public function preparePage() { $this->P = new \HaaseIT\HCSF\CorePage($this->serviceManager); $this->P->cb_pagetype = 'content'; if (CHelper::getUserData()) { $this->P->oPayload->cl_html = $this->serviceManager->get('textcats')->T("denied_default"); } else { $this->P->cb_customcontenttemplate = 'customer/register'; $aErr = []; if (isset($_POST["doRegister"]) && $_POST["doRegister"] == 'yes') { $aErr = CHelper::validateCustomerForm(HelperConfig::$lang, $aErr); if (count($aErr) == 0) { $sql = 'SELECT cust_email FROM customer WHERE cust_email = :email'; $sEmail = filter_var(trim(Tools::getFormfield("email")), FILTER_SANITIZE_EMAIL); /** @var \PDOStatement $hResult */ $hResult = $this->serviceManager->get('db')->prepare($sql); $hResult->bindValue(':email', $sEmail, \PDO::PARAM_STR); $hResult->execute(); $iRows = $hResult->rowCount(); if ($iRows == 0) { $sEmailVerificationcode = md5($_POST["email"] . time()); $aData = ['cust_email' => $sEmail, 'cust_corp' => filter_var(trim(Tools::getFormfield("corpname")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_name' => filter_var(trim(Tools::getFormfield("name")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_street' => filter_var(trim(Tools::getFormfield("street")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_zip' => filter_var(trim(Tools::getFormfield("zip")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_town' => filter_var(trim(Tools::getFormfield("town")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_phone' => filter_var(trim(Tools::getFormfield("phone")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_cellphone' => filter_var(trim(Tools::getFormfield("cellphone")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_fax' => filter_var(trim(Tools::getFormfield("fax")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_country' => filter_var(trim(Tools::getFormfield("country")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_password' => password_hash($_POST["pwd"], PASSWORD_DEFAULT), 'cust_tosaccepted' => isset($_POST["tos"]) && $_POST["tos"] == 'y' ? 'y' : 'n', 'cust_cancellationdisclaimeraccepted' => isset($_POST["cancellationdisclaimer"]) && $_POST["cancellationdisclaimer"] == 'y' ? 'y' : 'n', 'cust_emailverified' => 'n', 'cust_emailverificationcode' => $sEmailVerificationcode, 'cust_active' => HelperConfig::$customer["register_require_manual_activation"] ? 'n' : 'y', 'cust_registrationtimestamp' => time()]; $sql = \HaaseIT\DBTools::buildPSInsertQuery($aData, 'customer'); $hResult = $this->serviceManager->get('db')->prepare($sql); foreach ($aData as $sKey => $sValue) { $hResult->bindValue(':' . $sKey, $sValue, \PDO::PARAM_STR); } $hResult->execute(); CHelper::sendVerificationMail($sEmailVerificationcode, $sEmail, $this->serviceManager, true); $aPData["showsuccessmessage"] = true; } else { $aErr["emailalreadytaken"] = true; $this->P->cb_customdata["customerform"] = CHelper::buildCustomerForm(HelperConfig::$lang, 'register', $aErr); } } else { $this->P->cb_customdata["customerform"] = CHelper::buildCustomerForm(HelperConfig::$lang, 'register', $aErr); } } else { $this->P->cb_customdata["customerform"] = CHelper::buildCustomerForm(HelperConfig::$lang, 'register'); } if (isset($aPData) && count($aPData)) { $this->P->cb_customdata["register"] = $aPData; } } }
