0byt3m1n1
Path:
/
data
/
17
/
1
/
18
/
11
/
1670011
/
user
/
1801231
/
htdocs
/
pages
/
[
Home
]
File: checkout_step2.php
<? include('functions/fnc.php'); $temptable=session_id(); $temp_header="header_".$temptable; if($_GET['ret']!="paypal") { $q_del_temp_header="DROP TABLE if exists $temp_header"; $r_del_temp_header=mysql_query($q_del_temp_header); if(!$r_del_temp_header) { mysql_error(); } } if($_GET['p_option']=="creditcard") { $_SESSION['card_type']=$_POST['card_type']; $_SESSION['card_number']=$_POST['card_number']; $_SESSION['card_validity']=$_POST['month'].$_POST['year']; $chars = "abcdefghijkmnopqrstuvwxyz023456789"; srand((double)microtime()*1000000); $i = 0; $pass = '' ; while ($i <= 7) { $num = rand() % 33; $tmp = substr($chars, $num, 1); $pass = $pass . $tmp; $i++; } $_SESSION['txn_id']=$pass; include("payment_process/verify_credit_card.php"); } if($_GET['p_option']=="lease") { $chars = "abcdefghijkmnopqrstuvwxyz023456789"; srand((double)microtime()*1000000); $i = 0; $pass = '' ; while ($i <= 7) { $num = rand() % 33; $tmp = substr($chars, $num, 1); $pass = $pass . $tmp; $i++; } $_SESSION['txn_id']="la_".$pass; } $q_data="select * from `".$temptable."`"; $r_data=mysql_query($q_data); if(!$r_data) { echo mysql_error(); } $baddress=stripslashes($_POST['baddress']); if($_POST['bcountry']=="United States of America") { if($_POST['bus_state']=="Select a State") { ?> <script language="JavaScript" type="text/javascript"> window.location='index.php?page=checkout_step1&&p_option=paypal'; </script> <? } else { $bstate=$_POST['bus_state']; } } else { $bstate=stripslashes($_POST['bstate']); } if($_POST['dcountry']=="United States of America") { if($_POST['dus_state']=="Select a State") { ?> <script language="JavaScript" type="text/javascript"> window.location='index.php?page=checkout_step1&&p_option=paypal'; </script> <? } else { $dstate=$_POST['dus_state']; } } else { $dstate=stripslashes($_POST['dstate']); } ?> <link href="../css/style.css" rel="stylesheet" type="text/css"> <table width="765" border="0" cellpadding="0" cellspacing="0" class="all-borders"> <tr> <td align="left" valign="top"><table width="765" border="0" cellspacing="0" cellpadding="2"> <tr align="left" valign="middle" class="create-catalog-header"> <td width="152" height="32">Product Image</td> <td width="150">Catagory</td> <td width="179">Product Name</td> <td width="117">Rate</td> <td width="97">Quantity</td> <td width="160">Total Weight</td> <td width="126">Price</td> </tr> <? $n=0; $total_price=0; $total_product_weight=0; $quantity=0; while($row_data=mysql_fetch_array($r_data)) { if($n%2==0) { $bg="#EAFFEF"; } else { $bg="#EAF0FF"; } $q_catalog="select * from catalog where catalog_id=".$row_data['catalog_id']; $r_catalog=mysql_query($q_catalog); $row_catalog=mysql_fetch_array($r_catalog); $q_product="select * from product_details where product_id=".$row_data['product_id']; $r_product=mysql_query($q_product); $row_product=mysql_fetch_array($r_product); $product_weight=0; ?> <tr align="left" valign="middle"> <td height="25" align="center" bgcolor="<?=$bg?>" class="left-links"> <img src="<?=$row_product['product_main_image_path']?>" width="125" height="75"> </td> <td bgcolor="<?=$bg?>" class="left-links"> <?=$row_catalog['catalog_name']?> </td> <td bgcolor="<?=$bg?>" class="left-links"> <?=$row_product['product_name']?> </td> <td bgcolor="<?=$bg?>" class="left-links">$ <?=$row_data['rate']?> <input name="rate_<?=$row_data['temp_id']?>" type="hidden" id="rate_<?=$row_data['temp_id']?>" value="<?=$row_data['rate']?>"> </td> <td align="left" bgcolor="<?=$bg?>"> <?=$row_data['quantity']?> <? $quantity=$quantity+$row_data['quantity']; ?> </td> <? $product_weight=$row_product['product_weight']*$row_data['quantity']; $total_product_weight=$total_product_weight+$product_weight; ?> <td align="left" bgcolor="<?=$bg?>" class="left-links"> <?=$product_weight?> </td> <td align="left" bgcolor="<?=$bg?>" class="left-links">$ <?=$row_data['price']?> </td> </tr> <? $n++; $total_price=$total_price+$row_data['price']; } //echo "total quantity =".$quantity; ?> <tr align="left" valign="middle"> <td height="25" bgcolor="#0099FF" class="left-links"> </td> <td bgcolor="#0099FF" class="left-links"> </td> <td bgcolor="#0099FF" class="left-links"> </td> <td colspan="2" align="right" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">Total Weight </font></td> <td align="left" bgcolor="#0099FF" class="left-links"> <?=$total_product_weight?> </td> <td align="left" bgcolor="#0099FF" class="left-links"> </td> </tr> <tr align="left" valign="middle"> <td height="25" class="left-links"> </td> <td class="left-links"> </td> <td class="left-links"> </td> <td colspan="2" align="right" class="left-links"> </td> <td align="right" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">Product</font><font color="#FFFFFF"> Price </font></td> <td align="left" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">$ <?=number_format($total_price,2)?