function add_cart($products_id, $qty = '1', $attributes = '', $notify = true) { global $new_products_id_in_cart, $customer_id, $_GET; $products_id = smn_get_uprid($products_id, $attributes); if ($notify == true) { $new_products_id_in_cart = $products_id; smn_session_register('new_products_id_in_cart'); } if ($this->in_cart($products_id)) { $this->update_quantity($products_id, $qty, $attributes); } else { $this->contents[] = array($products_id); $this->contents[$products_id] = array('qty' => $qty); $this->contents[$products_id]['store_id'] = (int) $_GET['ID']; // insert into database if (smn_session_is_registered('customer_id')) { smn_db_query("insert into " . TABLE_CUSTOMERS_BASKET . " (customers_id, products_id, customers_basket_quantity, customers_basket_date_added, store_id) values ('" . (int) $customer_id . "', '" . smn_db_input($products_id) . "', '" . $qty . "', '" . date('Ymd') . "', '" . smn_db_input($_GET['ID']) . "')"); } if (is_array($attributes)) { reset($attributes); while (list($option, $value) = each($attributes)) { $this->contents[$products_id]['attributes'][$option] = $value; // insert into database if (smn_session_is_registered('customer_id')) { smn_db_query("insert into " . TABLE_CUSTOMERS_BASKET_ATTRIBUTES . " (customers_id, products_id, products_options_id, products_options_value_id, store_id) values ('" . (int) $customer_id . "', '" . smn_db_input($products_id) . "', '" . (int) $option . "', '" . (int) $value . "', '" . smn_db_input($_GET['ID']) . "')"); } } } } $this->cleanup(); // assign a temporary unique ID to the order contents to prevent hack attempts during the checkout procedure $this->cartID = $this->generate_cart_id(); }
function add_session($message, $type = 'error') { global $messageToStack; if (!smn_session_is_registered('messageToStack')) { smn_session_register('messageToStack'); $messageToStack = array(); } $messageToStack[] = array('text' => $message, 'type' => $type); }
function collect_posts() { global $_POST, $customer_id, $currencies, $cc_id; if ($_POST['gv_redeem_code']) { // get some info from the coupon table $coupon_query = smn_db_query("select coupon_id, coupon_amount, coupon_type, coupon_minimum_order,uses_per_coupon, uses_per_user, restrict_to_products,restrict_to_categories from " . TABLE_COUPONS . " where coupon_code='" . $_POST['gv_redeem_code'] . "' and coupon_active='Y'"); $coupon_result = smn_db_fetch_array($coupon_query); if ($coupon_result['coupon_type'] != 'G') { if (smn_db_num_rows($coupon_query) == 0) { smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code . '&error=' . urlencode(ERROR_NO_INVALID_REDEEM_COUPON), 'NONSSL')); } $date_query = smn_db_query("select coupon_start_date from " . TABLE_COUPONS . " where coupon_start_date <= now() and coupon_code='" . $_POST['gv_redeem_code'] . "'"); if (smn_db_num_rows($date_query) == 0) { smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code . '&error=' . urlencode(ERROR_INVALID_STARTDATE_COUPON), 'NONSSL')); } $date_query = smn_db_query("select coupon_expire_date from " . TABLE_COUPONS . " where coupon_expire_date >= now() and coupon_code='" . $_POST['gv_redeem_code'] . "'"); if (smn_db_num_rows($date_query) == 0) { smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code . '&error=' . urlencode(ERROR_INVALID_FINISDATE_COUPON), 'NONSSL')); } $coupon_count = smn_db_query("select coupon_id from " . TABLE_COUPON_REDEEM_TRACK . " where coupon_id = '" . $coupon_result['coupon_id'] . "'"); $coupon_count_customer = smn_db_query("select coupon_id from " . TABLE_COUPON_REDEEM_TRACK . " where coupon_id = '" . $coupon_result['coupon_id'] . "' and customer_id = '" . $customer_id . "'"); if (smn_db_num_rows($coupon_count) >= $coupon_result['uses_per_coupon'] && $coupon_result['uses_per_coupon'] > 0) { smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code . '&error=' . urlencode(ERROR_INVALID_USES_COUPON . $coupon_result['uses_per_coupon'] . TIMES), 'NONSSL')); } if (smn_db_num_rows($coupon_count_customer) >= $coupon_result['uses_per_user'] && $coupon_result['uses_per_user'] > 0) { smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code . '&error=' . urlencode(ERROR_INVALID_USES_USER_COUPON . $coupon_result['uses_per_user'] . TIMES), 'NONSSL')); } global $order, $ot_coupon, $currency; if (!smn_session_is_registered('cc_id')) { smn_session_register('cc_id'); } $cc_id = $coupon_result['coupon_id']; $coupon_amount = smn_round($ot_coupon->pre_confirmation_check($order->info['subtotal']), $currencies->currencies[$currency]['decimal_places']); // $cc_id $coupon_amount_out = $currencies->format($coupon_amount) . ' '; if ($coupon_result['coupon_minimum_order'] > 0) { $coupon_amount_out .= 'on orders greater than ' . $currencies->format($coupon_result['coupon_minimum_order']); } if (!smn_session_is_registered('cc_id')) { smn_session_register('cc_id'); } $cc_id = $coupon_result['coupon_id']; if (strlen($cc_id) > 0 && $coupon_amount == 0) { $err_msg = ERROR_REDEEMED_AMOUNT . ERROR_REDEEMED_AMOUNT_ZERO; } else { $err_msg = ERROR_REDEEMED_AMOUNT . $coupon_amount_out; } smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code . '&error=' . urlencode($err_msg), 'NONSSL')); } // ENDIF valid coupon code } // ENDIF code entered // v5.13a If no code entered and coupon redeem button pressed, give an alarm if ($_POST['submit_redeem_coupon_x']) { smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code . '&error=' . urlencode(ERROR_NO_REDEEM_CODE), 'NONSSL')); } }
