners[$banner], $file0); if (is_file($file)) { if (is_writeable($file)) { unlink($file); } } } } } $messageStack->add_session(SUCCESS_BANNER_REMOVED, 'success'); olc_redirect(olc_href_link(FILENAME_BANNER_MANAGER, $page_parameter)); } } // check if the graphs directory exists $dir_ok = false; if (function_exists('imagecreate') && $banner_extension) { if (is_dir(DIR_WS_IMAGES . 'graphs')) { if (is_writeable(DIR_WS_IMAGES . 'graphs')) { $dir_ok = true; } else { $messageStack->add(ERROR_GRAPHS_DIRECTORY_NOT_WRITEABLE, 'error'); } } else { $messageStack->add(ERROR_GRAPHS_DIRECTORY_DOES_NOT_EXIST, 'error'); } }
if (strlen($pfrom_to_check) > 0 && !(($errorno & 10000) == 10000) && strlen($pto_to_check) > 0 && !(($errorno & 100000) == 100000)) { if ($pfrom_to_check > $pto_to_check) { $errorno += 1000000; $error = 1; } } if (strlen($keywords) > 0) { if (!olc_parse_search_string(stripslashes($keywords), $search_keywords)) { $errorno += 10000000; $error = 1; } } $categories_id = (int) $_GET['categories_id']; $inc_subcat == $_GET['inc_subcat']; if ($error == 1) { olc_redirect(olc_href_link(FILENAME_ADVANCED_SEARCH, 'errorno=' . $errorno . '&' . olc_get_all_get_params(array('x', 'y')))); } else { $breadcrumb->add(NAVBAR_TITLE1_ADVANCED_SEARCH, olc_href_link(FILENAME_ADVANCED_SEARCH)); $breadcrumb->add(NAVBAR_TITLE2_ADVANCED_SEARCH, olc_href_link(FILENAME_ADVANCED_SEARCH_RESULT, 'keywords=' . $keywords . '&search_in_description=' . $_GET['search_in_description'] . '&categories_id=' . $categories_id . '&inc_subcat=' . $inc_subcat . '&manufacturers_id=' . $_GET['manufacturers_id'] . '&pfrom=' . $pfrom_to_check . '&pto=' . $pto_to_check . '&dfrom=' . $dfrom_to_check . '&dto=' . $dto_to_check)); require DIR_WS_INCLUDES . 'header.php'; //fsk18 lock if ($_SESSION['customers_status']['customers_fsk18_display'] == '0') { $fsk_lock = ' and p.products_fsk18!=1'; } else { $fsk_lock = EMPTY_STRING; } // create column list $select_str = PRODUCTS_FIELDS . COMMA . ' m.manufacturers_name'; if (DISPLAY_PRICE_WITH_TAX == TRUE_STRING_S && (isset($pfrom_to_check) && olc_not_null($pfrom_to_check) || isset($pto_to_check) && olc_not_null($pto_to_check))) { $select_str .= ", SUM(tr.tax_rate) as tax_rate ";
olc_db_query(INSERT_INTO . TABLE_CUSTOMERS_INFO . " (customers_info_id, customers_info_number_of_logons, customers_info_date_account_created) values ('" . $cc_id . "', '0', now())"); // Create eMail if ($customers_send_mail == 'yes') { $name = trim($customers_lastname . BLANK . $customers_firstname); $smarty->assign('NAME', $name); $smarty->assign('EMAIL', $customers_email_address); $smarty->assign('COMMENTS', $customers_mail_comments); $smarty->assign('PASSWORD', $customers_password); $txt_mail = CURRENT_TEMPLATE_ADMIN_MAIL . 'create_account_mail'; $html_mail = $smarty->fetch($txt_mail . HTML_EXT); $txt_mail = $smarty->fetch($txt_mail . '.txt'); // W. Kaiser - eMail-type by customer olc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, $customers_email_address, $name, EMAIL_SUPPORT_FORWARDING_STRING, EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, EMPTY_STRING, EMPTY_STRING, EMAIL_SUBJECT, $html_mail, $txt_mail, $customers_email_type); // W. Kaiser - eMail-type by customer } olc_redirect(olc_href_link(FILENAME_CUSTOMERS, 'cID=' . $cc_id, SSL)); } } else { $customers_email_type = EMAIL_USE_HTML ? EMAIL_TYPE_HTML : EMAIL_TYPE_TEXT; } include DIR_WS_INCLUDES . 'html_head_full.php'; // W. Kaiser - Common code for "create_account.php" and "customers.php" include DIR_WS_INCLUDES . 'check_form.js.php'; // W. Kaiser - Common code for "create_account.php" and "customers.php" ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <?php require_once DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- body_text //-->
