if (tep_not_null($account_number)) { $where_filter .= " AND account_number\t=\t'" . $account_number . "' "; } if (tep_not_null($keyword)) { $where_filter .= " AND (firstname LIKE '" . $keyword . "%' OR lastname LIKE '" . keyword . "%' OR account_name LIKE '" . $keyword . "%')"; } postAssign($smarty); break; } $smarty->assign('link_user', get_admin_link(PAGE_USERS, tep_get_all_get_params(array('action', 'module', 'page')))); $sql_user = "******" . _TABLE_USERS . " WHERE 1 {$where_filter} "; $sql_user_page = "SELECT * FROM " . _TABLE_USERS . " WHERE 1 {$where_filter} ORDER BY signup_date DESC, account_name ASC, firstname ASC, lastname ASC "; $user_query = db_query($sql_user); $user_numbers = db_num_rows($user_query); $userpage =& new Paginator($_GET['pg'], $user_numbers); $userpage->set_Limit(25); $userpage->pagename = get_admin_link(PAGE_USERS, tep_get_all_get_params(array('pg', 'x', 'y', 'action', 'module', 'page'))); $userpage->set_Links(6); $limit1 = $userpage->getRange1(); $limit2 = $userpage->getRange2(); $sql_user_page .= " LIMIT {$limit1}, {$limit2}"; $user_page_query = db_query($sql_user_page); // get smarty user list $user_array = array(); while ($user = db_fetch_array($user_page_query)) { $users_array[] = $user; } $smarty->assign('page_links', $userpage->getPageLinks()); $smarty->assign('users', $users_array); // get all user users $_html_main_content = $smarty->fetch('users/list.html');
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getDeleteForm': $adminid = $_POST['adminid']; $admininfo = db_fetch_array(db_query("SELECT admin_id, admin_username FROM " . _TABLE_ADMINS . " WHERE admin_id='" . $adminid . "'")); $smarty->assign('link_admins', get_admin_link(PAGE_ADMIN_ACCOUNTS, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('admininfo', $admininfo); echo $smarty->fetch('admins/deleteform.html'); break; } die; }
<?php include 'includes/admin_login_check.php'; $smarty->assign('link_new_language', get_admin_link(PAGE_LANGUAGE_NEW, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('back_link', get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page')))); $status_options = array(0 => TEXT_INACTIVE, 1 => TEXT_ACTIVE); $smarty->assign('status_options', $status_options); if ($_POST['action'] == 'process') { $language_code = db_prepare_input($_POST['language_code']); $validator->validateGeneral('Language Name', $language_name, _ERROR_FIELD_EMPTY); $validator->validateGeneral('Language Code', $language_code, _ERROR_FIELD_EMPTY); $validator->validateGeneral('Language Directory', $language_directory, _ERROR_FIELD_EMPTY); $validator->validateGeneral('Language Icon', $language_image, _ERROR_FIELD_EMPTY); if (count($validator->errors) == 0) { // create new member $language_data_array = array('language_code' => $language_code, 'language_name' => $language_name, 'language_directory' => $language_directory, 'language_image' => $language_image, 'language_status' => $language_status, 'sort_order' => $sort_order); db_perform(_TABLE_LANGUAGES, $language_data_array); tep_redirect(get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page')))); } else { postAssign($smarty); $smarty->assign('validerrors', $validator->errors); } } $_html_main_content = $smarty->fetch('langs/new.html');
echo MNU_ADMIN_USERS; ?> </a></li> </ul> </div> <div align="center">Payment</div> <ul id="leftMenu"> <li><a href="<?php echo get_admin_link(PAGE_CURRENCIES); ?> "><?php echo MNU_ADMIN_CURRENCIES; ?> </a></li> <li><a href="<?php echo get_admin_link(PAGE_ADD_FUNDS); ?> "><?php echo MNU_ADMIN_ADD_FUNDS; ?> </a></li> <li><a href="<?php echo get_admin_link(PAGE_TRANSACTIONS); ?> "><?php echo MNU_ADMIN_TRANSACTIONS; ?> </a></li> </ul> </div> </div>
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getDeleteForm': $faqid = $_POST['faqid']; $faqinfo = db_fetch_array(db_query("SELECT faqs_id, faqs_name FROM " . _TABLE_FAQS_DESCRIPTION . " WHERE faqs_id='" . $faqid . "' AND language_id='" . $_SESSION['languages_id'] . "'")); $smarty->assign('link_faqs', get_admin_link(PAGE_FAQS, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('faqinfo', $faqinfo); echo $smarty->fetch('faqs/deleteform.html'); break; } die; }
