function save_config() { $code = $this->egold_unit_to_currency($_REQUEST['egold_payment_units']); $rate = JB_get_currency_rate($code); if ($rate == '') { echo "<font color='red'><b>Note: The selected 'Egold payment unit' is not defined in the system. Please add define this as a currency in the 'Currencies' section or select another payment unit.</b></font>"; } $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_PAYEE_ACCOUNT', '" . jb_escape_sql($_REQUEST['egold_payee_account']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_PAYMENT_UNITS', '" . jb_escape_sql($_REQUEST['egold_payment_units']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_PAYMENT_METAL_ID', '" . jb_escape_sql($_REQUEST['egold_payment_metal_id']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_STATUS_URL', '" . jb_escape_sql($_REQUEST['egold_status_url']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_PAYMENT_URL', '" . jb_escape_sql($_REQUEST['egold_payment_url']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_NOPAYMENT_URL', '" . jb_escape_sql($_REQUEST['egold_nopayment_url']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_ALTERNATE_PASSPHRASE', '" . jb_escape_sql($_REQUEST['egold_alternate_passphrase']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_CANDIDATE_NOPAYMENT_URL', '" . jb_escape_sql($_REQUEST['egold_candidate_nopayment_url']) . "')"; JB_mysql_query($sql); $sql = "REPLACE INTO jb_config (`key`, val) VALUES ('EGOLD_CANDIDATE_PAYMENT_URL', '" . jb_escape_sql($_REQUEST['egold_candidate_payment_url']) . "')"; JB_mysql_query($sql); }
function JB_place_membership_invoice_clone($old_invoice_id) { $status = 'in_cart'; $id = JB_generate_membership_invoice_id(); $sql = "SELECT * FROM membership_invoices WHERE `invoice_id`='" . jb_escape_sql($old_invoice_id) . "' "; $result = JB_mysql_query($sql) or die($sql . mysql_error()); $row = mysql_fetch_array($result, MYSQL_ASSOC); $now = gmdate("Y-m-d H:i:s"); $currency_rate = JB_get_currency_rate($row['currency_code']); if (!$row['currency_code']) { $row['currency_code'] = 'USD'; $currency_rate = 1; } $sql = "INSERT INTO `membership_invoices` ( `invoice_id` , `invoice_date` , `processed_date` , `status` , `user_type` , `user_id` , `membership_id` , `months_duration` , `amount` , `currency_code` , `currency_rate` , `item_name`, `payment_method`, `reason`, `member_date`, `member_end` ) VALUES ('{$id}', '{$now}', NULL, '" . jb_escape_sql($status) . "', '" . jb_escape_sql($row['user_type']) . "', '" . jb_escape_sql($row['user_id']) . "', '" . jb_escape_sql($row['membership_id']) . "', '" . jb_escape_sql($row['months_duration']) . "', '" . jb_escape_sql($row['amount']) . "', '" . jb_escape_sql($row['currency_code']) . "', '" . jb_escape_sql($currency_rate) . "', '" . jb_escape_sql(addslashes($row['item_name'])) . "', '" . jb_escape_sql(addslashes($row['payment_method'])) . "', '', '0000-00-00 00:00:00', '0000-00-00 00:00:00')"; $result = JB_mysql_query($sql) or die($sql . mysql_error()); $invoice_id = JB_mysql_insert_id(); JB_send_admin_new_invoice_alert('M', $invoice_id); return $invoice_id; }