public static function protect_page() { if (!$_SESSION['logged_in']) { if (isset($_SESSION['cart_login'])) { $_SESSION['last_page'] = 'checkout'; unset($_SESSION['cart_login']); } else { $_SESSION['last_page'] = $_SERVER['REQUEST_URI']; } if ($_POST) { $_SESSION['POST'] = $_POST; } Gadget::add_message('Please login to continue'); Gadget::redirect('login'); } }
$newPromoCodeAmount = $promoCodeAmount - $giftCertAmount; if ($newPromoCodeAmount < 0) { $newPromoCodeAmount = 0; } $dbi->update('PromoCodes', array('Amount' => $newPromoCodeAmount), array('PromoCodeID' => $PromoCodeID)); } } //Gadget::add_message('success'); Gadget::redirect('success2'); } else { Gadget::add_message($transaction->get_error_message()); } } catch (Exception $e) { s('Error: ' . $e->getMessage() . $transaction->get_error_message()); Gadget::add_message($e->getMessage() . $transaction->get_error_message()); } } } $page = Page::get_from_alias('giftcertificates'); $page->add_js('/js/giftcertificates.js'); require 'header.php'; ?> <div class="content-padding"> <div><?php echo $page->content['main']; ?></div> <form class="user-form" name="giftcertificates-form" id="checkout-form" action="giftcertificates" method="post" onsubmit="return validateForm();"> <table> <tbody> <tr style="vertical-align:top;">
</form> </div> <?php require 'footer.php'; die; } else { Gadget::redirect('index'); die; } } elseif (isset($_REQUEST['submit_new_pass'])) { // Insert new password and set expires to 0 $request = dbi()->q_1("SELECT * FROM password_reset_requests WHERE token_id = '" . $_SESSION['token_id'] . "'"); dbi()->update('Customers', array('Password' => Access::create_hash($_REQUEST['new_pass'], 'strong')), 'CustomerID = ' . $request->CustomerID); dbi()->update('password_reset_requests', array('expires' => '0000-00-00 00:00:00'), 'token_id = \'' . $_SESSION['token_id'] . '\''); unset($_SESSION['token_id']); Gadget::add_message('Your password has been reset!'); Gadget::redirect('login'); die; } require 'header.php'; ?> <div class="content-padding"> <form name="forgot-form" class="user-form" id="forgot-form" action="forgot" method="post"> <table> <tr> <td> <label for="forgot-email">email:</label> </td> <td> <input type="text" name="forgot-email" id="forgot-email" /> </td>
$errors[] = 'no message provided'; } if ($errors) { Gadget::add_message(implode(', ', $errors)); } else { $insert_data = array('Email' => $email_addr, 'Message' => $message); $dbi->insert('Contact', $insert_data); //$to_address = '*****@*****.**'; $to_address = '*****@*****.**'; $email = new Email(true); $email->AddAddress($to_address); $email->Subject = 'Contact Us Submission'; $body = '<p>The following message was submitted from the Contact Us form by ' . $email_addr . ':</p>' . htmlspecialchars($message); $email->MsgHTML($body); $email->Send(); Gadget::add_message('Your message has been submitted.'); } } $js = <<<EOT function validate_form(){ if(!\$('#contact-email').val()){ alert('Please enter an email address.'); return false; } if(!checkEmail(\$('#contact-email').val())){ alert('Please enter a valid email address.'); return false; } if(!\$('#contact-message').val()){ alert('Please enter a message.'); return false;
/** * @author Brad Jorgensen <*****@*****.**> */ require 'includes/global.inc.php'; debug(0, 0, 0); Access::protect_page(); $page = Page::get_from_alias('preferences'); $page->add_js('/js/myorder.js'); $page->add_js('slider'); $krustomer = Customer::get_current(); if ($_POST) { $errors = array(); $data = clean_input($_POST); if ($errors) { Gadget::add_message(implode(', ', $errors)); } else { //@todo this needs protection //@todo put this stuff in a class foreach ($data as $key => $value) { if (strpos($key, 'like_') === 0) { $insert_data = array('LikeID' => (int) substr($key, 5), 'CustomerID' => $_SESSION['CustomerID'], 'Value' => (int) $value); $odu = array('Value' => (int) $value); $dbi->insert('CustomerLikes', $insert_data, $odu); } } $krustomer->Allergies = $data['Allergies']; $krustomer->Want = implode(',', clean_input($_POST['Want'])); $krustomer->DontWant = implode(',', clean_input($_POST['DontWant'])); $krustomer->Comments = $data['Comments']; $krustomer->update();
if (strpos($key, 'like_') === 0) { $insert_data = array( 'LikeID' => (int) substr($key, 5), 'CustomerID' => $_SESSION['CustomerID'], 'Value' => (int) $value, ); $odu = array( 'Value' => (int) $value, ); $dbi->insert('CustomerLikes', $insert_data, $odu); } } Gadget::add_message('Your information has been saved.'); } } require 'header.php'; ?> <div class="content-padding"> <form class="user-form" name="my-form" id="my-form" action="myorder" method="post" onsubmit="return validateForm();"> <table> <tbody> <tr> <td colspan="2"> <h2> Contact Information </h2> </td>
if ($errors) { Gadget::add_message(implode(', ', $errors)); } else { switch (Access::log_user_in($email, $password)) { case 0: // shouldn't get here, should be redirected $message = 'You have been logged in.'; break; case 1: $message = 'incorrect password'; break; case 2: $message = 'email address not found'; break; } Gadget::add_message($message); } } require 'header.php'; ?> <style type="text/css"> #login_wrapper { width: 90%; margin-left: auto; margin-right: auto; } #login_left { width: 45%; border-right: 1px solid #9cc2b9; float: left;
$PromoCodeID = $PromoCode->PromoCodeID; } else { $PromoCodeID = NULL; } } $_SESSION['subscription_update'] = array( 'WeeklyMeals' => (int) $_POST['WeeklyMeals'], 'WeeklyReg' => (int) $_POST['WeeklyReg'], 'WeeklyVeg' => (int) $_POST['WeeklyVeg'], 'PromoCodeID' => $PromoCodeID, ); Gadget::redirect('preferences'); } Gadget::add_message('Please select the number of meals and servings per week.'); } $page = Page::get_from_alias('tasting'); $page->add_css('/css/menu.css'); $page->add_js('/js/tasting.js'); require 'header.php'; ?> <div id="content-header"> <div id="content-header-left"> <p class="header-p"> our chef selects meals for you<br /> from weekly menu plus new exclusive dishes<br /> 15% off our regular pricing, 4-week minimum </p>
), )); if($validation->errors){ Gadget::add_message($validation->get_errors()); }else{ $insert_data = array( 'Email' => $email, 'Password' => Access::create_hash($password, 'strong'), 'DeliveryZip' => $zip ); $dbi->insert('Customers', $insert_data); if($dbi->errno == 1062){ Gadget::add_message('This email address is already registered.'); }else{ Gadget::add_message('Your account has been created.'); Gadget::redirect('login'); } } } require 'header.php'; ?> <div class="content-padding"> <form class="user-form" name="register-form" id="register-form" action="register" method="post" onsubmit="return validateForm();"> <table> <tr> <td> <label for="register-email">email:</label> </td> <td>