function add_cart($products_id, $qty = '1', $attributes = '', $notify = true) { global $new_products_id_in_cart, $customer_id; $products_id_string = smn_get_uprid($products_id, $attributes); $products_id = smn_get_prid($products_id_string); if (defined('MAX_QTY_IN_CART') && MAX_QTY_IN_CART > 0 && (int) $qty > MAX_QTY_IN_CART) { $qty = MAX_QTY_IN_CART; } $store_id = $this->get_store_id($products_id); if (is_numeric($products_id) && is_numeric($qty)) { $check_product_query = smn_db_query("select store_id, products_status from " . TABLE_PRODUCTS . " where products_id = '" . (int) $products_id . "'"); $check_product = smn_db_fetch_array($check_product_query); if ($check_product !== false && $check_product['products_status'] == '1') { if ($notify == true) { $new_products_id_in_cart = $products_id; smn_session_register('new_products_id_in_cart'); } if ($this->in_cart($products_id_string)) { $this->update_quantity($products_id_string, $qty, $attributes, $check_product['store_id']); } else { $this->contents[$products_id_string] = array('qty' => (int) $qty, 'store_id' => $check_product['store_id']); // insert into database if (smn_session_is_registered('customer_id')) { smn_db_query("insert into " . TABLE_CUSTOMERS_BASKET . " (store_id, customers_id, products_id, customers_basket_quantity, customers_basket_date_added) values ('" . (int) $check_product['store_id'] . "', '" . (int) $customer_id . "', '" . smn_db_input($products_id_string) . "', '" . (int) $qty . "', '" . date('Ymd') . "')"); } if (is_array($attributes)) { reset($attributes); while (list($option, $value) = each($attributes)) { $this->contents[$products_id_string]['attributes'][$option] = $value; // insert into database if (smn_session_is_registered('customer_id')) { smn_db_query("insert into " . TABLE_CUSTOMERS_BASKET_ATTRIBUTES . " (customers_id, products_id, products_options_id, products_options_value_id) values ('" . (int) $customer_id . "', '" . smn_db_input($products_id_string) . "', '" . (int) $option . "', '" . (int) $value . "')"); } } } } $this->cleanup(); // assign a temporary unique ID to the order contents to prevent hack attempts during the checkout procedure $this->cartID = $this->generate_cart_id(); } } }
function confirmation() { global $cartID, $cart_PayPal_IPN_ID, $customer_id, $languages_id, $order, $order_total_modules, $store_id, $cart; $insert_order = true; if ($insert_order == true) { $order_totals = array(); if (is_array($order_total_modules->modules)) { reset($order_total_modules->modules); while (list(, $value) = each($order_total_modules->modules)) { $class = substr($value, 0, strrpos($value, '.')); if ($GLOBALS[$class]->enabled) { for ($i = 0, $n = sizeof($GLOBALS[$class]->output); $i < $n; $i++) { if (smn_not_null($GLOBALS[$class]->output[$i]['title']) && smn_not_null($GLOBALS[$class]->output[$i]['text'])) { $order_totals[] = array('code' => $GLOBALS[$class]->code, 'title' => $GLOBALS[$class]->output[$i]['title'], 'text' => $GLOBALS[$class]->output[$i]['text'], 'value' => $GLOBALS[$class]->output[$i]['value'], 'sort_order' => $GLOBALS[$class]->sort_order); } } } } } if (ALLOW_STORE_PAYMENT == 'true') { $sql_data_array = array('store_id' => $store_id, 'customers_id' => $customer_id, 'customers_name' => $order->customer['firstname'] . ' ' . $order->customer['lastname'], 'customers_company' => $order->customer['company'], 'customers_street_address' => $order->customer['street_address'], 'customers_city' => $order->customer['city'], 'customers_postcode' => $order->customer['postcode'], 'customers_state' => $order->customer['state'], 'customers_country' => $order->customer['country']['title'], 'customers_telephone' => $order->customer['telephone'], 'customers_email_address' => $order->customer['email_address'], 'customers_address_format_id' => $order->customer['format_id'], 'delivery_name' => $order->delivery['firstname'] . ' ' . $order->delivery['lastname'], 'delivery_company' => $order->delivery['company'], 'delivery_street_address' => $order->delivery['street_address'], 'delivery_city' => $order->delivery['city'], 'delivery_postcode' => $order->delivery['postcode'], 'delivery_state' => $order->delivery['state'], 'delivery_country' => $order->delivery['country']['title'], 'delivery_address_format_id' => $order->delivery['format_id'], 'billing_name' => $order->billing['firstname'] . ' ' . $order->billing['lastname'], 'billing_company' => $order->billing['company'], 'billing_street_address' => $order->billing['street_address'], 'billing_city' => $order->billing['city'], 'billing_postcode' => $order->billing['postcode'], 'billing_state' => $order->billing['state'], 'billing_country' => $order->billing['country']['title'], 'billing_address_format_id' => $order->billing['format_id'], 'payment_method' => $order->info['payment_method'], 'cc_type' => $order->info['cc_type'], 'cc_owner' => $order->info['cc_owner'], 'cc_number' => $order->info['cc_number'], 'cc_expires' => $order->info['cc_expires'], 'date_purchased' => 'now()', 'orders_status' => $order->info['order_status'], 'currency' => $order->info['currency'], 'currency_value' => $order->info['currency_value']); //+1.4 if ($update_order) { smn_db_perform(TABLE_ORDERS, $sql_data_array, 'update', 'orders_id = "' . (int) $order_id . '"'); $insert_id = (int) $order_id; } else { //-1.4 smn_db_perform(TABLE_ORDERS, $sql_data_array); $insert_id = smn_db_insert_id(); } //1.4 $orders_invoice_id = $insert_id; for ($i = 0, $n = sizeof($order_totals); $i < $n; $i++) { $sql_data_array = array('orders_id' => $insert_id, 'title' => $order_totals[$i]['title'], 'text' => $order_totals[$i]['text'], 'value' => $order_totals[$i]['value'], 'class' => $order_totals[$i]['code'], 'sort_order' => $order_totals[$i]['sort_order']); smn_db_perform(TABLE_ORDERS_TOTAL, $sql_data_array); } //+1.4 $sql_data_array = array('orders_id' => $insert_id, 'orders_status_id' => $order->info['order_status'], 'date_added' => 'now()', 'customer_notified' => '0', 'comments' => $order->info['comments']); smn_db_perform(TABLE_ORDERS_STATUS_HISTORY, $sql_data_array); //-1.4 for ($i = 0, $n = sizeof($order->products); $i < $n; $i++) { if ($order->products[$i]['products_store_id'] == $store_id) { $sql_data_array = array('orders_id' => $insert_id, 'products_id' => smn_get_prid($order->products[$i]['id']), 'products_model' => $order->products[$i]['model'], 'products_name' => $order->products[$i]['name'], 