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getDeleteForm': $emailtemplateid = $_POST['emailtemplateid']; $emailtemplateinfo = db_fetch_array(db_query("SELECT emailtemplates_id, emailtemplate_title FROM " . _TABLE_EMAILTEMPLATES_DESCRIPTION . " WHERE emailtemplates_id='" . $emailtemplateid . "' AND language_id='" . $_SESSION['languages_id'] . "'")); $smarty->assign('link_emailtemplates', get_admin_link(PAGE_EMAILTEMPLATES, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('emailtemplateinfo', $emailtemplateinfo); echo $smarty->fetch('emailtemplates/deleteform.html'); break; } die; }
$is_topic = (int) $_POST['is_topic']; $validator->validateGeneral('Template Key', $emailtemplate_key, _ERROR_FIELD_EMPTY); $validator->validateGeneral('Template Title', $emailtemplates_title[$languages_id], _ERROR_FIELD_EMPTY); $validator->validateGeneral('Template Subject', $emailtemplates_subject[$languages_id], _ERROR_FIELD_EMPTY); $validator->validateGeneral('Template Content', $emailtemplates_content[$languages_id], _ERROR_FIELD_EMPTY); if (count($validator->errors) == 0) { // create new member $emailtemplate_data_array = array('emailtemplate_key' => $emailtemplate_key, 'emailtemplate_status' => $emailtemplate_status, 'is_html_email' => $is_html_email); db_perform(_TABLE_EMAILTEMPLATES, $emailtemplate_data_array, 'update', " emailtemplates_id='" . $emailtemplateID . "'"); // emailtemplate description for ($i = 0; $i < count($languages); $i++) { $lang_id = $languages[$i]['id']; $emailtemplate_description_data_array = array('language_id' => $lang_id, 'emailtemplate_title' => $emailtemplates_title[$lang_id], 'emailtemplate_subject' => $emailtemplates_subject[$lang_id], 'emailtemplate_content' => $emailtemplates_content[$lang_id]); db_perform(_TABLE_EMAILTEMPLATES_DESCRIPTION, $emailtemplate_description_data_array, 'update', " emailtemplates_id='" . $emailtemplateID . "' and language_id='" . $lang_id . "'"); } tep_redirect(get_admin_link(PAGE_EMAILTEMPLATES, tep_get_all_get_params(array('action', 'module', 'page')))); } else { postAssign($smarty); for ($i = 0; $i < count($languages); $i++) { $emailtemplates_content[$languages[$i]['id']] = html_entity_decode($_POST['emailtemplates_content'][$languages[$i]['id']]); $smarty->assign('emailtemplates_content', $emailtemplates_content); $emailtemplates_usage[$languages[$i]['id']] = $_POST['emailtemplates_usage'][$languages[$i]['id']]; $smarty->assign('emailtemplates_usage', $emailtemplates_usage); $emailtemplates_subject[$languages[$i]['id']] = $_POST['emailtemplates_subject'][$languages[$i]['id']]; $smarty->assign('emailtemplates_subject', $emailtemplates_subject); $emailtemplates_title[$languages[$i]['id']] = $_POST['emailtemplates_title'][$languages[$i]['id']]; $smarty->assign('emailtemplates_title', $emailtemplates_title); } $smarty->assign('validerrors', $validator->errors); } } else {
$smarty->assign('action_link', get_admin_link(PAGE_EDIT_INFO, 'action=process&info_id=' . $info_id, '&pg=' . $pg)); $smarty->assign('back_link', get_admin_link(PAGE_INFORS, 'pg=' . $pg)); if ($_GET['action'] == 'process') { $info_key = $_POST['info_key']; $info_content = $_POST['info_content']; $validator->validateGeneral(ERROR_FIELD_KEY, $info_key, _ERROR_FIELD_EMPTY); $validator->validateGeneral('Content', $info_content, _ERROR_FIELD_EMPTY); if (!$validator->foundErrors()) { $info_data = array('info_key' => $info_key, 'info_content' => addslashes(htmlentities($info_content)), 'info_title' => addslashes(htmlentities($_POST['info_title'])), 'info_description' => $_POST['info_description'], 'info_usage' => $_POST['info_usage']); if ($info_id > 0) { // update db_perform(_TABLE_INFO_TEMPLATES, $info_data, 'update', 'info_id=' . $info_id); } else { db_perform(_TABLE_INFO_TEMPLATES, $info_data); } tep_redirect(get_admin_link(PAGE_INFORS, 'pg=' . $pg)); } else { postAssign($smarty); $smarty->assign('validerrors', $validator->errors); } } else { if ($info_id > 0) { $sql_info = "SELECT * FROM " . _TABLE_INFO_TEMPLATES . " WHERE info_id='" . $info_id . "'"; $info = db_fetch_array(db_query($sql_info)); $info['info_title'] = stripslashes($info['info_title']); $info['info_content'] = stripslashes($info['info_content']); $smarty->assign('PAGE_HEADING', HEADING_EDIT_INFO); postAssign($smarty, $info); } else { $smarty->assign('PAGE_HEADING', HEADING_NEW_INFO); }