Guest account idea by Ingo T. <*****@*****.**> ---------------------------------------------------------------------------------------*/ $IsGuest = true; require_once 'includes/application_top.php'; require_once BOXES; $IsCreateAccount = true; $IsUserMode = true; define('MESSAGE_STACK_NAME', 'create_account'); define('SMARTY_TEMPLATE', MESSAGE_STACK_NAME); $process = $_POST['action'] == 'process'; if ($process) { // W. Kaiser - Common code for "create_account.php" and "customers.php" include DIR_FS_INC . 'olc_get_check_customer_data.php'; // W. Kaiser - Common code for "create_account.php" and "customers.php" if ($error) { if (IS_AJAX_PROCESSING) { //Add messagestackinfo if (is_object($messageStack)) { $m = $messageStack->size(MESSAGE_STACK_NAME); if ($m > 0) { ajax_error($messageStack->output(MESSAGE_STACK_NAME)); } } } } else { olc_redirect(olc_href_link(FILENAME_CHECKOUT_SHIPPING)); } } // W. Kaiser - Common code for "create_account.php" and "customers.php" include DIR_FS_INC . 'olc_show_customer_data_form.inc.php'; // W. Kaiser - Common code for "create_account.php" and "customers.php"
olc_db_query(INSERT_INTO . TABLE_COUNTRIES . " (countries_name, countries_iso_code_2, countries_iso_code_3, address_format_id) values ('" . olc_db_input($countries_name) . "', '" . olc_db_input($countries_iso_code_2) . "', '" . olc_db_input($countries_iso_code_3) . "', '" . olc_db_input($address_format_id) . "')"); olc_redirect(olc_href_link(FILENAME_COUNTRIES)); break; case 'save': $countries_id = olc_db_prepare_input($_GET['cID']); $countries_name = olc_db_prepare_input($_POST['countries_name']); $countries_iso_code_2 = olc_db_prepare_input($_POST['countries_iso_code_2']); $countries_iso_code_3 = olc_db_prepare_input($_POST['countries_iso_code_3']); $address_format_id = olc_db_prepare_input($_POST['address_format_id']); olc_db_query(SQL_UPDATE . TABLE_COUNTRIES . " set countries_name = '" . olc_db_input($countries_name) . "', countries_iso_code_2 = '" . olc_db_input($countries_iso_code_2) . "', countries_iso_code_3 = '" . olc_db_input($countries_iso_code_3) . "', address_format_id = '" . olc_db_input($address_format_id) . "' where countries_id = '" . olc_db_input($countries_id) . APOS); olc_redirect(olc_href_link(FILENAME_COUNTRIES, 'page=' . $_GET['page'] . '&cID=' . $countries_id)); break; case 'deleteconfirm': $countries_id = olc_db_prepare_input($_GET['cID']); olc_db_query(DELETE_FROM . TABLE_COUNTRIES . " where countries_id = '" . olc_db_input($countries_id) . APOS); olc_redirect(olc_href_link(FILENAME_COUNTRIES, 'page=' . $_GET['page'])); break; } } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"> <table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- left_navigation_eof //--> </table>