'products_price' => $order->products[$i]['price'], 'final_price' => $order->products[$i]['final_price'], 'products_tax' => $order->products[$i]['tax'], 'products_quantity' => $order->products[$i]['qty']); smn_db_perform(TABLE_ORDERS_PRODUCTS, $sql_data_array); $order_products_id = smn_db_insert_id(); $attributes_exist = '0'; if (isset($order->products[$i]['attributes'])) { $attributes_exist = '1'; for ($j = 0, $n2 = sizeof($order->products[$i]['attributes']); $j < $n2; $j++) { if (DOWNLOAD_ENABLED == 'true') { $attributes_query = "select popt.products_options_name, poval.products_options_values_name, pa.options_values_price, pa.price_prefix, pad.products_attributes_maxdays, pad.products_attributes_maxcount , pad.products_attributes_filename\n\t\t\t\t\t\t\t\t\t\t\t from " . TABLE_PRODUCTS_OPTIONS . " popt, " . TABLE_PRODUCTS_OPTIONS_VALUES . " poval, " . TABLE_PRODUCTS_ATTRIBUTES . " pa\n\t\t\t\t\t\t\t\t\t\t\t left join " . TABLE_PRODUCTS_ATTRIBUTES_DOWNLOAD . " pad\n\t\t\t\t\t\t\t\t\t\t\t on pa.products_attributes_id=pad.products_attributes_id\n\t\t\t\t\t\t\t\t\t\t\t where pa.products_id = '" . $order->products[$i]['id'] . "'\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_id = '" . $order->products[$i]['attributes'][$j]['option_id'] . "'\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_id = popt.products_options_id\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_values_id = '" . $order->products[$i]['attributes'][$j]['value_id'] . "'\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_values_id = poval.products_options_values_id\n\t\t\t\t\t\t\t\t\t\t\t and popt.language_id = '" . $languages_id . "'\n\t\t\t\t\t\t\t\t\t\t\t and poval.language_id = '" . $languages_id . "'"; $attributes = smn_db_query($attributes_query); } else { $attributes = smn_db_query("select popt.products_options_name, poval.products_options_values_name, pa.options_values_price, pa.price_prefix from " . TABLE_PRODUCTS_OPTIONS . " popt, " . TABLE_PRODUCTS_OPTIONS_VALUES . " poval, " . TABLE_PRODUCTS_ATTRIBUTES . " pa where pa.products_id = '" . $order->products[$i]['id'] . "' and pa.options_id = '" . $order->products[$i]['attributes'][$j]['option_id'] . "' and pa.options_id = popt.products_options_id and pa.options_values_id = '" . $order->products[$i]['attributes'][$j]['value_id'] . "' and pa.options_values_id = poval.products_options_values_id and popt.language_id = '" . $languages_id . "' and poval.language_id = '" . $languages_id . "'"); } $attributes_values = smn_db_fetch_array($attributes); $sql_data_array = array('orders_id' => $insert_id, 'orders_products_id' => $order_products_id, 'products_options' => $attributes_values['products_options_name'], 'products_options_values' => $attributes_values['products_options_values_name'], 'options_values_price' => $attributes_values['options_values_price'], 'price_prefix' => $attributes_values['price_prefix']); smn_db_perform(TABLE_ORDERS_PRODUCTS_ATTRIBUTES, $sql_data_array); if (DOWNLOAD_ENABLED == 'true' && isset($attributes_values['products_attributes_filename']) && smn_not_null($attributes_values['products_attributes_filename'])) { $sql_data_array = array('orders_id' => $insert_id, 'orders_products_id' => $order_products_id, 'orders_products_filename' => $attributes_values['products_attributes_filename'], 'download_maxdays' => $attributes_values['products_attributes_maxdays'], 'download_count' => $attributes_values['products_attributes_maxcount']); smn_db_perform(TABLE_ORDERS_PRODUCTS_DOWNLOAD, $sql_data_array); } } } } } } else { $store_list = $cart->get_store_list(); $orders_invoice_id = ''; for ($k = 0; $k < sizeof($store_list); $k++) { $sql_data_array = array('store_id' => $store_list[$k], 'customers_id' => $customer_id, 'customers_name' => $order->customer['firstname'] . ' ' . $order->customer['lastname'], 'customers_company' => $order->customer['company'], 'customers_street_address' => $order->customer['street_address'], 'customers_city' => $order->customer['city'], 'customers_postcode' => $order->customer['postcode'], 'customers_state' => $order->customer['state'], 'customers_country' => $order->customer['country']['title'], 'customers_telephone' => $order->customer['telephone'], 'customers_email_address' => $order->customer['email_address'], 'customers_address_format_id' => $order->customer['format_id'], 'delivery_name' => $order->delivery['firstname'] . ' ' . $order->delivery['lastname'], 'delivery_company' => $order->delivery['company'], 'delivery_street_address' => $order->delivery['street_address'], 'delivery_city' => $order->delivery['city'], 'delivery_postcode' => $order->delivery['postcode'], 'delivery_state' => $order->delivery['state'], 'delivery_country' => $order->delivery['country']['title'], 'delivery_address_format_id' => $order->delivery['format_id'], 'billing_name' => $order->billing['firstname'] . ' ' . $order->billing['lastname'], 'billing_company' => $order->billing['company'], 'billing_street_address' => $order->billing['street_address'], 'billing_city' => $order->billing['city'], 'billing_postcode' => $order->billing['postcode'], 'billing_state' => $order->billing['state'], 'billing_country' => $order->billing['country']['title'], 'billing_address_format_id' => $order->billing['format_id'], 'payment_method' => $order->info['payment_method'], 'cc_type' => $order->info['cc_type'], 'cc_owner' => $order->info['cc_owner'], 'cc_number' => $order->info['cc_number'], 'cc_expires' => $order->info['cc_expires'], 'date_purchased' => 'now()', 'orders_status' => $order->info['order_status'], 'currency' => $order->info['currency'], 'currency_value' => $order->info['currency_value']); //+1.4 if ($update_order) { smn_db_perform(TABLE_ORDERS, $sql_data_array, 'update', 'orders_id = "' . (int) $order_id . '"'); $insert_id = (int) $order_id; } else { //-1.4 smn_db_perform(TABLE_ORDERS, $sql_data_array); $insert_id = smn_db_insert_id(); } //1.4 for ($i = 0, $n = sizeof($order_totals); $i < $n; $i++) { $sql_data_array = array('orders_id' => $insert_id, 'title' => $order_totals[$i]['title'], 'text' => $order_totals[$i]['text'], 'value' => $order_totals[$i]['value'], 'class' => $order_totals[$i]['code'], 'sort_order' => $order_totals[$i]['sort_order']); smn_db_perform(TABLE_ORDERS_TOTAL, $sql_data_array); } //+1.4 $sql_data_array = array('orders_id' => $insert_id, 'orders_status_id' => $order->info['order_status'], 'date_added' => 'now()', 'customer_notified' => '0', 'comments' => $order->info['comments']); smn_db_perform(TABLE_ORDERS_STATUS_HISTORY, $sql_data_array); //-1.4 for ($i = 0, $n = sizeof($order->products); $i < $n; $i++) { if ($order->products[$i]['products_store_id'] == $store_list[$k]) { $sql_data_array = array('orders_id' => $insert_id, 'products_id' => smn_get_prid($order->products[$i]['id']), 'products_model' => $order->products[$i]['model'], 'products_name' => $order->products[$i]['name'], 'products_price' => $order->products[$i]['price'], 'final_price' => $order->products[$i]['final_price'], 'products_tax' => $order->products[$i]['tax'], 'products_quantity' => $order->products[$i]['qty']); smn_db_perform(TABLE_ORDERS_PRODUCTS, $sql_data_array); $order_products_id = smn_db_insert_id(); $attributes_exist = '0'; if (isset($order->products[$i]['attributes'])) { $attributes_exist = '1'; for ($j = 0, $n2 = sizeof($order->products[$i]['attributes']); $j < $n2; $j++) { if (DOWNLOAD_ENABLED == 'true') { $attributes_query = "select popt.products_options_name, poval.products_options_values_name, pa.options_values_price, pa.price_prefix, pad.products_attributes_maxdays, pad.products_attributes_maxcount , pad.products_attributes_filename\n\t\t\t\t\t\t\t\t\t\t\t from " . TABLE_PRODUCTS_OPTIONS . " popt, " . TABLE_PRODUCTS_OPTIONS_VALUES . " poval, " . TABLE_PRODUCTS_ATTRIBUTES . " pa\n\t\t\t\t\t\t\t\t\t\t\t left join " . TABLE_PRODUCTS_ATTRIBUTES_DOWNLOAD . " pad\n\t\t\t\t\t\t\t\t\t\t\t on pa.products_attributes_id=pad.products_attributes_id\n\t\t\t\t\t\t\t\t\t\t\t where pa.products_id = '" . $order->products[$i]['id'] . "'\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_id = '" . $order->products[$i]['attributes'][$j]['option_id'] . "'\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_id = popt.products_options_id\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_values_id = '" . $order->products[$i]['attributes'][$j]['value_id'] . "'\n\t\t\t\t\t\t\t\t\t\t\t and pa.options_values_id = poval.products_options_values_id\n\t\t\t\t\t\t\t\t\t\t\t and popt.language_id = '" . $languages_id . "'\n\t\t\t\t\t\t\t\t\t\t\t and poval.language_id = '" . $languages_id . "'"; $attributes = smn_db_query($attributes_query); } else { $attributes = smn_db_query("select popt.products_options_name, poval.products_options_values_name, pa.options_values_price, pa.price_prefix from " . TABLE_PRODUCTS_OPTIONS . " popt, " . TABLE_PRODUCTS_OPTIONS_VALUES . " poval, " . TABLE_PRODUCTS_ATTRIBUTES . " pa where pa.products_id = '" . $order->products[$i]['id'] . "' and pa.options_id = '" . $order->products[$i]['attributes'][$j]['option_id'] . "' and pa.options_id = popt.products_options_id and pa.options_values_id = '" . $order->products[$i]['attributes'][$j]['value_id'] . "' and pa.options_values_id = poval.products_options_values_id and popt.language_id = '" . $languages_id . "' and poval.language_id = '" . $languages_id . "'"); } $attributes_values = smn_db_fetch_array($attributes); $sql_data_array = array('orders_id' => $insert_id, 'orders_products_id' => $order_products_id, 'products_options' => $attributes_values['products_options_name'], 'products_options_values' => $attributes_values['products_options_values_name'], 'options_values_price' => $attributes_values['options_values_price'], 'price_prefix' => $attributes_values['price_prefix']); smn_db_perform(TABLE_ORDERS_PRODUCTS_ATTRIBUTES, $sql_data_array); if (DOWNLOAD_ENABLED == 'true' && isset($attributes_values['products_attributes_filename']) && smn_not_null($attributes_values['products_attributes_filename'])) { $sql_data_array = array('orders_id' => $insert_id, 'orders_products_id' => $order_products_id, 'orders_products_filename' => $attributes_values['products_attributes_filename'], 'download_maxdays' => $attributes_values['products_attributes_maxdays'], 'download_count' => $attributes_values['products_attributes_maxcount']); smn_db_perform(TABLE_ORDERS_PRODUCTS_DOWNLOAD, $sql_data_array); } } } } } $sql_data_array = array('orders_invoice_id' => $orders_invoice_id, 'orders_id' => $insert_id); smn_db_perform(TABLE_ORDERS_INVOICE, $sql_data_array); $orders_invoice_id = smn_db_insert_id(); } } smn_session_register('cart_PayPal_IPN_ID'); // Terra register globals fix $_SESSION['cart_PayPal_IPN_ID'] = $cartID . '-' . $orders_invoice_id; } return false; }
} } } else { smn_session_register('sendto'); } $sendto = $_POST['address']; $check_address_query = smn_db_query("select count(*) as total from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . (int) $customer_id . "' and address_book_id = '" . (int) $sendto . "'"); $check_address = smn_db_fetch_array($check_address_query); if ($check_address['total'] == '1') { if ($reset_shipping == true) { smn_session_unregister('shipping'); } smn_redirect(smn_href_link(FILENAME_CHECKOUT_SHIPPING, '', 'NONSSL')); } else { smn_session_unregister('sendto'); } } else { if (!smn_session_is_registered('sendto')) { smn_session_register('sendto'); } $sendto = $customer_default_address_id; smn_redirect(smn_href_link(FILENAME_CHECKOUT_SHIPPING, '', 'NONSSL')); } } // if no shipping destination address was selected, use their own address as default if (!smn_session_is_registered('sendto')) { $sendto = $customer_default_address_id; } $breadcrumb->add(NAVBAR_TITLE_1, smn_href_link(FILENAME_CHECKOUT_SHIPPING, '', 'NONSSL')); $breadcrumb->add(NAVBAR_TITLE_2, smn_href_link(FILENAME_CHECKOUT_SHIPPING_ADDRESS, '', 'NONSSL')); $addresses_count = smn_count_customer_address_book_entries();