/** * @param $aErr * @return array */ private function handleForgotPassword($aErr) { if (!filter_var($_POST["email"], FILTER_VALIDATE_EMAIL)) { $aErr[] = 'emailinvalid'; } else { $sql = 'SELECT * FROM customer WHERE cust_email = :email'; $sEmail = filter_var(trim(\HaaseIT\Tools::getFormfield("email")), FILTER_SANITIZE_EMAIL); $hResult = $this->db->prepare($sql); $hResult->bindValue(':email', $sEmail, \PDO::PARAM_STR); $hResult->execute(); if ($hResult->rowCount() != 1) { $aErr[] = 'emailunknown'; } else { $aResult = $hResult->fetch(); $iTimestamp = time(); if ($iTimestamp - HOUR < $aResult['cust_pwresettimestamp']) { // 1 hour delay between requests $aErr[] = 'pwresetstilllocked'; } else { $sResetCode = md5($aResult['cust_email'] . $iTimestamp); $aData = ['cust_pwresetcode' => $sResetCode, 'cust_pwresettimestamp' => $iTimestamp, 'cust_id' => $aResult['cust_id']]; $sql = \HaaseIT\DBTools::buildPSUpdateQuery($aData, 'customer', 'cust_id'); $hResult = $this->db->prepare($sql); foreach ($aData as $sKey => $sValue) { $hResult->bindValue(':' . $sKey, $sValue); } $hResult->execute(); $sTargetAddress = $aResult['cust_email']; $sSubject = $this->textcats->T("forgotpw_mail_subject"); $sMessage = $this->textcats->T("forgotpw_mail_text1"); $sMessage .= "<br><br>" . '<a href="http' . (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == 'on' ? 's' : '') . '://'; $sMessage .= $_SERVER["SERVER_NAME"] . '/_misc/rp.html?key=' . $sResetCode . '&email=' . $sTargetAddress . '">'; $sMessage .= 'http' . (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == 'on' ? 's' : '') . '://'; $sMessage .= $_SERVER["SERVER_NAME"] . '/_misc/rp.html?key=' . $sResetCode . '&email=' . $sTargetAddress . '</a>'; $sMessage .= '<br><br>' . $this->textcats->T("forgotpw_mail_text2"); \HaaseIT\HCSF\Helper::mailWrapper($sTargetAddress, $sSubject, $sMessage); } } } return $aErr; }
/** * */ public function preparePage() { $this->P = new \HaaseIT\HCSF\CorePage($this->serviceManager); $this->P->cb_pagetype = 'content'; if (\HaaseIT\HCSF\Customer\Helper::getUserData()) { $this->P->oPayload->cl_html = $this->textcats->T("denied_default"); } else { if (!isset($_GET["key"]) || !isset($_GET["email"]) || trim($_GET["key"]) == '' || trim($_GET["email"]) == '' || !\filter_var($_GET["email"], FILTER_VALIDATE_EMAIL)) { $this->P->oPayload->cl_html = $this->textcats->T("denied_default"); } else { $sql = 'SELECT * FROM customer WHERE cust_email = :email AND cust_pwresetcode = :pwresetcode AND cust_pwresetcode != \'\''; $sEmail = filter_var(trim(Tools::getFormfield("email")), FILTER_SANITIZE_EMAIL); $hResult = $this->db->prepare($sql); $hResult->bindValue(':email', $sEmail, \PDO::PARAM_STR); $hResult->bindValue(':pwresetcode', filter_var(trim(Tools::getFormfield("key")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), \PDO::PARAM_STR); $hResult->execute(); if ($hResult->rowCount() != 1) { $this->P->oPayload->cl_html = $this->textcats->T("denied_default"); } else { $aErr = []; $aResult = $hResult->fetch(); $iTimestamp = time(); if ($aResult['cust_pwresettimestamp'] < $iTimestamp - DAY) { $this->P->oPayload->cl_html = $this->textcats->T("pwreset_error_expired"); } else { $this->P->cb_customcontenttemplate = 'customer/resetpassword'; $this->P->cb_customdata["pwreset"]["minpwlength"] = HelperConfig::$customer["minimum_length_password"]; if (isset($_POST["doSend"]) && $_POST["doSend"] == 'yes') { $aErr = $this->handlePasswordReset($aErr, $aResult['cust_id']); if (count($aErr) == 0) { $this->P->cb_customdata["pwreset"]["showsuccessmessage"] = true; } else { $this->P->cb_customdata["pwreset"]["errors"] = $aErr; } } } } } } }
/** * */ public function preparePage() { $this->P = new \HaaseIT\HCSF\CorePage($this->serviceManager); $this->P->cb_pagetype = 'content'; $this->P->cb_subnav = 'admin'; $this->P->cb_customcontenttemplate = 'shop/shopadmin'; if (isset($_POST["change"])) { $iID = filter_var(trim(Tools::getFormfield("id")), FILTER_SANITIZE_NUMBER_INT); $aData = ['o_lastedit_timestamp' => time(), 