if ($_GET['action']) { switch ($_GET['action']) { case 'update': $reviews_id = olc_db_prepare_input($_GET['rID']); $reviews_rating = olc_db_prepare_input($_POST['reviews_rating']); $last_modified = olc_db_prepare_input($_POST['last_modified']); $reviews_text = olc_db_prepare_input($_POST['reviews_text']); olc_db_query(SQL_UPDATE . TABLE_REVIEWS . " set reviews_rating = '" . olc_db_input($reviews_rating) . "', last_modified = now() where reviews_id = '" . olc_db_input($reviews_id) . APOS); olc_db_query(SQL_UPDATE . TABLE_REVIEWS_DESCRIPTION . " set reviews_text = '" . olc_db_input($reviews_text) . "' where reviews_id = '" . olc_db_input($reviews_id) . APOS); olc_redirect(olc_href_link(FILENAME_REVIEWS, 'page=' . $_GET['page'] . '&rID=' . $reviews_id)); break; case 'deleteconfirm': $reviews_id = olc_db_prepare_input($_GET['rID']); olc_db_query(DELETE_FROM . TABLE_REVIEWS . " where reviews_id = '" . olc_db_input($reviews_id) . APOS); olc_db_query(DELETE_FROM . TABLE_REVIEWS_DESCRIPTION . " where reviews_id = '" . olc_db_input($reviews_id) . APOS); olc_redirect(olc_href_link(FILENAME_REVIEWS, 'page=' . $_GET['page'])); break; } } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"><table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- left_navigation_eof //--> </table></td> <!-- body_text //-->
Released under the GNU General Public License --------------------------------------------------------------*/ require 'includes/application_top.php'; require 'new_attributes_config.php'; require DIR_FS_INC . 'olc_findTitle.inc.php'; //W. Kaiser - AJAX $button_action = USE_AJAX ? $button_action = "button_left()" : "history.back(1)"; $backLink = "<a href=\"javascript:" . $button_action . "\">"; $current_product_id = $_POST['current_product_id']; //W. Kaiser - AJAX $action = $_POST['action']; if (isset($cPathID)) { if ($action == 'change') { include 'new_attributes_change.php'; olc_redirect('./' . FILENAME_CATEGORIES . '?cPath=' . $cPathID . '&pID=' . $current_product_id); } } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"><table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php'; ?> <!-- left_navigation_eof //--> </table></td> <!-- body_text //-->
if (sizeof($products_parsed) > 0) { $check_query = olc_db_query("select count(*) as total from " . TABLE_PRODUCTS_NOTIFICATIONS . " where customers_id = '" . (int) $_SESSION['customer_id'] . "' and products_id not in (" . implode(',', $products_parsed) . RPAREN); $check = olc_db_fetch_array($check_query); if ($check['total'] > 0) { olc_db_query(DELETE_FROM . TABLE_PRODUCTS_NOTIFICATIONS . " where customers_id = '" . (int) $_SESSION['customer_id'] . "' and products_id not in (" . implode(',', $products_parsed) . RPAREN); } } } else { $check_query = olc_db_query("select count(*) as total from " . TABLE_PRODUCTS_NOTIFICATIONS . " where customers_id = '" . (int) $_SESSION['customer_id'] . APOS); $check = olc_db_fetch_array($check_query); if ($check['total'] > 0) { olc_db_query(DELETE_FROM . TABLE_PRODUCTS_NOTIFICATIONS . " where customers_id = '" . (int) $_SESSION['customer_id'] . APOS); } } $messageStack->add_session('account', SUCCESS_NOTIFICATIONS_UPDATED, 'success'); olc_redirect(olc_href_link(FILENAME_ACCOUNT)); } $breadcrumb->add(NAVBAR_TITLE_1_ACCOUNT_NOTIFICATIONS, olc_href_link(FILENAME_ACCOUNT, '', SSL)); $breadcrumb->add(NAVBAR_TITLE_2_ACCOUNT_NOTIFICATIONS, olc_href_link(FILENAME_ACCOUNT_NOTIFICATIONS, '', SSL)); require DIR_WS_INCLUDES . 'header.php'; $smarty->assign('CHECKBOX_GLOBAL', olc_draw_checkbox_field('product_global', '1', $global['global_product_notifications'] == '1' ? true : false, 'onclick="javascript:checkBox(\'product_global\')"')); if ($global['global_product_notifications'] != '1') { $smarty->assign('GLOBAL_NOTIFICATION', '0'); } else { $smarty->assign('GLOBAL_NOTIFICATION', '1'); } if ($global['global_product_notifications'] != '1') { $products_check_query = olc_db_query("select count(*) as total from " . TABLE_PRODUCTS_NOTIFICATIONS . " where customers_id = '" . (int) $_SESSION['customer_id'] . APOS); $products_check = olc_db_fetch_array($products_check_query); if ($products_check['total'] > 0) { $counter = 0;
