function smn_update_whos_online() { global $customer_id; if (smn_session_is_registered('customer_id')) { $wo_customer_id = $customer_id; $customer_query = smn_db_query("select customers_firstname, customers_lastname from " . TABLE_CUSTOMERS . " where customers_id = '" . (int) $customer_id . "'"); $customer = smn_db_fetch_array($customer_query); $wo_full_name = $customer['customers_firstname'] . ' ' . $customer['customers_lastname']; } else { $wwo_full_name = 'Guest'; } $wo_session_id = smn_session_id(); $wo_ip_address = getenv('REMOTE_ADDR'); $wo_last_page_url = getenv('REQUEST_URI'); $current_time = time(); $xx_mins_ago = $current_time - 900; // remove entries that have expired smn_db_query("delete from " . TABLE_WHOS_ONLINE . " where time_last_click < '" . $xx_mins_ago . "'"); $stored_customer_query = smn_db_query("select count(*) as count from " . TABLE_WHOS_ONLINE . " where session_id = '" . smn_db_input($wo_session_id) . "'"); $stored_customer = smn_db_fetch_array($stored_customer_query); if ($stored_customer['count'] > 0) { smn_db_query("update " . TABLE_WHOS_ONLINE . " set customer_id = '" . (int) $wo_customer_id . "', full_name = '" . smn_db_input($wo_full_name) . "', ip_address = '" . smn_db_input($wo_ip_address) . "', time_last_click = '" . smn_db_input($current_time) . "', last_page_url = '" . smn_db_input($wo_last_page_url) . "' where session_id = '" . smn_db_input($wo_session_id) . "'"); } else { smn_db_query("insert into " . TABLE_WHOS_ONLINE . " (customer_id, full_name, session_id, ip_address, time_entry, time_last_click, last_page_url) values ('" . (int) $wo_customer_id . "', '" . smn_db_input($wo_full_name) . "', '" . smn_db_input($wo_session_id) . "', '" . smn_db_input($wo_ip_address) . "', '" . smn_db_input($current_time) . "', '" . smn_db_input($current_time) . "', '" . smn_db_input($wo_last_page_url) . "')"); } }
function smn_hide_session_id() { global $session_started, $SID; if ($session_started == true && smn_not_null($SID)) { return smn_draw_hidden_field(smn_session_name(), smn_session_id()); } }
function smn_hide_session_id() { $string = ''; if (defined('SID') && smn_not_null(SID)) { $string = smn_draw_hidden_field(smn_session_name(), smn_session_id()); } return $string; }
} $boxContent .= '<a href="' . smn_href_link(FILENAME_DEFAULT, 'ID=1&manufacturers_id=' . $manufacturers['manufacturers_id']) . '">' . $manufacturers_name . '</a><br>'; } $boxContent = substr($boxContent, 0, -4); } else { // Display a drop-down $manufacturers_array = array(); if (MAX_MANUFACTURERS_LIST < 2) { $manufacturers_array[] = array('id' => '', 'text' => PULL_DOWN_DEFAULT); } while ($manufacturers = smn_db_fetch_array($manufacturers_query)) { $manufacturers_name = strlen($manufacturers['manufacturers_name']) > MAX_DISPLAY_MANUFACTURER_NAME_LEN ? substr($manufacturers['manufacturers_name'], 0, MAX_DISPLAY_MANUFACTURER_NAME_LEN) . '..' : $manufacturers['manufacturers_name']; $manufacturers_array[] = array('id' => $manufacturers['manufacturers_id'], 'text' => $manufacturers_name); } if ($session_started == true && smn_not_null($SID)) { $link = 'ID=1&' . smn_session_name() . '=' . smn_session_id(); } else { $link = 'ID=1'; } $boxContent = smn_draw_form('manufacturers', smn_href_link(FILENAME_DEFAULT, $link, 'NONSSL', false), 'get'); $boxContent .= smn_draw_pull_down_menu('manufacturers_id', $manufacturers_array, isset($_GET['manufacturers_id']) ? $_GET['manufacturers_id'] : '', 'onChange="this.form.submit();" size="' . MAX_MANUFACTURERS_LIST . '" style="width: 100%"'); $boxContent .= '</form>'; } $boxContent .= smn_hide_session_id(); if (file_exists(DIR_WS_BOX_TEMPLATES . $box_base_name . '.php')) { require DIR_WS_BOX_TEMPLATES . $box_base_name . '.php'; } else { require DEFAULT_TEMPLATENAME_BOX; } $boxContent_attributes = ''; }