'o_remarks_internal' => filter_var(trim(Tools::getFormfield("remarks_internal")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_transaction_no' => filter_var(trim(Tools::getFormfield("transaction_no")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_paymentcompleted' => filter_var(trim(Tools::getFormfield("order_paymentcompleted")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_ordercompleted' => filter_var(trim(Tools::getFormfield("order_completed")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_lastedit_user' => isset($_SERVER["PHP_AUTH_USER"]) ? $_SERVER["PHP_AUTH_USER"] : '', 'o_shipping_service' => filter_var(trim(Tools::getFormfield("order_shipping_service")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_shipping_trackingno' => filter_var(trim(Tools::getFormfield("order_shipping_trackingno")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_id' => $iID]; $sql = \HaaseIT\DBTools::buildPSUpdateQuery($aData, 'orders', 'o_id'); $hResult = $this->db->prepare($sql); foreach ($aData as $sKey => $sValue) { $hResult->bindValue(':' . $sKey, $sValue); } $hResult->execute(); header('Location: /_admin/shopadmin.html?action=edit&id=' . $iID); die; } $aPData = ['searchform_type' => Tools::getFormfield('type', 'openinwork'), 'searchform_fromday' => Tools::getFormfield('fromday', '01'), 'searchform_frommonth' => Tools::getFormfield('frommonth', '01'), 'searchform_fromyear' => Tools::getFormfield('fromyear', '2014'), 'searchform_today' => Tools::getFormfield('today', date("d")), 'searchform_tomonth' => Tools::getFormfield('tomonth', date("m")), 'searchform_toyear' => Tools::getFormfield('toyear', date("Y"))]; $CSA = ['list_orders' => [['title' => HardcodedText::get('shopadmin_list_customer'), 'key' => 'o_cust', 'width' => 280, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_sumnettoall'), 'key' => 'o_sumnettoall', 'width' => 75, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_orderstatus'), 'key' => 'o_order_status', 'width' => 80, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_ordertimenumber'), 'key' => 'o_ordertime_number', 'width' => 100, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_hostpayment'), 'key' => 'o_order_host_payment', 'width' => 140, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_edit'), 'key' => 'o_id', 'width' => 45, 'linked' => true, 'ltarget' => '/_admin/shopadmin.html', 'lkeyname' => 'id', 'lgetvars' => ['action' => 'edit']]], 'list_orderitems' => [['title' => HardcodedText::get('shopadmin_list_itemno'), 'key' => 'oi_itemno', 'width' => 95, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_itemname'), 'key' => 'oi_itemname', 'width' => 350, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_itemamount'), 'key' => 'oi_amount', 'width' => 50, 'linked' => false, 'style-data' => 'text-align: center;'], ['title' => HardcodedText::get('shopadmin_list_itemnetto'), 'key' => 'oi_price_netto', 'width' => 70, 'linked' => false], ['title' => HardcodedText::get('shopadmin_list_itemsumnetto'), 'key' => 'ges_netto', 'width' => 75, 'linked' => false]]]; $aShopadmin = $this->handleShopAdmin($CSA); $this->P->cb_customdata = array_merge($aPData, $aShopadmin); }
" method="post"> <select name="recipient"> <?php foreach ($C["mail_to"] as $sKey => $mValue) { echo '<option value="' . $sKey . '"' . (isset($_POST["recipient"]) && $_POST["recipient"] == $sKey ? ' selected' : '') . (is_array($mValue) || \filter_var($mValue, FILTER_VALIDATE_EMAIL) ? '' : ' disabled') . '>'; if (is_array($mValue)) { echo implode(', ', $mValue); } else { echo $mValue; } echo '</option>'; } ?> </select><br> <textarea name="mailcontent" rows="40" cols="120"><?php $sMailcontent = \HaaseIT\Tools::getFormfield('mailcontent'); if (isset($_POST["preservenbsp"]) && $_POST["preservenbsp"] == "yes") { $sMailcontent = mb_ereg_replace(' ', '&nbsp;', $sMailcontent); } echo $sMailcontent; ?> </textarea> <input type="hidden" name="action" value="send"> <br> <input type="checkbox" name="preservenbsp" id="preservenbsp" value="yes"<?php echo \HaaseIT\Tools::getCheckbox('preservenbsp', 'yes') ? ' checked' : ''; ?> ><label for="preservenbsp">Preserve &nbsp;</label> <?php if (isset($C["premailer_enable"]) && $C["premailer_enable"]) { ?>