$check = olc_db_fetch_array($check_query); if ($check['total'] < 1) { if (IS_AJAX_PROCESSING) { ajax_info(ERROR_NONEXISTING_ADDRESS_BOOK_ENTRY); } else { $messageStack->add_session(MESSAGE_STACK_NAME, ERROR_NONEXISTING_ADDRESS_BOOK_ENTRY, 'success'); $action = EMPTY_STRING; } olc_redirect($address_book_link); } } } elseif (!isset($edit)) { if (!isset($delete)) { if (olc_count_customer_address_book_entries() >= MAX_ADDRESS_BOOK_ENTRIES) { if (IS_AJAX_PROCESSING) { ajax_info(ERROR_ADDRESS_BOOK_FULL); } else { $messageStack->add_session(MESSAGE_STACK_NAME, ERROR_ADDRESS_BOOK_FULL, 'success'); $action = EMPTY_STRING; } olc_redirect($address_book_link); } } } $IsAccount = true; $redirect_link = FILENAME_ADDRESS_BOOK; include FILENAME_CHECKOUT_ADDRESS; if ($process) { $process = false; olc_redirect($address_book_link); }
function before_process() { if ($_POST['x_response_code'] != '1') { if (USE_AJAX) { ajax_error(MODULE_PAYMENT_2CHECKOUT_TEXT_ERROR_MESSAGE); } else { olc_redirect(olc_href_link(FILENAME_CHECKOUT_PAYMENT, 'error_message=' . urlencode(MODULE_PAYMENT_2CHECKOUT_TEXT_ERROR_MESSAGE), SSL, true, false)); } } }
$coupon_query = olc_db_query("select coupon_code from " . TABLE_COUPONS . " where coupon_id = '" . $_GET['cid'] . APOS); $coupon_result = olc_db_fetch_array($coupon_query); $coupon_name_query = olc_db_query("select coupon_name from " . TABLE_COUPONS_DESCRIPTION . " where coupon_id = '" . $_GET['cid'] . "' and language_id = '" . SESSION_LANGUAGE_ID . APOS); $coupon_name = olc_db_fetch_array($coupon_name_query); $from = olc_db_prepare_input($_POST['from']); $subject = olc_db_prepare_input($_POST['subject']); while ($mail = olc_db_fetch_array($mail_query)) { $smarty->assign('MESSAGE', $_POST['message']); $smarty->assign('COUPON_ID', $coupon_result['coupon_code']); $smarty->assign('WEBSITE', HTTP_SERVER . DIR_WS_CATALOG); $txt_mail = CURRENT_TEMPLATE_MAIL . 'send_coupon.'; $html_mail = $smarty->fetch($txt_mail . 'html'); $txt_mail = $smarty->fetch($txt_mail . 'txt'); olc_php_mail(EMAIL_BILLING_ADDRESS, EMAIL_BILLING_NAME, $mail['customers_email_address'], $mail['customers_firstname'] . BLANK . $mail['customers_lastname'], '', EMAIL_BILLING_REPLY_ADDRESS, EMAIL_BILLING_REPLY_ADDRESS_NAME, '', '', EMAIL_BILLING_SUBJECT, $html_mail, $txt_mail); } olc_redirect(olc_href_link(FILENAME_COUPON_ADMIN, 'mail_sent_to=' . urlencode($mail_sent_to))); } if ($_GET['action'] == 'preview_email' && !$_POST['customers_email_address']) { $_GET['action'] = 'email'; $messageStack->add(ERROR_NO_CUSTOMER_SELECTED, 'error'); } if ($_GET['mail_sent_to']) { $messageStack->add(sprintf(NOTICE_EMAIL_SENT_TO, $_GET['mail_sent_to']), 'notice'); } switch ($_GET['action']) { case 'confirmdelete': $delete_query = olc_db_query(SQL_UPDATE . TABLE_COUPONS . " set coupon_active = 'N' where coupon_id='" . $_GET['cid'] . APOS); break; case 'update': // get all _POST and validate $_POST['coupon_code'] = trim($_POST['coupon_code']);