<?php /* Copyright (c) 2002 - 2006 SystemsManager.Net SystemsManager Technologies oscMall System Version 4 http://www.systemsmanager.net Portions Copyright (c) 2002 osCommerce This source file is subject to version 2.0 of the GPL license, that is bundled with this package in the file LICENSE. If you did not receive a copy of the oscMall System license and are unable to obtain it through the world-wide-web, please send a note to license@systemsmanager.net so we can mail you a copy immediately. */ global $page_name; $switch_store = 'TRUE'; smn_session_unregister('switch_store_id'); smn_session_register('switch_store_id'); $switch_store_id = intval($_GET['newID']); if ($store_id == 1) { smn_redirect(smn_href_link(FILENAME_GOTO_STORE, 'newID=' . $switch_store_id)); } $breadcrumb->add(NAVBAR_TITLE, smn_href_link(FILENAME_THANK_YOU));
smn_session_register('customer_zone_id'); } //CREATE STORE IN THE DATABASE..... // systemsmanager begin - Dec 5, 2005 $new_store = new store(); $new_store->set_store_type($new_store_type); $new_store->set_customers_id($customer_id); $new_store->set_store_name($new_store_name); $new_store->set_store_description($store_description); $new_store->set_store_category($store_catagory); $new_store->set_store_logo('store_image'); $customer_store_id = $new_store->create_store(); smn_session_register('customer_store_id'); $error_text = $new_store->put_logo_image(); if ($error_text != '') { smn_session_register('error_text'); } $new_store->put_store_description(); $new_store->put_store_category(); $new_store->put_store_admin(); $new_store->put_store_data(); $new_store->put_store_cost(); $new_store->put_store_products(); if (ALLOW_STORE_SITE_TEXT == 'true') { $new_store->put_store_language('english'); } $new_store->send_store_email($gender); smn_redirect(smn_href_link(FILENAME_CREATE_STORE_ACCOUNT_SUCCESS, '', 'NONSSL')); } } $breadcrumb->add(NAVBAR_TITLE, smn_href_link(FILENAME_CREATE_STORE_ACCOUNT, '', 'NONSSL'));
} } else { smn_session_register('billto'); } $billto = $_POST['address']; $check_address_query = smn_db_query("select count(*) as total from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . $customer_id . "' and address_book_id = '" . $billto . "'"); $check_address = smn_db_fetch_array($check_address_query); if ($check_address['total'] == '1') { if ($reset_payment == true) { smn_session_unregister('payment'); } smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, '', 'NONSSL')); } else { smn_session_unregister('billto'); } // no addresses to select from - customer decided to keep the current assigned address } else { if (!smn_session_is_registered('billto')) { smn_session_register('billto'); } $billto = $customer_default_address_id; smn_redirect(smn_href_link(FILENAME_CHECKOUT_PAYMENT, '', 'NONSSL')); } } // if no billing destination address was selected, use their own address as default if (!smn_session_is_registered('billto')) { $billto = $customer_default_address_id; } $breadcrumb->add(NAVBAR_TITLE_1, smn_href_link(FILENAME_CHECKOUT_PAYMENT, '', 'NONSSL')); $breadcrumb->add(NAVBAR_TITLE_2, smn_href_link(FILENAME_CHECKOUT_PAYMENT_ADDRESS, '', 'NONSSL')); $addresses_count = smn_count_customer_address_book_entries();
define($text_contents['text_key'], $text_contents['text_content']); } } } else { $free_shipping = false; } // process the selected shipping method if (isset($_POST['action']) && $_POST['action'] == 'process') { if (!smn_session_is_registered('comments')) { smn_session_register('comments'); } if (smn_not_null($_POST['comments'])) { $comments = smn_db_prepare_input($_POST['comments']); } if (!smn_session_is_registered('shipping')) { smn_session_register('shipping'); } if (smn_count_shipping_modules() > 0 || $free_shipping == true) { if (isset($_POST['shipping']) && strpos($_POST['shipping'], '_')) { $shipping = $_POST['shipping']; list($module, $method) = explode('_', $shipping); if (is_object(${$module}) || $shipping == 'free_free') { if ($shipping == 'free_free') { $quote[0]['methods'][0]['title'] = FREE_SHIPPING_TITLE; $quote[0]['methods'][0]['cost'] = '0'; } else { $quote = $shipping_modules->quote($method, $module); } if (isset($quote['error'])) { smn_session_unregister('shipping'); } else {
function pre_confirmation_check() { global $payment, $order, $credit_covers, $customer_id; if (MODULE_ORDER_TOTAL_INSTALLED) { $this->modules = explode(';', MODULE_ORDER_TOTAL_INSTALLED); $total_deductions = 0; reset($this->modules); $order_total = $order->info['total']; while (list(, $value) = each($this->modules)) { $class = substr($value, 0, strrpos($value, '.')); $order_total = $this->get_order_total_main($class, $order_total); if ($GLOBALS[$class]->enabled && $GLOBALS[$class]->credit_class) { $total_deductions = $total_deductions + $GLOBALS[$class]->pre_confirmation_check($order_total); $order_total = $order_total - $GLOBALS[$class]->pre_confirmation_check($order_total); } } $gv_query = smn_db_query("select amount from " . TABLE_COUPON_GV_CUSTOMER . " where customer_id = '" . $customer_id . "'"); $gv_result = smn_db_fetch_array($gv_query); $gv_payment_amount = $gv_result['amount']; // if ($order->info['total'] - $total_deductions <= 0 ) { if ($order->info['total'] - $gv_payment_amount <= 0) { if (!smn_session_is_registered('credit_covers')) { smn_session_register('credit_covers'); } $credit_covers = true; } else { // belts and suspenders to get rid of credit_covers variable if it gets set once and they put something else in the cart if (smn_session_is_registered('credit_covers')) { smn_session_unregister('credit_covers'); } } } }