<li class="docs_menu"><?php echo get_admin_link('system', 'System Editor', 'system'); ?> </li> <li class="docs_menu"><?php echo get_admin_link('ports', 'Port Editor', 'ports'); ?> </li> <li class="docs_menu"><?php echo get_admin_link('goods', 'Goods Editor', 'goods'); ?> </li> <li class="docs_menu"><?php echo get_admin_link('research', 'Base Research', 'research'); ?> </li> <li class="docs_menu"><?php echo get_admin_link('build', 'Base Construction', 'build'); ?> </li> <li class="docs_menu"><?php echo get_admin_link('gold', 'Gold Keys', 'gold'); ?> </li> <li class="docs_menu"><?php echo get_admin_link('news', 'News Desk', 'news'); ?> </li> </ul>
<link rel="stylesheet" type="text/css" href="templates/css/tabcontent.css"> <script type="text/javascript" src="includes/javascript/tabcontent.js"></script> <script type="text/javascript"> function getDeleteConfirmForm(security_questionid) { $.post('<?php echo get_admin_link(PAGE_SECURITY_QUESTION_AJAX, tep_get_all_get_params(array('action', 'module', 'page'))); ?> ',{action:'ajax', ajaxaction:'getDeleteForm',security_questionid:security_questionid}, function(data) { $("#ajaxContent").html(data); $("#ajaxContent").fadeIn(); } ); } // close delete new confirmform function closeConfirmForm() { $("#ajaxContent").fadeOut(); } </script> <!-- Load TinyMCE --> <script type="text/javascript" src="../includes/js/tiny_mce/jquery.tinymce.js"></script> <script type="text/javascript"> $().ready(function() { $('textarea.tinymce').tinymce({ // Location of TinyMCE script script_url : '../includes/js/tiny_mce/tiny_mce.js',
include 'includes/admin_login_check.php'; include _CLASSES_DIR . 'paginator.php'; if ($_GET['action'] == 'delete') { $info_id = $_GET['info_id']; $sql_delete = "DELETE FROM " . _TABLE_INFO_TEMPLATES . " WHERE info_id='" . $info_id . "'"; db_query($sql_delete); } $smarty->assign('link_new_info', get_admin_link(PAGE_NEW_INFO, 'pg=' . $_GET['pg'])); $smarty->assign('link_infos', get_admin_link(PAGE_INFORS, 'pg=' . $_GET['pg'])); $sql_infos = "SELECT * FROM " . _TABLE_INFO_TEMPLATES . " WHERE 1 {$where_filter} "; $sql_infos_page = "SELECT * FROM " . _TABLE_INFO_TEMPLATES . " WHERE 1 {$where_filter} ORDER BY info_key"; $infos_query = db_query($sql_infos); $info_numbers = db_num_rows($infos_query); $infopage =& new Paginator($_GET['pg'], $info_numbers); $infopage->set_Limit(20); $infopage->pagename = get_admin_link(PAGE_INFORS, tep_get_all_get_params(array('pg', 'x', 'y'))); $infopage->set_Links(6); $limit1 = $infopage->getRange1(); $limit2 = $infopage->getRange2(); $sql_infos_page .= " LIMIT {$limit1}, {$limit2}"; $info_page_query = db_query($sql_infos_page); // get smarty infos list $infos_array = array(); while ($info = db_fetch_array($info_page_query)) { $info['info_url'] = get_admin_link(PAGE_EDIT_INFO, 'info_id=' . $info['info_id']); $infos_array[] = $info; } $smarty->assign('page_links', $infopage->getPageLinks()); $smarty->assign('infors', $infos_array); $_html_main_content = $smarty->fetch('infors/list.html');
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getDeleteForm': $currencyid = $_POST['currencyid']; $currencyinfo = db_fetch_array(db_query("SELECT currencies_id, title FROM " . _TABLE_CURRENCIES . " WHERE currencies_id='" . $currencyid . "'")); $smarty->assign('link_currencies', get_admin_link(PAGE_CURRENCIES, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('currencyinfo', $currencyinfo); echo $smarty->fetch('currencies/deleteform.html'); break; } die; }
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getDeleteForm': $security_questionid = $_POST['security_questionid']; $security_questioninfo = db_fetch_array(db_query("SELECT security_questions_id, question FROM " . _TABLE_SECURITY_QUESTIONS_DESCRIPTION . " WHERE security_questions_id='" . $security_questionid . "' AND language_id='" . $_SESSION['languages_id'] . "'")); $smarty->assign('link_security_questions', get_admin_link(PAGE_SECURITY_QUESTIONS, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('security_questioninfo', $security_questioninfo); echo $smarty->fetch('security_questions/deleteform.html'); break; } die; }