// set the session name and save path smn_session_name('osCMall'); smn_session_save_path(SESSION_WRITE_DIRECTORY); // set the session cookie parameters if (function_exists('session_set_cookie_params')) { session_set_cookie_params(0, $cookie_path, $cookie_domain); } elseif (function_exists('ini_set')) { ini_set('session.cookie_lifetime', '0'); ini_set('session.cookie_path', $cookie_path); ini_set('session.cookie_domain', $cookie_domain); } // set the session ID if it exists if (isset($_POST[smn_session_name()])) { smn_session_id($_POST[smn_session_name()]); } elseif (isset($_GET[smn_session_name()])) { smn_session_id($_GET[smn_session_name()]); } // start the session $session_started = false; if (SESSION_FORCE_COOKIE_USE == 'True') { smn_setcookie('cookie_test', 'please_accept_for_session', time() + 60 * 60 * 24 * 30, $cookie_path, $cookie_domain); if (isset($HTTP_COOKIE_VARS['cookie_test'])) { smn_session_start(); $session_started = true; } } elseif (SESSION_BLOCK_SPIDERS == 'True') { $user_agent = strtolower(getenv('HTTP_USER_AGENT')); $spider_flag = false; if (smn_not_null($user_agent)) { $spiders = file(DIR_WS_INCLUDES . 'spiders.txt'); for ($i = 0, $n = sizeof($spiders); $i < $n; $i++) {
function process_button() { global $order, $currencies, $currency; global $store; switch (MODULE_PAYMENT_SECPAY_CURRENCY) { case 'Default Currency': $sec_currency = DEFAULT_CURRENCY; break; case 'Any Currency': default: $sec_currency = $currency; break; } switch (MODULE_PAYMENT_SECPAY_TEST_STATUS) { case 'Always Fail': $test_status = 'false'; break; case 'Production': $test_status = 'live'; break; case 'Always Successful': default: $test_status = 'true'; break; } $process_button_string = smn_draw_hidden_field('merchant', MODULE_PAYMENT_SECPAY_MERCHANT_ID) . smn_draw_hidden_field('trans_id', $store->get_store_name() . date('Ymdhis')) . smn_draw_hidden_field('amount', number_format($order->info['total'] * $currencies->get_value($sec_currency), $currencies->currencies[$sec_currency]['decimal_places'], '.', '')) . smn_draw_hidden_field('bill_name', $order->billing['firstname'] . ' ' . $order->billing['lastname']) . smn_draw_hidden_field('bill_addr_1', $order->billing['street_address']) . smn_draw_hidden_field('bill_addr_2', $order->billing['suburb']) . smn_draw_hidden_field('bill_city', $order->billing['city']) . smn_draw_hidden_field('bill_state', $order->billing['state']) . smn_draw_hidden_field('bill_post_code', $order->billing['postcode']) . smn_draw_hidden_field('bill_country', $order->billing['country']['title']) . smn_draw_hidden_field('bill_tel', $order->customer['telephone']) . smn_draw_hidden_field('bill_email', $order->customer['email_address']) . smn_draw_hidden_field('ship_name', $order->delivery['firstname'] . ' ' . $order->delivery['lastname']) . smn_draw_hidden_field('ship_addr_1', $order->delivery['street_address']) . smn_draw_hidden_field('ship_addr_2', $order->delivery['suburb']) . smn_draw_hidden_field('ship_city', $order->delivery['city']) . smn_draw_hidden_field('ship_state', $order->delivery['state']) . smn_draw_hidden_field('ship_post_code', $order->delivery['postcode']) . smn_draw_hidden_field('ship_country', $order->delivery['country']['title']) . smn_draw_hidden_field('currency', $sec_currency) . smn_draw_hidden_field('callback', smn_href_link(FILENAME_CHECKOUT_PROCESS, '', 