if (!$error && smn_session_is_registered('customer_id')) { // Update redeem status $gv_query = smn_db_query("insert into " . TABLE_COUPON_REDEEM_TRACK . " (coupon_id, customer_id, redeem_date, redeem_ip) values ('" . $coupon['coupon_id'] . "', '" . $customer_id . "', now(),'" . $REMOTE_ADDR . "')"); $gv_update = smn_db_query("update " . TABLE_COUPONS . " set coupon_active = 'N' where coupon_id = '" . $coupon['coupon_id'] . "'"); smn_gv_account_update($customer_id, $gv_id); smn_session_unregister('gv_id'); } if (smn_session_is_registered('customer_id') && $voucher_not_redeemed) { $gv_id = $coupon['coupon_id']; $gv_query = smn_db_query("insert into " . TABLE_COUPON_REDEEM_TRACK . " (coupon_id, customer_id, redeem_date, redeem_ip) values ('" . $coupon['coupon_id'] . "', '" . $customer_id . "', now(),'" . $REMOTE_ADDR . "')"); $gv_update = smn_db_query("update " . TABLE_COUPONS . " set coupon_active = 'N' where coupon_id = '" . $coupon['coupon_id'] . "'"); smn_gv_account_update($customer_id, $gv_id); $error = false; } elseif ($voucher_not_redeemed) { if (!smn_session_is_registered('floating_gv_code')) { smn_session_register('floating_gv_code'); //} $floating_gv_code = $_GET['gv_no']; $gv_error_message = TEXT_NEEDS_TO_LOGIN; } else { $gv_error_message = TEXT_INVALID_GV; } } else { $gv_error_message = TEXT_INVALID_GV; } $message = $gv_error_message; if (smn_session_is_registered('floating_gv_code')) { $gv_query = smn_db_query("SELECT c.coupon_id, c.coupon_amount, IF(rt.coupon_id>0, 'true', 'false') AS redeemed FROM " . TABLE_COUPONS . " c LEFT JOIN " . TABLE_COUPON_REDEEM_TRACK . " rt USING(coupon_id), " . TABLE_COUPON_EMAIL_TRACK . " et WHERE c.coupon_code = '" . $floating_gv_code . "' AND c.coupon_id = et.coupon_id"); // check if coupon exist if (smn_db_num_rows($gv_query) > 0) { $coupon = smn_db_fetch_array($gv_query);
$entry_password_error = false; } } if ($error == false) { //=============================================================================================== $store_monthly_costs = smn_set_store_cost($new_store_type); $check_new_store_type = smn_set_store_type($new_store_type); $store_products_id = smn_set_products_id($new_store_type); //CREATE STORE IN THE DATABASE..... if ($_GET['action'] == 'update') { smn_session_register('customers_id'); $customer_info = new customer($customers_id); $store_info = new store((int) $_GET['sID']); } else { if (!smn_session_is_registered('cart') && !is_object($cart)) { smn_session_register('cart'); $cart = new shoppingCart(); } $customer_info = new customer(); $store_info = new store(); } $customer_info->set_firstname($firstname); $customer_info->set_lastname($lastname); $customer_info->set_email_address($email_address); $customer_info->set_telephone($telephone); $customer_info->set_fax($fax); $customer_info->set_newsletter($newsletter); $customer_info->set_gender($gender); // $customer_info->set_dob($dob); $customer_info->set_street_address($street_address); $customer_info->set_postcode($postal_code);
if (ACCOUNT_STATE == 'true') { if ($a_zone_id > 0) { $sql_data_array['affiliate_zone_id'] = $a_zone_id; $sql_data_array['affiliate_state'] = ''; } else { $sql_data_array['affiliate_zone_id'] = '0'; $sql_data_array['affiliate_state'] = $a_state; } }*/ $sql_data_array = array('affiliate_customer_id' => $customer_id, 'affiliate_payment_check' => $a_payment_check, 'affiliate_payment_paypal' => $a_payment_paypal, 'affiliate_payment_bank_name' => $a_payment_bank_name, 'affiliate_payment_bank_branch_number' => $a_payment_bank_branch_number, 'affiliate_payment_bank_swift_code' => $a_payment_bank_swift_code, 'affiliate_payment_bank_account_name' => $a_payment_bank_account_name, 'affiliate_payment_bank_account_number' => $a_payment_bank_account_number, 'affiliate_homepage' => $a_homepage, 'affiliate_agb' => '1'); if (ACCOUNT_COMPANY == 'true') { $sql_data_array['affiliate_company_taxid'] = $a_company_taxid; } if (ACCOUNT_SUBURB == 'true') { $sql_data_array['affiliate_suburb'] = $a_suburb; } $affiliate_id = affiliate_insert($sql_data_array, $HTTP_SESSION_VARS['affiliate_ref']); $aemailbody = MAIL_AFFILIATE_HEADER . "\n" . MAIL_AFFILIATE_ID . $affiliate_id . "\n" . MAIL_AFFILIATE_USERNAME . $a_email_address . "\n" . MAIL_AFFILIATE_PASSWORD . $a_password . "\n\n" . MAIL_AFFILIATE_LINK . HTTP_SERVER . DIR_WS_CATALOG . FILENAME_AFFILIATE . "\n\n" . MAIL_AFFILIATE_FOOTER; smn_mail($a_firstname . ' ' . $a_lastname, $a_email_address, MAIL_AFFILIATE_SUBJECT, nl2br($aemailbody), $store->get_store_owner(), AFFILIATE_EMAIL_ADDRESS); smn_session_register('affiliate_id'); $affiliate_email = $a_email_address; $affiliate_name = $a_firstname . ' ' . $a_lastname; smn_session_register('affiliate_email'); smn_session_register('affiliate_name'); smn_redirect(smn_href_link(FILENAME_AFFILIATE_SIGNUP_OK, '', 'NONSSL')); } } $breadcrumb->add(NAVBAR_TITLE, smn_href_link(FILENAME_AFFILIATE_SIGNUP, '', 'NONSSL')); ?>
// verify the selected billing address if (is_array($billto) && empty($billto) || is_numeric($billto)) { $check_address_query = smn_db_query("select count(*) as total from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . (int) $customer_id . "' and address_book_id = '" . (int) $billto . "'"); $check_address = smn_db_fetch_array($check_address_query); if ($check_address['total'] != '1') { $billto = $customer_default_address_id; if (smn_session_is_registered('payment')) { smn_session_unregister('payment'); } } } } require DIR_WS_CLASSES . 'order.php'; $order = new order(); require DIR_WS_CLASSES . 'order_total.php'; $order_total_modules = new order_total(); $order_total_modules->clear_posts(); if (!smn_session_is_registered('comments')) { smn_session_register('comments'); } if (isset($HTTP_POST_VARS['comments']) && smn_not_null($HTTP_POST_VARS['comments'])) { $comments = smn_db_prepare_input($HTTP_POST_VARS['comments']); } $total_weight = $cart->show_weight(); $total_count = $cart->count_contents(); $total_count = $cart->count_contents_virtual(); // load all enabled payment modules require DIR_WS_CLASSES . 'payment.php'; $payment_modules = new payment(); $breadcrumb->add(NAVBAR_TITLE_1, smn_href_link(FILENAME_CHECKOUT_SHIPPING, '', 'NONSSL')); $breadcrumb->add(NAVBAR_TITLE_2, smn_href_link(FILENAME_CHECKOUT_PAYMENT, '', 'NONSSL'));