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getDeleteForm': $newsid = $_POST['newsid']; $newsinfo = db_fetch_array(db_query("SELECT news_id, news_title FROM " . _TABLE_NEWS . " WHERE news_id='" . $newsid . "'")); $smarty->assign('link_news', get_admin_link(PAGE_NEWS, tep_get_all_get_params(array('action', 'module', 'page', 'news_id')))); $smarty->assign('newsinfo', $newsinfo); echo $smarty->fetch('news/deleteform.html'); break; } die; }
$lID = $_POST['lID']; $sql_delete = "DELETE FROM " . _TABLE_LANGUAGES . " WHERE language_id='" . $lID . "'"; db_query($sql_delete); $feedbackmsgs[] = TEXT_MESSAGE_LANGUAGE_DELETED; $smarty->assign('feedbackmsgs', $feedbackmsgs); break; } $smarty->assign('link_languages', get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('link_new_language', get_admin_link(PAGE_LANGUAGE_NEW, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('link_language_edit', get_admin_link(PAGE_LANGUAGE_EDIT, tep_get_all_get_params(array('action', 'module', 'page')))); $sql_languages = "SELECT * FROM " . _TABLE_LANGUAGES . " WHERE 1 {$where_filter} "; $sql_languages_page = "SELECT * FROM " . _TABLE_LANGUAGES . " WHERE 1 {$where_filter} ORDER BY sort_order, language_name ASC"; $languages_query = db_query($sql_languages); $language_numbers = db_num_rows($languages_query); $languagepage =& new Paginator($_GET['pg'], $language_numbers); $languagepage->set_Limit(20); $languagepage->pagename = get_admin_link(PAGE_LANGUAGE_ACCOUNTS, tep_get_all_get_params(array('pg', 'x', 'y'))); $languagepage->set_Links(6); $limit1 = $languagepage->getRange1(); $limit2 = $languagepage->getRange2(); $sql_languages_page .= " LIMIT {$limit1}, {$limit2}"; $language_page_query = db_query($sql_languages_page); // get smarty languages list $languages_array = array(); while ($language = db_fetch_array($language_page_query)) { $language['language_url'] = get_admin_link(PAGE_LANGUAGE_EDIT, 'language_id=' . $language['language_id']); $languages_array[] = $language; } $smarty->assign('page_links', $languagepage->getPageLinks()); $smarty->assign('languages', $languages_array); $_html_main_content = $smarty->fetch('langs/list.html');
<link rel="stylesheet" type="text/css" href="templates/css/tabcontent.css"> <script type="text/javascript" src="includes/javascript/tabcontent.js"></script> <script type="text/javascript"> function getDeleteConfirmForm(emailtemplateid) { $.post('<?php echo get_admin_link(PAGE_EMAILTEMPLATE_AJAX, tep_get_all_get_params(array('action', 'module', 'page'))); ?> ',{action:'ajax', ajaxaction:'getDeleteForm',emailtemplateid:emailtemplateid}, function(data) { $("#ajaxContent").html(data); $("#ajaxContent").fadeIn(); } ); } // close delete new confirmform function closeConfirmForm() { $("#ajaxContent").fadeOut(); } </script> <!-- Load TinyMCE --> <script type="text/javascript" src="../includes/js/tiny_mce/jquery.tinymce.js"></script> <script type="text/javascript"> $().ready(function() { $('textarea.tinymce').tinymce({ // Location of TinyMCE script script_url : '../includes/js/tiny_mce/tiny_mce.js',
db_query("DELETE FROM " . _TABLE_SECURITY_QUESTIONS . " WHERE security_questions_id='" . $security_question_id . "'"); db_query("DELETE FROM " . _TABLE_SECURITY_QUESTIONS_DESCRIPTION . " WHERE security_questions_id='" . $security_question_id . "'"); $feedbackmsgs[] = TEXT_MESSAGE_SECURITY_QUESTIONS_DELETED; $smarty->assign('feedbackmsgs', $feedbackmsgs); break; } $smarty->assign('security_questions_tree', $security_questions_tree); //Template generate $smarty->assign('link_security_questions', get_admin_link(PAGE_SECURITY_QUESTIONS, array('action', 'module', 'page'))); $smarty->assign('link_security_question_new', get_admin_link(PAGE_SECURITY_QUESTION_NEW, tep_get_all_get_params(array('action', 'module', 'page'))) . '&action=new'); $smarty->assign('link_security_question_edit', get_admin_link(PAGE_SECURITY_QUESTION_EDIT, tep_get_all_get_params(array('action', 'module', 'page')))); $sql_security_questions = "select c.security_questions_id, cd.question, sort_order, status from " . _TABLE_SECURITY_QUESTIONS . " c, " . _TABLE_SECURITY_QUESTIONS_DESCRIPTION . " cd where c.security_questions_id = cd.security_questions_id and cd.language_id = '" . (int) $_SESSION['languages_id'] . "' "; $sql_security_questions_page = $sql_security_questions . " order by cd.question "; $security_questions_query = db_query($sql_security_questions); $security_question_numbers = db_num_rows($security_questions_query); $security_questionpage =& new Paginator($_GET['pg'], $security_question_numbers); $security_questionpage->set_Limit(20); $security_questionpage->pagename = get_admin_link(PAGE_SETTINGS, tep_get_all_get_params(array('pg', 'x', 'y'))); $security_questionpage->set_Links(6); $limit1 = $security_questionpage->getRange1(); $limit2 = $security_questionpage->getRange2(); $sql_security_questions_page .