'NONSSL', false) . ';' . smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code, 'NONSSL', false)) . smn_draw_hidden_field(smn_session_name(), smn_session_id()) . smn_draw_hidden_field('options', 'test_status=' . $test_status . ',dups=false,cb_post=true,cb_flds=' . smn_session_name()); return $process_button_string; }
function process_button() { global $HTTP_SERVER_VARS, $order, $customer_id; $sequence = rand(1, 1000); $process_button_string = smn_draw_hidden_field('x_Login', MODULE_PAYMENT_AUTHORIZENET_LOGIN) . smn_draw_hidden_field('x_Card_Num', $this->cc_card_number) . smn_draw_hidden_field('x_Exp_Date', $this->cc_expiry_month . substr($this->cc_expiry_year, -2)) . smn_draw_hidden_field('x_Amount', number_format($order->info['total'], 2)) . smn_draw_hidden_field('x_Relay_URL', smn_href_link(FILENAME_CHECKOUT_PROCESS, '', 'NONSSL', false)) . smn_draw_hidden_field('x_Method', MODULE_PAYMENT_AUTHORIZENET_METHOD == 'Credit Card' ? 'CC' : 'ECHECK') . smn_draw_hidden_field('x_Version', '3.0') . smn_draw_hidden_field('x_Cust_ID', $customer_id) . smn_draw_hidden_field('x_Email_Customer', MODULE_PAYMENT_AUTHORIZENET_EMAIL_CUSTOMER == 'True' ? 'TRUE' : 'FALSE') . smn_draw_hidden_field('x_first_name', $order->billing['firstname']) . smn_draw_hidden_field('x_last_name', $order->billing['lastname']) . smn_draw_hidden_field('x_address', $order->billing['street_address']) . smn_draw_hidden_field('x_city', $order->billing['city']) . smn_draw_hidden_field('x_state', $order->billing['state']) . smn_draw_hidden_field('x_zip', $order->billing['postcode']) . smn_draw_hidden_field('x_country', $order->billing['country']['title']) . smn_draw_hidden_field('x_phone', $order->customer['telephone']) . smn_draw_hidden_field('x_email', $order->customer['email_address']) . smn_draw_hidden_field('x_ship_to_first_name', $order->delivery['firstname']) . smn_draw_hidden_field('x_ship_to_last_name', $order->delivery['lastname']) . smn_draw_hidden_field('x_ship_to_address', $order->delivery['street_address']) . smn_draw_hidden_field('x_ship_to_city', $order->delivery['city']) . smn_draw_hidden_field('x_ship_to_state', $order->delivery['state']) . smn_draw_hidden_field('x_ship_to_zip', $order->delivery['postcode']) . smn_draw_hidden_field('x_ship_to_country', $order->delivery['country']['title']) . smn_draw_hidden_field('x_Customer_IP', $HTTP_SERVER_VARS['REMOTE_ADDR']) . $this->InsertFP(MODULE_PAYMENT_AUTHORIZENET_LOGIN, MODULE_PAYMENT_AUTHORIZENET_TXNKEY, number_format($order->info['total'], 2), $sequence); if (MODULE_PAYMENT_AUTHORIZENET_TESTMODE == 'Test') { $process_button_string .= smn_draw_hidden_field('x_Test_Request', 'TRUE'); } $process_button_string .= smn_draw_hidden_field(smn_session_name(), smn_session_id()); return $process_button_string; }
function post_url() { $URL = FILENAME_DEFAULT . "?ID=" . $this->store_id . "&" . smn_session_name() . "=" . smn_session_id(); if ($this->store_path != "") { $URL .= "&sp_url=" . urlencode($this->store_path); } return $URL; }