public static function buildCustomerForm($sLang, $sPurpose = 'none', $sErr = '', $aUserData = false) { $sDefaultCountry = self::getCustomerFormDefaultValue('cust_country', "country", $aUserData); // Purposes: shoppingcart, userhome, shopadmin, editprofile, register // fv = field_value, fr = field_required $aData = ['purpose' => $sPurpose, 'errormessage' => $sErr, 'readonlycustno' => $sPurpose == 'shopadmin' ? true : false, 'readonly' => $sPurpose == 'shopadmin' || $sPurpose == 'userhome' || $sPurpose == 'editprofile' && !HelperConfig::$customer["allow_edituserprofile"] || $sPurpose == 'shoppingcart' && self::getUserData() ? true : false, 'fv_custno' => Tools::getFormfield('custno', self::getCustomerFormDefaultValue('cust_no', "custno", $aUserData), true), 'fv_email' => Tools::getFormfield('email', self::getCustomerFormDefaultValue('cust_email', "email", $aUserData), true), 'fv_corpname' => Tools::getFormfield('corpname', self::getCustomerFormDefaultValue('cust_corp', "corpname", $aUserData), true), 'fr_corpname' => HelperConfig::$customer["validate_corpname"], 'fv_name' => Tools::getFormfield('name', self::getCustomerFormDefaultValue('cust_name', "name", $aUserData), true), 'fr_name' => HelperConfig::$customer["validate_name"], 'fv_street' => Tools::getFormfield('street', self::getCustomerFormDefaultValue('cust_street', "street", $aUserData), true), 'fr_street' => HelperConfig::$customer["validate_street"], 'fv_zip' => Tools::getFormfield('zip', self::getCustomerFormDefaultValue('cust_zip', "zip", $aUserData), true), 'fr_zip' => HelperConfig::$customer["validate_zip"], 'fv_town' => Tools::getFormfield('town', self::getCustomerFormDefaultValue('cust_town', "town", $aUserData), true), 'fr_town' => HelperConfig::$customer["validate_town"], 'fv_phone' => Tools::getFormfield('phone', self::getCustomerFormDefaultValue('cust_phone', "phone", $aUserData), true), 'fr_phone' => HelperConfig::$customer["validate_phone"], 'fv_cellphone' => Tools::getFormfield('cellphone', self::getCustomerFormDefaultValue('cust_cellphone', "cellphone", $aUserData), true), 'fr_cellphone' => HelperConfig::$customer["validate_cellphone"], 'fv_fax' => Tools::getFormfield('fax', self::getCustomerFormDefaultValue('cust_fax', "fax", $aUserData), true), 'fr_fax' => HelperConfig::$customer["validate_fax"], 'fv_country' => Tools::getFormfield('country', $sDefaultCountry ? $sDefaultCountry : self::getDefaultCountryByConfig($sLang), true), 'fr_country' => HelperConfig::$customer["validate_country"]]; if ($sPurpose == 'admin') { $aData["fv_custgroups"] = HelperConfig::$customer["customer_groups"]; $aData["fv_custgroup_selected"] = Tools::getFormfield('custgroup', self::getUserData('cust_group', $aUserData), true); } elseif ($sPurpose == 'shopadmin') { $aData["fv_custgroup"] = ''; if (isset(HelperConfig::$customer["customer_groups"][self::getUserData('cust_group', $aUserData)])) { $aData["fv_custgroup"] = HelperConfig::$customer["customer_groups"][self::getUserData('cust_group', $aUserData)]; } } if ($sPurpose == 'admin' || $sPurpose == 'register' || $sPurpose == 'editprofile') { $aData["fv_pwd"] = $sPurpose == 'admin' || $sPurpose == 'editprofile' ? '' : Tools::getFormfield('pwd', ''); $aData["fv_pwdc"] = $sPurpose == 'admin' || $sPurpose == 'editprofile' ? '' : Tools::getFormfield('pwdc', ''); } if ($sPurpose == 'shoppingcart') { $sRememberedRemarks = ''; if (isset($_SESSION["formsave_addrform"]["remarks"])) { $sRememberedRemarks = $_SESSION["formsave_addrform"]["remarks"]; } $aData["fv_remarks"] = Tools::getFormfield('remarks', $sRememberedRemarks, true); } if ($sPurpose == 'shoppingcart' || $sPurpose == 'register') { if (!self::getUserData()) { $aData["fv_tos"] = Tools::getCheckbox('tos', 'y'); $aData["fv_cancellationdisclaimer"] = Tools::getCheckbox('cancellationdisclaimer', 'y'); } } if ($sPurpose == 'shoppingcart') { $aData["fv_paymentmethods"] = HelperConfig::$shop["paymentmethods"]; $aData["fv_paymentmethod"] = Tools::getFormfield('paymentmethod', ''); } if ($sPurpose == 'admin') { $aData["fv_active"] = self::getUserData('cust_active', $aUserData) == 'y' ? true : false; $aData["fv_emailverified"] = self::getUserData('cust_emailverified', $aUserData) == 'y' ? true : false; } return $aData; }
public static function getShippingcost() { $fShippingcost = HelperConfig::$shop["shippingcoststandardrate"]; $sCountry = CHelper::getDefaultCountryByConfig(HelperConfig::$lang); if (isset($_SESSION["user"]["cust_country"])) { $sCountry = $_SESSION["user"]["cust_country"]; } elseif (isset($_POST["doCheckout"]) && $_POST["doCheckout"] == 'yes' && isset($_POST["country"])) { $sCountry = trim(\HaaseIT\Tools::getFormfield("country")); } elseif (isset($_SESSION["formsave_addrform"]["country"])) { $sCountry = $_SESSION["formsave_addrform"]["country"]; } foreach (HelperConfig::$shop["shippingcosts"] as $aValue) { if (isset($aValue["countries"][$sCountry])) { $fShippingcost = $aValue["cost"]; break; } } return $fShippingcost; }
/** * */ public function preparePage() { $this->P = new \HaaseIT\HCSF\CorePage($this->serviceManager); $this->P->cb_pagetype = 'content'; if (!CHelper::getUserData()) { $this->P->oPayload->cl_html = $this->textcats->T("denied_notloggedin"); } else { $this->P->cb_customcontenttemplate = 'customer/customerhome'; $aPData["display_logingreeting"] = false; if (isset($_GET["login"]) && $_GET["login"]) { $aPData["display_logingreeting"] = true; } if (isset($_GET["editprofile"])) { $sErr = ''; if (isset($_POST["doEdit"]) && $_POST["doEdit"] == 'yes') { $sql = 'SELECT ' . DB_ADDRESSFIELDS . ' FROM customer WHERE cust_id != :id AND cust_email = :email'; $sEmail = filter_var(trim(Tools::getFormfield("email")), FILTER_SANITIZE_EMAIL); $hResult = $this->db->prepare($sql); $hResult->bindValue(':id', $_SESSION["user"]['cust_id'], \PDO::PARAM_INT); $hResult->bindValue(':email', $sEmail, \PDO::PARAM_STR); $hResult->execute(); $iRows = $hResult->rowCount(); if ($iRows == 1) { $sErr .= $this->textcats->T("userprofile_emailalreadyinuse") . '<br>'; } $sErr = CHelper::validateCustomerForm(HelperConfig::$lang, $sErr, true); if ($sErr == '') { if (HelperConfig::$customer["allow_edituserprofile"]) { $aData = ['cust_corp' => filter_var(trim(Tools::getFormfield("corpname")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_name' => filter_var(trim(Tools::getFormfield("name")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_street' => filter_var(trim(Tools::getFormfield("street")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_zip' => filter_var(trim(Tools::getFormfield("zip")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_town' => filter_var(trim(Tools::getFormfield("town")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_phone' => filter_var(trim(Tools::getFormfield("phone")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_cellphone' => filter_var(trim(Tools::getFormfield("cellphone")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_fax' => filter_var(trim(Tools::getFormfield("fax")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'cust_country' => filter_var(trim(Tools::getFormfield("country")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW)]; } if (isset($_POST["pwd"]) && $_POST["pwd"] != '') { $aData['cust_password'] = password_hash($_POST["pwd"], PASSWORD_DEFAULT); $aPData["infopasswordchanged"] = true; } $aData['cust_id'] = $_SESSION["user"]['cust_id']; if (count($aData) > 1) { $sql = \HaaseIT\DBTools::buildPSUpdateQuery($aData, 'customer', 'cust_id'); $hResult = $this->db->prepare($sql); foreach ($aData as $sKey => $sValue) { $hResult->bindValue(':' . $sKey, $sValue); } $hResult->execute(); $aPData["infochangessaved"] = true; } else { $aPData["infonothingchanged"] = true; } } } $this->P->cb_customdata["customerform"] = CHelper::buildCustomerForm(HelperConfig::$lang, 'editprofile', $sErr); //if (HelperConfig::$customer["allow_edituserprofile"]) $P["lang"]["cl_html"] .= '<br>'.$this->textcats->T("userprofile_infoeditemail"); // Future implementation } else { $this->P->cb_customdata["customerform"] = CHelper::buildCustomerForm(HelperConfig::$lang, 'userhome'); } $aPData["showprofilelinks"] = false; if (!isset($_GET["editprofile"])) { $aPData["showprofilelinks"] = true; } if (isset($aPData) && count($aPData)) { $this->P->cb_customdata["userhome"] = $aPData; } } }
/** * @return array */ private function prepareDataOrder() { return ['o_custno' => filter_var(trim(Tools::getFormfield("custno")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_email' => filter_var(trim(Tools::getFormfield("email")), FILTER_SANITIZE_EMAIL), 'o_corpname' => filter_var(trim(Tools::getFormfield("corpname")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_name' => filter_var(trim(Tools::getFormfield("name")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_street' => filter_var(trim(Tools::getFormfield("street")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_zip' => filter_var(trim(Tools::getFormfield("zip")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_town' => filter_var(trim(Tools::getFormfield("town")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_phone' => filter_var(trim(Tools::getFormfield("phone")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_cellphone' => filter_var(trim(Tools::getFormfield("cellphone")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_fax' => filter_var(trim(Tools::getFormfield("fax")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_country' => filter_var(trim(Tools::getFormfield("country")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_group' => trim(CHelper::getUserData('cust_group')), 'o_remarks' => filter_var(trim(Tools::getFormfield("remarks")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_tos' => isset($this->post["tos"]) && $this->post["tos"] == 'y' || CHelper::getUserData() ? 'y' : 'n', 'o_cancellationdisclaimer' => isset($this->post["cancellationdisclaimer"]) && $this->post["cancellationdisclaimer"] == 'y' || CHelper::getUserData() ? 'y' : 'n', 'o_paymentmethod' => filter_var(trim(Tools::getFormfield("paymentmethod")), FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW), 'o_sumvoll' => $_SESSION["cartpricesums"]["sumvoll"], 'o_sumerm' => $_SESSION["cartpricesums"]["sumerm"], 'o_sumnettoall' => $_SESSION["cartpricesums"]["sumnettoall"], 'o_taxvoll' => $_SESSION["cartpricesums"]["taxvoll"], 'o_taxerm' => $_SESSION["cartpricesums"]["taxerm"], 'o_sumbruttoall' => $_SESSION["cartpricesums"]["sumbruttoall"], 'o_mindermenge' => isset($_SESSION["cartpricesums"]["mindergebuehr"]) ? $_SESSION["cartpricesums"]["mindergebuehr"] : '', 'o_shippingcost' => SHelper::getShippingcost(), 'o_orderdate' => date("Y-m-d"), 'o_ordertimestamp' => time(), 'o_authed' => CHelper::getUserData() ? 'y' : 'n', 'o_sessiondata' => serialize($_SESSION), 'o_postdata' => serialize($this->post), 'o_remote_address' => $_SERVER["REMOTE_ADDR"], 'o_ordercompleted' => 'n', 'o_paymentcompleted' => 'n', 'o_srv_hostname' => $_SERVER["SERVER_NAME"], 'o_vatfull' => HelperConfig::$shop["vat"]["full"], 'o_vatreduced' => HelperConfig::$shop["vat"]["reduced"]]; }