= " LIMIT {$limit1}, {$limit2}"; $security_question_page_query = db_query($sql_security_questions_page); // get smarty security_questions list $security_questions_array = array(); while ($security_question = db_fetch_array($security_question_page_query)) { $security_questions_array[] = $security_question; } $smarty->assign('page_links', $security_questionpage->getPageLinks()); $smarty->assign('security_questions', $security_questions_array); $_html_main_content = $smarty->fetch('security_questions/list.html');
<table width="100%" border="0" cellpadding="0" cellspacing="0" > <tr><td class="headerbg" width="100%" ><?php if (!tep_session_is_registered('admin_login_id')) { checkAdminAutoLogin(); } else { // admin logged echo '<span style="float:right" class="whiteText"><strong>' . TEXT_WELCOME . $admin_login_username . '</strong> <a href="' . get_admin_link(PAGE_ADMIN_LOGOUT) . '" class="linkWhite">' . TEXT_LOGOUT . '</a></span>'; } ?> </td></tr> </table>
case 'deleteconfirm': $admin_id = $_GET['adminid']; $sql_delete = "DELETE FROM " . _TABLE_ADMINS . " WHERE admin_id='" . $admin_id . "'"; db_query($sql_delete); $feedbackmsgs[] = TEXT_MESSAGE_ADMIN_DELETED; $smarty->assign('feedbackmsgs', $feedbackmsgs); break; } $smarty->assign('link_new_admin', get_admin_link(PAGE_ADMIN_NEW, 'pg=' . $_GET['pg'])); $smarty->assign('link_admins', get_admin_link(PAGE_ADMIN_ACCOUNTS, 'pg=' . $_GET['pg'])); $sql_admins = "SELECT * FROM " . _TABLE_ADMINS . " WHERE 1 {$where_filter} "; $sql_admins_page = "SELECT * FROM " . _TABLE_ADMINS . " WHERE 1 {$where_filter} ORDER BY admin_id ASC"; $admins_query = db_query($sql_admins); $admin_numbers = db_num_rows($admins_query); $adminpage =& new Paginator($_GET['pg'], $admin_numbers); $adminpage->set_Limit(20); $adminpage->pagename = get_admin_link(PAGE_ADMIN_ACCOUNTS, tep_get_all_get_params(array('pg', 'x', 'y'))); $adminpage->set_Links(6); $limit1 = $adminpage->getRange1(); $limit2 = $adminpage->getRange2(); $sql_admins_page .= " LIMIT {$limit1}, {$limit2}"; $admin_page_query = db_query($sql_admins_page); // get smarty admins list $admins_array = array(); while ($admin = db_fetch_array($admin_page_query)) { $admin['admin_url'] = get_admin_link(PAGE_ADMIN_EDIT, 'admin_id=' . $admin['admin_id']); $admins_array[] = $admin; } $smarty->assign('page_links', $adminpage->getPageLinks()); $smarty->assign('admins', $admins_array); $_html_main_content = $smarty->fetch('admins/list.html');
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getDeleteForm': $languageid = $_POST['languageid']; $languageinfo = db_fetch_array(db_query("SELECT language_id, language_name FROM " . _TABLE_LANGUAGES . " WHERE language_id='" . $languageid . "'")); $smarty->assign('link_languages', get_admin_link(PAGE_LANGUAGES, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('languageinfo', $languageinfo); echo $smarty->fetch('langs/deleteform.html'); break; } die; }
<script type="text/javascript"> function getDeleteConfirmForm(languageid) { $.post('<?php echo get_admin_link(PAGE_LANGUAGE_AJAX, tep_get_all_get_params(array('action', 'module', 'page'))); ?> ',{action:'ajax', ajaxaction:'getDeleteForm',languageid:languageid}, function(data) { $("#ajaxContent").html(data); $("#ajaxContent").fadeIn(); } ); } // close delete new confirmform function closeConfirmForm() { $("#ajaxContent").fadeOut(); } </script>