$mail_sent_to = $_POST['customers_email_address']; } break; } $from = olc_db_prepare_input($_POST['from']); $subject = olc_db_prepare_input($_POST['subject']); $message = olc_db_prepare_input($_POST['message']); //Let's build a message object using the email class $mimemessage = new email(array('X-Mailer: OL-Commerce bulk mailer')); // add the message to the object $mimemessage->add_text($message); $mimemessage->build_message(); while ($mail = olc_db_fetch_array($mail_query)) { $mimemessage->send($mail['customers_firstname'] . BLANK . $mail['customers_lastname'], $mail['customers_email_address'], '', $from, $subject); } olc_redirect(olc_href_link(FILENAME_MAIL, 'mail_sent_to=' . urlencode($mail_sent_to))); } if ($_GET['action'] == 'preview' && !$_POST['customers_email_address']) { $messageStack->add(ERROR_NO_CUSTOMER_SELECTED, 'error'); } if ($_GET['mail_sent_to']) { $messageStack->add(sprintf(NOTICE_EMAIL_SENT_TO, $_GET['mail_sent_to']), 'notice'); } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr> <td class="columnLeft2" nowrap="nowrap" valign="top"><table border="0" cellspacing="1" cellpadding="1" class="columnLeft" nowrap="nowrap"> <!-- left_navigation //--> <?php require DIR_WS_INCLUDES . 'column_left.php';
function collect_posts() { global $currencies, $coupon_no, $REMOTE_ADDR; if ($_POST['gv_redeem_code']) { $gv_query = olc_db_query("select coupon_id, coupon_type, coupon_amount from " . TABLE_COUPONS . " where coupon_code = '" . $_POST['gv_redeem_code'] . APOS); $gv_result = olc_db_fetch_array($gv_query); if (olc_db_num_rows($gv_query) != 0) { $redeem_query = olc_db_query("select * from " . TABLE_COUPON_REDEEM_TRACK . " where coupon_id = '" . $gv_result['coupon_id'] . APOS); if (olc_db_num_rows($redeem_query) != 0 && $gv_result['coupon_type'] == 'G') { olc_redirect(olc_href_link(FILENAME_CHECKOUT_PAYMENT, 'error_message=' . urlencode(ERROR_NO_INVALID_REDEEM_GV), SSL)); } } if ($gv_result['coupon_type'] == 'G') { $gv_amount = $gv_result['coupon_amount']; // Things to set // ip address of claimant // customer id of claimant // date // redemption flag // now update customer account with gv_amount $gv_amount_query = olc_db_query("select amount from " . TABLE_COUPON_GV_CUSTOMER . " where customer_id = '" . CUSTOMER_ID . APOS); $customer_gv = false; $total_gv_amount = $gv_amount; if ($gv_amount_result = olc_db_fetch_array($gv_amount_query)) { $total_gv_amount = $gv_amount_result['amount'] + $gv_amount; $customer_gv = true; } $gv_update = olc_db_query(SQL_UPDATE . TABLE_COUPONS . " set coupon_active = 'N' where coupon_id = '" . $gv_result['coupon_id'] . APOS); $gv_redeem = olc_db_query("insert into " . TABLE_COUPON_REDEEM_TRACK . " (coupon_id, customer_id, redeem_date, redeem_ip) values ('" . $gv_result['coupon_id'] . "', '" . CUSTOMER_ID . "', now(),'" . $REMOTE_ADDR . "')"); if ($customer_gv) { // already has gv_amount so update $gv_update = olc_db_query(SQL_UPDATE . TABLE_COUPON_GV_CUSTOMER . " set amount = '" . $total_gv_amount . "' where customer_id = '" . CUSTOMER_ID . APOS); } else { // no gv_amount so insert $gv_insert = olc_db_query(INSERT_INTO . TABLE_COUPON_GV_CUSTOMER . " (customer_id, amount) values ('" . CUSTOMER_ID . "', '" . $total_gv_amount . "')"); } //olc_redirect(olc_href_link(FILENAME_CHECKOUT_PAYMENT, 'error_message=' . urlencode(ERROR_REDEEMED_AMOUNT. $currencies->format($gv_amount)), SSL)); } } if ($_POST['submit_redeem_x'] && $gv_result['coupon_type'] == 'G') { olc_redirect(olc_href_link(FILENAME_CHECKOUT_PAYMENT, 'error_message=' . urlencode(ERROR_NO_REDEEM_CODE), SSL)); } }