$attributes_values = smn_db_fetch_array($attributes); if (strstr($attributes_values['products_options_name'], 'Stream')) { $content_type = 'stream_product'; } if ($content_type == 'stream_product') { $start_day = getdate(); $day = $start_day['mday']; $month = $start_day['mon']; $year = $start_day['year']; $time_entry = strftime('%d', mktime(0, 0, 0, $month, $day, $year)) . '-' . strftime('%m', mktime(0, 0, 0, $month, $day, $year)) . '-' . strftime('%Y', mktime(0, 0, 0, $month, $day, $year)); $streaming_query = smn_db_query("select * from " . TABLE_STREAMING_PRODUCTS_INFO . " where products_id = '" . $use_products_id . "'"); if (smn_db_num_rows($streaming_query)) { $streaming_values = smn_db_fetch_array($streaming_query); } if (!smn_session_is_registered('authorization_code')) { smn_session_register('authorization_code'); } $random = rand(); $string = md5($random); $authorization_code = substr($string, 20); $sql_data_array = array('customer_id' => $customer_id, 'products_id' => $order->products[$i]['id'], 'purchase_id' => $authorization_code, 'time_entry' => $time_entry, 'time_expire' => (int) $order->products[$i]['time_expire'], 'total_click' => 0, 'total_click_allowed' => (int) $order->products[$i]['total_click_allowed']); smn_db_perform(TABLE_STREAMING_PRODUCTS, $sql_data_array); } $sql_data_array = array('orders_id' => $insert_id, 'orders_products_id' => $order_products_id, 'products_options' => $attributes_values['products_options_name'], 'products_options_values' => $attributes_values['products_options_values_name'], 'options_values_price' => $attributes_values['options_values_price'], 'price_prefix' => $attributes_values['price_prefix']); smn_db_perform(TABLE_ORDERS_PRODUCTS_ATTRIBUTES, $sql_data_array); if (DOWNLOAD_ENABLED == 'true' && isset($attributes_values['products_attributes_filename']) && smn_not_null($attributes_values['products_attributes_filename'])) { $sql_data_array = array('orders_id' => $insert_id, 'orders_products_id' => $order_products_id, 'orders_products_filename' => $attributes_values['products_attributes_filename'], 'download_maxdays' => $attributes_values['products_attributes_maxdays'], 'download_count' => $attributes_values['products_attributes_maxcount']); smn_db_perform(TABLE_ORDERS_PRODUCTS_DOWNLOAD, $sql_data_array); } $products_ordered_attributes .= "\n\t" . $attributes_values['products_options_name'] . ' ' . $attributes_values['products_options_values_name']; }
/*Added the code to get the shpping charges of each module for each store,by Cimi*/ if (ALLOW_STORE_PAYMENT == 'false') { $quotes_store = $shipping_modules->quote_store(); } if (!smn_session_is_registered('comments')) { smn_session_register('comments'); } if (smn_not_null($_POST['comments'])) { $comments = smn_db_prepare_input($_POST['comments']); } if (!smn_session_is_registered('shipping')) { smn_session_register('shipping'); } /*Register the session shipping_store,By Cimi*/ if (!smn_session_is_registered('shipping_store')) { smn_session_register('shipping_store'); } if (smn_count_shipping_modules() > 0 || $free_shipping == true) { if (isset($_POST['shipping']) && strpos($_POST['shipping'], '_')) { $shipping = $_POST['shipping']; list($module, $method) = explode('_', $shipping); if (is_object(${$module}) || $shipping == 'free_free') { if ($shipping == 'free_free') { $quote[0]['methods'][0]['title'] = FREE_SHIPPING_TITLE; $quote[0]['methods'][0]['cost'] = '0'; } else { $quote = $shipping_modules->quote($method, $module); } if (isset($quote['error'])) { smn_session_unregister('shipping'); /*Unregister the session shipping_store,By Cimi*/
} else { if (smn_session_is_registered('password_forgotten')) { smn_session_unregister('password_forgotten'); } $login_id = $check_admin['login_id']; $store_id = $check_admin['store_id']; $login_groups_id = $check_admin['login_groups_id']; $login_firstname = $check_admin['login_firstname']; $login_email_address = $check_admin['login_email_address']; $login_logdate = $check_admin['login_logdate']; $login_lognum = $check_admin['login_lognum']; $login_modified = $check_admin['login_modified']; smn_session_register('login_id'); smn_session_register('store_id'); smn_session_register('login_groups_id'); smn_session_register('login_first_name'); //$date_now = date('Ymd'); smn_db_query("update " . TABLE_ADMIN . " set admin_logdate = now(), admin_lognum = admin_lognum+1 where admin_id = '" . $login_id . "'"); echo '{ success: true, redirectUrl: "' . smn_href_link(FILENAME_DEFAULT) . '" }'; exit; } } echo '{ success: false, errorMsg: "' . $jQuery->jsonHtmlPrepare(TEXT_LOGIN_ERROR) . '" }'; exit; } require DIR_WS_LANGUAGES . $language . '/' . FILENAME_LOGIN; $submitButton = $jQuery->getPluginClass('button'); $submitButton->setID('submitButton'); $submitButton->setType('submit'); $submitButton->setText('Login'); $content_page = basename($_SERVER['PHP_SELF']);
to obtain it through the world-wide-web, please send a note to license@systemsmanager.net so we can mail you a copy immediately. */ require 'includes/application_top.php'; $current_boxes = DIR_FS_ADMIN . DIR_WS_BOXES; if ($_GET['action']) { switch ($_GET['action']) { case 'check_password': $check_pass_query = smn_db_query("select admin_password as confirm_password from " . TABLE_ADMIN . " where admin_id = '" . $_POST['id_info'] . "'"); $check_pass = smn_db_fetch_array($check_pass_query); // Check that password is good if (!smn_validate_password($_POST['password_confirmation'], $check_pass['confirm_password'])) { smn_redirect(smn_href_link(FILENAME_ADMIN_ACCOUNT, 'action=check_account&error=password')); } else { //$confirm = 'confirm_account'; smn_session_register('confirm_account'); $confirm_account = '1'; smn_redirect(smn_href_link(FILENAME_ADMIN_ACCOUNT, 'action=edit_process')); } break; case 'save_account': $admin_id = smn_db_prepare_input($_POST['id_info']); $admin_email_address = smn_db_prepare_input($_POST['admin_email_address']); $stored_email[] = 'NONE'; $check_email_query = smn_db_query("select admin_email_address from " . TABLE_ADMIN . " where admin_id <> " . $admin_id . ""); while ($check_email = smn_db_fetch_array($check_email_query)) { $stored_email[] = $check_email['admin_email_address']; } if (in_array($_POST['admin_email_address'], $stored_email)) { smn_redirect(smn_href_link(FILENAME_ADMIN_ACCOUNT, 'action=edit_process&error=email')); } else {