// password passed ==> correct account $admin_login_id = $admin_info['admin_id']; $admin_login_username = $admin_info['admin_username']; tep_session_register('admin_login_id'); tep_session_register('admin_login_username'); // set cookies for autologin if ($_POST['remember_me']) { /// tep_setcookie("login_email",$login_email , time()+60*60*24*100, HTTP_COOKIE_PATH, HTTP_COOKIE_DOMAIN); // tep_setcookie("login_password",$login_password, time()+60*60*24*100, HTTP_COOKIE_PATH, HTTP_COOKIE_DOMAIN); setcookie("admin_login_username", $login_username, time() + 60 * 60 * 24 * 30, "/"); setcookie("admin_login_password", $login_password, time() + 60 * 60 * 24 * 30, "/"); } if (sizeof($navigation->snapshot) > 0) { $origin_href = get_admin_link($navigation->snapshot['page'], tep_array_to_string($navigation->snapshot['get'], array(tep_session_name())), $navigation->snapshot['mode']); $navigation->clear_snapshot(); tep_redirect($origin_href); } else { tep_redirect(get_admin_link(PAGE_DEFAULT)); } } } else { $validator->addError('Account', ERROR_INVALID_ACCOUNT); } if (count($validator->errors) == 0) { // create new admin } else { postAssign($smarty); $smarty->assign('validerrors', $validator->errors); } } $_html_main_content = $smarty->fetch('home/login.html');
if (tep_not_null($to_account)) { $where_filter .= " AND to_account LIKE '" . $to_account . "%' "; } if (tep_not_null($note)) { $where_filter .= " AND transaction_memo LIKE '%" . $note . "%' "; } postAssign($smarty); break; } $smarty->assign('link_transaction', get_admin_link(PAGE_TRANSACTIONS, tep_get_all_get_params(array('action', 'module', 'page')))); $sql_transaction = "SELECT * FROM " . _TABLE_TRANSACTIONS . " WHERE 1 {$where_filter} "; $sql_transaction_page = "SELECT * FROM " . _TABLE_TRANSACTIONS . " WHERE 1 {$where_filter} ORDER BY transaction_time DESC, transaction_id DESC"; $transaction_query = db_query($sql_transaction); $transaction_numbers = db_num_rows($transaction_query); $transactionpage =& new Paginator($_GET['pg'], $transaction_numbers); $transactionpage->set_Limit(25); $transactionpage->pagename = get_admin_link(PAGE_TRANSACTIONS, tep_get_all_get_params(array('pg', 'x', 'y', 'action', 'module', 'page'))); $transactionpage->set_Links(6); $limit1 = $transactionpage->getRange1(); $limit2 = $transactionpage->getRange2(); $sql_transaction_page .= " LIMIT {$limit1}, {$limit2}"; $transaction_page_query = db_query($sql_transaction_page); // get smarty transaction list $transaction_array = array(); while ($transaction = db_fetch_array($transaction_page_query)) { $transactions_array[] = $transaction; } $smarty->assign('page_links', $transactionpage->getPageLinks()); $smarty->assign('transactions', $transactions_array); // get all transaction transactions $_html_main_content = $smarty->fetch('transactions/history.html');
<?php if ($_POST['action'] == 'ajax') { $ajaxaction = $_POST['ajaxaction']; switch ($ajaxaction) { case 'getEditForm': $configid = $_POST['configid']; $configinfo = db_fetch_array(db_query("SELECT * FROM " . _TABLE_CONFIGURATIONS . " WHERE configuration_id='" . $configid . "'")); if (tep_not_null($configinfo['set_function'])) { eval('$value_field = ' . $configinfo['set_function'] . '"' . htmlspecialchars($configinfo['configuration_value']) . '");'); } else { $value_field = tep_draw_input_field('configuration_value', $configinfo['configuration_value']); } $smarty->assign('configuration_value_field_html', $value_field); $smarty->assign('link_settings', get_admin_link(PAGE_SETTINGS, tep_get_all_get_params(array('action', 'module', 'page', 'cID')))); $smarty->assign('configinfo', $configinfo); echo $smarty->fetch('settings/ajaxedit.html'); break; } die; }
include 'includes/admin_login_check.php'; $smarty->assign('link_new_security_question', get_admin_link(PAGE_SECURITY_QUESTION_NEW, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('back_link', get_admin_link(PAGE_SECURITY_QUESTIONS, tep_get_all_get_params(array('action', 'module', 'page')))); $status_options = array(0 => TEXT_INACTIVE, 1 => TEXT_ACTIVE); $smarty->assign('status_options', $status_options); $languages = get_all_languages(); $smarty->assign('languages', $languages); if ($_POST['action'] == 'process') { $security_questions_name = db_prepare_input($_POST['security_questions_name']); $status = isset($_POST['status']) ? (int) $_POST['status'] : 1; // active by default $sort_order = (int) $_POST['sort_order']; $validator->validateGeneral('Faq Name', $security_questions_name[$_SESSION['languages_id']], _ERROR_FIELD_EMPTY); if (count($validator->errors) == 0) { // create new member $security_question_data_array = array('status' => $status, 