$affiliate_banner_query = olc_db_query("select affiliate_banners_image from " . TABLE_AFFILIATE_BANNERS . " where affiliate_banners_id = '" . olc_db_input($affiliate_banners_id) . APOS); $affiliate_banner = olc_db_fetch_array($affiliate_banner_query); if (file_exists(DIR_FS_CATALOG_IMAGES . $affiliate_banner['affiliate_banners_image'])) { if (is_writeable(DIR_FS_CATALOG_IMAGES . $affiliate_banner['affiliate_banners_image'])) { unlink(DIR_FS_CATALOG_IMAGES . $affiliate_banner['affiliate_banners_image']); } else { $messageStack->add_session(ERROR_IMAGE_IS_NOT_WRITEABLE, 'error'); } } else { $messageStack->add_session(ERROR_IMAGE_DOES_NOT_EXIST, 'error'); } } olc_db_query(DELETE_FROM . TABLE_AFFILIATE_BANNERS . " where affiliate_banners_id = '" . olc_db_input($affiliate_banners_id) . APOS); olc_db_query(DELETE_FROM . TABLE_AFFILIATE_BANNERS_HISTORY . " where affiliate_banners_id = '" . olc_db_input($affiliate_banners_id) . APOS); $messageStack->add_session(SUCCESS_BANNER_REMOVED, 'success'); olc_redirect(olc_href_link(FILENAME_AFFILIATE_BANNER_MANAGER, 'page=' . $_GET['page'])); break; } } /* $div_field='<div id="spiffycalendar" class="text"></div>'; require(DIR_WS_INCLUDES . 'header.php'); */ ?> <script language="javascript" type="text/javascript"><!-- function popupImageWindow(url) { window.open(url,'popupImageWindow','toolbar=no,location=no,directories=no,status=no,menubar=no,scrollbars=no,resizable=yes,copyhistory=no,width=100,height=100,screenX=150,screenY=150,top=150,left=150') } //--></script> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr>
olc_mail($check_status['affiliate_firstname'] . BLANK . $check_status['affiliate_lastname'], $check_status['affiliate_email_address'], EMAIL_TEXT_SUBJECT, nl2br($email), STORE_OWNER, AFFILIATE_EMAIL_ADDRESS); $affiliate_notified = '1'; } olc_db_query(INSERT_INTO . TABLE_AFFILIATE_PAYMENT_STATUS_HISTORY . " (affiliate_payment_id, affiliate_new_value, affiliate_old_value, affiliate_date_added, affiliate_notified) values ('" . olc_db_input($pID) . "', '" . olc_db_input($status) . "', '" . $check_status['affiliate_payment_status'] . "', now(), '" . $affiliate_notified . "')"); $order_updated = true; } if ($order_updated) { $messageStack->add_session(SUCCESS_PAYMENT_UPDATED, 'success'); } olc_redirect(olc_href_link(FILENAME_AFFILIATE_PAYMENT, olc_get_all_get_params(array('action')) . 'action=edit')); break; case 'deleteconfirm': $pID = olc_db_prepare_input($_GET['pID']); olc_db_query(DELETE_FROM . TABLE_AFFILIATE_PAYMENT . " where affiliate_payment_id = '" . olc_db_input($pID) . APOS); olc_db_query(DELETE_FROM . TABLE_AFFILIATE_PAYMENT_STATUS_HISTORY . " where affiliate_payment_id = '" . olc_db_input($pID) . APOS); olc_redirect(olc_href_link(FILENAME_AFFILIATE_PAYMENT, olc_get_all_get_params(array('pID', 'action')))); break; } if ($_GET['action'] == 'edit' && olc_not_null($_GET['pID'])) { $pID = olc_db_prepare_input($_GET['pID']); $payments_query = olc_db_query("select p.*, a.affiliate_payment_check, a.affiliate_payment_paypal, a.affiliate_payment_bank_name, a.affiliate_payment_bank_branch_number, a.affiliate_payment_bank_swift_code, a.affiliate_payment_bank_account_name, a.affiliate_payment_bank_account_number from " . TABLE_AFFILIATE_PAYMENT . " p, " . TABLE_AFFILIATE . " a where affiliate_payment_id = '" . olc_db_input($pID) . "' and a.affiliate_id = p.affiliate_id"); $payments_exists = true; if (!($payments = olc_db_fetch_array($payments_query))) { $payments_exists = false; $messageStack->add(sprintf(ERROR_PAYMENT_DOES_NOT_EXIST, $pID), 'error'); } } require DIR_WS_INCLUDES . 'header.php'; ?> <table border="0" width="100%" cellspacing="2" cellpadding="2"> <tr>