if (isset($_POST['store'])) { smn_session_unregister('store_id'); $store_id = $_POST['store']; smn_session_register('store_id'); smn_redirect(smn_href_link(basename($PHP_SELF))); } } else { $super_user = '******'; if (!smn_session_is_registered('super_user')) { smn_session_register('super_user'); } if (intval($_GET['ID']) != intval($switch_store_id)) { smn_redirect(smn_href_link(FILENAME_LOGOFF)); } $store_id = $check['store_id']; smn_session_register('store_id'); } $filename = basename($PHP_SELF); if ($filename != FILENAME_DEFAULT && $filename != FILENAME_FORBIDEN && $filename != FILENAME_LOGOFF && $filename != FILENAME_ADMIN_ACCOUNT && $filename != FILENAME_POPUP_IMAGE && $filename != 'packingslip.php' && $filename != 'invoice.php') { $db_file_query = smn_db_query("select admin_files_name, admin_groups_id from " . TABLE_ADMIN_FILES . " where FIND_IN_SET( '" . $login_groups_id . "', admin_groups_id) and admin_files_name = '" . $filename . "'"); if (!smn_db_num_rows($db_file_query)) { //smn_redirect(smn_href_link(FILENAME_FORBIDEN)); } else { $db_file = smn_db_fetch_array($db_file_query); } } } // Check login and file access if (basename($PHP_SELF) != FILENAME_LOGOFF && basename($PHP_SELF) != FILENAME_LOGIN && basename($PHP_SELF) != FILENAME_PASSWORD_FORGOTTEN) { if (!smn_session_is_registered('login_id')) { smn_session_unregister('store_id');
} } } elseif (isset($_GET['manufacturers_id'])) { $manufacturers_query = smn_db_query("select manufacturers_name from " . TABLE_MANUFACTURERS . " where manufacturers_id = '" . (int) $_GET['manufacturers_id'] . "'"); if (smn_db_num_rows($manufacturers_query)) { $manufacturers = smn_db_fetch_array($manufacturers_query); $breadcrumb->add($manufacturers['manufacturers_name'], smn_href_link(FILENAME_DEFAULT, 'manufacturers_id=' . $_GET['manufacturers_id'])); } } $affiliate_clientdate = date("Y-m-d H:i:s"); $affiliate_clientbrowser = $_SERVER["HTTP_USER_AGENT"]; $affiliate_clientip = $_SERVER["REMOTE_ADDR"]; $affiliate_clientreferer = $_SERVER["HTTP_REFERER"]; if (!$HTTP_SESSION_VARS['affiliate_ref']) { smn_session_register('affiliate_ref'); smn_session_register('affiliate_clickthroughs_id'); if ($_GET['ref'] || $_POST['ref']) { if ($_GET['ref']) { $affiliate_ref = $_GET['ref']; } if ($_POST['ref']) { $affiliate_ref = $_POST['ref']; } if ($_GET['products_id']) { $affiliate_products_id = $set_product_id; } if ($_POST['products_id']) { $affiliate_products_id = $_POST['products_id']; } if ($_GET['affiliate_banner_id']) { $affiliate_banner_id = $_GET['affiliate_banner_id'];
$date_now = date('Ymd'); smn_db_query("update " . TABLE_AFFILIATE . " set affiliate_date_of_last_logon = now(), affiliate_number_of_logons = affiliate_number_of_logons + 1 where affiliate_id = '" . $affiliate_id . "'");*/ if (SESSION_RECREATE == 'True') { smn_session_recreate(); } $check_country_query = smn_db_query("select entry_country_id, entry_zone_id from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . (int) $check_customer['customers_id'] . "' and address_book_id = '" . (int) $check_customer['customers_default_address_id'] . "'"); $check_country = smn_db_fetch_array($check_country_query); $affiliate_id = $check_affiliate['affiliate_id']; smn_session_register('affiliate_id'); $customer_id = $check_customer['customers_id']; $customer_default_address_id = $check_customer['customers_default_address_id']; $customer_first_name = $check_customer['customers_firstname']; $customer_country_id = $check_country['entry_country_id']; $customer_zone_id = $check_country['entry_zone_id']; smn_session_register('customer_id'); smn_session_register('customer_default_address_id'); smn_session_register('customer_first_name'); smn_session_register('customer_country_id'); smn_session_register('customer_zone_id'); smn_db_query("update " . TABLE_CUSTOMERS_INFO . " set customers_info_date_of_last_logon = now(), customers_info_number_of_logons = customers_info_number_of_logons+1 where customers_info_id = '" . (int) $customer_id . "'"); $cart->restore_contents(); smn_redirect(smn_href_link(FILENAME_AFFILIATE_SUMMARY, '', 'NONSSL')); } } } $breadcrumb->add(NAVBAR_TITLE, smn_href_link(FILENAME_AFFILIATE, '', 'NONSSL')); ?>
Portions Copyright (c) 2002 osCommerce This source file is subject to version 2.0 of the GPL license, that is bundled with this package in the file LICENSE. If you did not receive a copy of the oscMall System license and are unable to obtain it through the world-wide-web, please send a note to license@systemsmanager.net so we can mail you a copy immediately. */ require 'includes/application_top.php'; if (isset($_GET['action']) && $_GET['action'] == 'process') { $email_address = smn_db_prepare_input($_POST['email_address']); $firstname = smn_db_prepare_input($_POST['firstname']); $log_times = $_POST['log_times'] + 1; if ($log_times >= 4) { smn_session_register('password_forgotten'); } // Check if email exists $check_admin_query = smn_db_query("select admin_id as check_id, admin_firstname as check_firstname, admin_lastname as check_lastname, admin_email_address as check_email_address from " . TABLE_ADMIN . " where admin_email_address = '" . smn_db_input($email_address) . "'"); if (!smn_db_num_rows($check_admin_query)) { $_GET['login'] = '******'; } else { $check_admin = smn_db_fetch_array($check_admin_query); if ($check_admin['check_firstname'] != $firstname) { $_GET['login'] = '******'; } else { $_GET['login'] = '******'; function randomize() { $salt = "ABCDEFGHIJKLMNOPQRSTUVWXWZabchefghjkmnpqrstuvwxyz0123456789"; srand((double) microtime() * 1000000);