'sort_order' => $sort_order); db_perform(_TABLE_SECURITY_QUESTIONS, $security_question_data_array); $security_question_id = db_insert_id(); // security_question description for ($i = 0; $i < count($languages); $i++) { $lang_id = $languages[$i]['id']; $security_question_description_data_array = array('language_id' => $lang_id, 'security_questions_id' => $security_question_id, 'question' => $security_questions_name[$lang_id]); db_perform(_TABLE_SECURITY_QUESTIONS_DESCRIPTION, $security_question_description_data_array); } tep_redirect(get_admin_link(PAGE_SECURITY_QUESTIONS, tep_get_all_get_params(array('action', 'module', 'page')))); } else { postAssign($smarty); $smarty->assign('validerrors', $validator->errors); } } $_html_main_content = $smarty->fetch('security_questions/new.html');
$sql_delete = "DELETE FROM " . _TABLE_NEWS . " WHERE news_id='" . $news_id . "'"; db_query($sql_delete); $feedbackmsgs[] = TEXT_MESSAGE_NEWS_DELETED; $smarty->assign('feedbackmsgs', $feedbackmsgs); break; } $smarty->assign('link_new_news', get_admin_link(PAGE_NEWS_NEW, 'pg=' . $_GET['pg'])); $smarty->assign('link_news', get_admin_link(PAGE_NEWS, 'pg=' . $_GET['pg'])); $smarty->assign('link_update_news', get_admin_link(PAGE_NEWS, 'action=update&pg=' . $_GET['pg'])); $sql_news = "SELECT * FROM " . _TABLE_NEWS . " WHERE 1 {$where_filter} "; $sql_news_page = "SELECT * FROM " . _TABLE_NEWS . " WHERE 1 {$where_filter} ORDER BY news_date DESC, news_id DESC, news_title ASC"; $news_query = db_query($sql_news); $news_numbers = db_num_rows($news_query); $newspage =& new Paginator($_GET['pg'], $news_numbers); $newspage->set_Limit(20); $newspage->pagename = get_admin_link(PAGE_NEWS, tep_get_all_get_params(array('pg', 'x', 'y'))); $newspage->set_Links(6); $limit1 = $newspage->getRange1(); $limit2 = $newspage->getRange2(); $sql_news_page .= " LIMIT {$limit1}, {$limit2}"; $news_page_query = db_query($sql_news_page); // get smarty news list $news_array = array(); while ($news = db_fetch_array($news_page_query)) { $news['news_url'] = get_admin_link(PAGE_NEWS_EDIT, 'news_id=' . $news['news_id']); $news['news_date'] = date('d M Y', strtotime($news['news_date'])); $news_array[] = $news; } $smarty->assign('page_links', $newspage->getPageLinks()); $smarty->assign('news', $news_array); $_html_main_content = $smarty->fetch('news/list.html');
} if ($SESSION_USER_AGENT != $http_user_agent) { tep_session_destroy(); tep_redirect(get_admin_link(PAGE_LOGIN)); } } // verify the IP address if the feature is enabled if (SESSION_CHECK_IP_ADDRESS == 'True') { $ip_address = tep_get_ip_address(); if (!tep_session_is_registered('SESSION_IP_ADDRESS')) { $SESSION_IP_ADDRESS = $ip_address; tep_session_register('SESSION_IP_ADDRESS'); } if ($SESSION_IP_ADDRESS != $ip_address) { tep_session_destroy(); tep_redirect(get_admin_link(PAGE_LOGIN)); } } // END sesctions ---------------- // navigation history if (tep_session_is_registered('navigation')) { if (PHP_VERSION < 4) { $broken_navigation = $navigation; $navigation = new navigationHistory(); $navigation->unserialize($broken_navigation); } } else { tep_session_register('navigation'); $navigation = new navigationHistory(); } $navigation->add_current_page();
$cfgroups_query = db_query("SELECT configuration_group_id, configuration_group_title FROM " . _TABLE_CONFIGURATION_GROUPS . " WHERE visible ORDER BY sort_order, configuration_group_title "); while ($cfgroup = db_fetch_array($cfgroups_query)) { $cfgroups_array[$cfgroup['configuration_group_id']] = $cfgroup['configuration_group_title']; } $smarty->assign('cfgroups_options', $cfgroups_array); $smarty->assign('configuration_group_id', $configuration_group_id); // get current configuration group information $cfgroup_info = db_fetch_array(db_query("SELECT configuration_group_title FROM " . _TABLE_CONFIGURATION_GROUPS . " WHERE configuration_group_id='" . $configuration_group_id . "'")); $smarty->assign('cfgroupinfo', $cfgroup_info); //Template generate $smarty->assign('link_settings', get_admin_link(PAGE_SETTINGS, 'pg=' . $_GET['pg'])); $sql_settings = "SELECT * FROM " . _TABLE_CONFIGURATIONS . " WHERE configuration_group_id='" . $configuration_group_id . "' "; $sql_settings_page = $sql_settings . " ORDER BY sort_order, configuration_title ASC "; $settings_query = db_query($sql_settings); $setting_numbers = db_num_rows($settings_query); $settingpage =& new Paginator($_GET['pg'], $setting_numbers); $settingpage->set_Limit(20); $settingpage->pagename = get_admin_link(PAGE_SETTINGS, tep_get_all_get_params(array('pg', 'x', 'y'))); $settingpage->set_Links(6); $limit1 = $settingpage->getRange1(); $limit2 = $settingpage->getRange2(); $sql_settings_page .= " LIMIT {$limit1}, {$limit2}"; $setting_page_query = db_query($sql_settings_page); // get smarty settings list $settings_array = array(); while ($setting = db_fetch_array($setting_page_query)) { $settings_array[] = $setting; } $smarty->assign('page_links', $settingpage->getPageLinks()); $smarty->assign('settings', $settings_array); $_html_main_content = $smarty->fetch('settings/list.html');
if ($_GET['action'] == 'process') { $admin_username = db_prepare_input(trim($_POST['admin_username'])); $admin_contactname = db_prepare_input(trim($_POST['admin_contactname'])); $admin_email = db_prepare_input($_POST['admin_email']); $admin_password = db_prepare_input(trim($_POST['admin_password'])); $confirm_password = db_prepare_input(trim($_POST['confirm_password'])); if ($validator->validateGeneral(ERROR_FIELD_ADMIN_USERNAME, $admin_username, _ERROR_FIELD_EMPTY)) { // check if the email avaible $sql_username = "******" . _TABLE_ADMINS . " WHERE admin_username='******'"; if (db_num_rows(db_query($sql_username)) > 0) { // email existed $validator->addError(ERROR_FIELD_ADMIN_USERNAME, ERROR_ADMIN_USERNAME_NOT_AVAIABLE); } } $validator->validateGeneral(ERROR_FIELD_ADMIN_CONTACTNAME, $admin_contactname, _ERROR_FIELD_EMPTY); $validator->validateEmail(ERROR_FIELD_ADMIN_EMAIL, $admin_email, _ERROR_EMAIL_ADDRESS); if ($validator->validateMinLength(ERROR_FIELD_ADMIN_PASSWORD, $admin_password, 5, sprintf(_ERROR_MIN_LENGTH, 5, strlen($admin_password)))) { $validator->validateEqual(ERROR_FIELD_ADMIN_CONFIRM_PASSWORD, $admin_password, $confirm_password, ERROR_CONFIRM_PASSWORD); } if (count($validator->errors) == 0) { // create new member // create new admin info $admin_data_array = array('admin_username' => $admin_username, 'admin_contactname' => $admin_contactname, 'admin_email' => $admin_email, 'admin_password' => encrypt_password($admin_password)); db_perform(_TABLE_ADMINS, $admin_data_array); tep_redirect(get_admin_link(PAGE_ADMIN_ACCOUNTS, 'pg=' . $pg)); } else { postAssign($smarty); $smarty->assign('validerrors', $validator->errors); } } $_html_main_content = $smarty->fetch('admins/new.html');
$cID = $_POST['cID']; $sql_delete = "DELETE FROM " . _TABLE_CURRENCIES . " WHERE currencies_id='" . $cID . "'"; db_query($sql_delete); $feedbackmsgs[] = TEXT_MESSAGE_CURRENCY_DELETED; $smarty->assign('feedbackmsgs', $feedbackmsgs); break; } $smarty->assign('link_currencies', get_admin_link(PAGE_CURRENCIES, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('link_new_currency', get_admin_link(PAGE_CURRENCY_NEW, tep_get_all_get_params(array('action', 'module', 'page')))); $smarty->assign('link_currency_edit', get_admin_link(PAGE_CURRENCY_EDIT, tep_get_all_get_params(array('action', 'module', 'page')))); $sql_currencies = "SELECT * FROM " . _TABLE_CURRENCIES . " WHERE 1 {$where_filter} "; $sql_currencies_page = "SELECT * FROM " . _TABLE_CURRENCIES . " WHERE 1 {$where_filter} ORDER BY sort_order, title ASC"; $currencies_query = db_query($sql_currencies); $currency_numbers = db_num_rows($currencies_query); $currencypage =& new Paginator($_GET['pg'], $currency_numbers); $currencypage->set_Limit(20); $currencypage->pagename = get_admin_link(PAGE_CURRENCY_ACCOUNTS, tep_get_all_get_params(array('pg', 'x', 'y'))); $currencypage->set_Links(6); $limit1 = $currencypage->getRange1(); $limit2 = $currencypage->getRange2(); $sql_currencies_page .= " LIMIT {$limit1}, {$limit2}"; $currency_page_query = db_query($sql_currencies_page); // get smarty currencies list $currencies_array = array(); while ($currency = db_fetch_array($currency_page_query)) { $currency['currency_url'] = get_admin_link(PAGE_CURRENCY_EDIT, 'currencies_id=' . $currency['currencies_id']); $currencies_array[] = $currency; } $smarty->assign('page_links', $currencypage->getPageLinks()); $smarty->assign('currencies', $currencies_array); $_html_main_content = $smarty->fetch('currencies/list.html');