> </font> </td> </tr> <tr align="left" valign="middle"> <td height="25" class="left-links"> </td> <td class="left-links"> </td> <td class="left-links"> </td> <td colspan="2" align="right" class="left-links"> </td> <td align="right" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">TAX </font></td> <td align="left" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">$ <? echo calculate_tax($total_price,$dstate); ?></font></td> <? $tax=calculate_tax($total_price,$dstate); ?> </tr> <tr align="left" valign="middle"> <td height="25" class="left-links"> </td> <td class="left-links"> </td> <td class="left-links"> </td> <td colspan="2" align="right" class="left-links"> </td> <td align="right" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">Shipping Cost </font></td> <td align="left" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">$ <? echo calculate_shiping($total_product_weight,$dstate,$quantity); ?></font></td> <? //echo $total_product_weight."/".$dstate."/".$quantity; $shipping_charge=calculate_shiping($total_product_weight,$dstate,$quantity); $amt_to_pay=$total_price+str_replace(",","",$tax)+$shipping_charge; $amt_to_pay=number_format($amt_to_pay,2); ?> </tr> <tr align="left" valign="middle"> <td height="25" class="left-links"> </td> <td class="left-links"> </td> <td class="left-links"> </td> <td colspan="2" align="right" class="left-links"><font color="#FFFFFF"> </font></td> <td align="right" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">Total Price </font></td> <td align="left" bgcolor="#0099FF" class="left-links"><font color="#FFFFFF">$ <?=$amt_to_pay?> </font></td> </tr> <tr align="left" valign="middle"> <td height="25" class="left-links"> <? $q_create_temp_header="CREATE TABLE if not exists $temp_header ( `temp_id` int(8) NOT NULL auto_increment, `payment_process` varchar(25) collate latin1_general_ci NOT NULL default '', `customer_login_id` varchar(50) collate latin1_general_ci NOT NULL default '', `billing_name` varchar(50) collate latin1_general_ci NOT NULL default '', `billing_address` varchar(200) collate latin1_general_ci NOT NULL default '', `billing_country` varchar(100) collate latin1_general_ci NOT NULL default '', `billing_state` varchar(100) collate latin1_general_ci NOT NULL default '', `billing_contact` varchar(20) collate latin1_general_ci NOT NULL default '', `billing_email` varchar(100) collate latin1_general_ci NOT NULL default '', `shipping_name` varchar(25) collate latin1_general_ci NOT NULL default '', `shipping_address` varchar(200) collate latin1_general_ci NOT NULL default '', `shipping_country` varchar(100) collate latin1_general_ci NOT NULL default '', `shipping_state` varchar(50) collate latin1_general_ci NOT NULL default '', `shipping_zip` varchar(15) collate latin1_general_ci NOT NULL default '', `shipping_contact` varchar(20) collate latin1_general_ci NOT NULL default '', `special_note` varchar(200) collate latin1_general_ci NOT NULL default '', `total_product_weight` int(8) NOT NULL default '0', `total_product_quantity` int(4) NOT NULL default '0', `product_price` decimal(10,2) NOT NULL default '0.00', `tax` decimal(10,2) NOT NULL default '0.00', `delivery_charge` decimal(10,2) NOT NULL default '0.00', `final_order_total` decimal(10,2) NOT NULL default '0.00', `ip_address` varchar(20) collate latin1_general_ci NOT NULL default '', PRIMARY KEY (`temp_id`))"; $r_create_temp_header=mysql_query($q_create_temp_header); $q_find="select * from tbl_temp where tmp_name='".$temp_header."'"; $r_find=mysql_query($q_find); if(mysql_num_rows($r_find)==0) { $q_t_in="insert into tbl_temp (tmp_id, tmp_name, date) values(NULL, '".$temp_header."', '".date('Y-m-d')."')"; $r_t_in=mysql_query($q_t_in); } $ip=$_SERVER['REMOTE_ADDR']; if($_GET['p_option']=="creditcard") { $payment_process="Credit Card"; } if($_GET['p_option']=="paypal") { $payment_process="Paypal"; } $q_temp_header_insert="insert into $temp_header ( `temp_id`, `payment_process`, `customer_login_id`, `billing_name`, `billing_address`, `billing_country`, `billing_state`, `billing_contact`, `billing_email`, `shipping_name`, `shipping_address`, `shipping_country`, `shipping_state`, `shipping_zip`, `shipping_contact`, `special_note`, `total_product_weight`, `total_product_quantity`, `product_price`, `tax`, `delivery_charge`, `final_order_total`, `ip_address` ) values( NULL,'".$payment_process."','".$_SESSION['login_email']."','".stripslashes($_POST['bname'])."', '".$baddress."','".stripslashes($_POST['bcountry'])."', '".$bstate."', '".$_POST['bcontact']."', '".$_POST['bemail']."', '".stripslashes($_POST['dname'])."', '".stripslashes($_POST['daddress'])."', '".stripslashes($_POST['dcountry'])."', '".$dstate."', '".$_POST['dzip']."', '".$_POST['dcontact']."', '".stripslashes($_POST['special_note'])."', '".$total_product_weight."', '".$quantity."', '".$total_price."', '".$tax."', '".$shipping_charge."', '".str_replace(",","",$amt_to_pay)."', '".$ip."')"; $r_temp_header_insert=mysql_query($q_temp_header_insert); if(!$r_temp_header_insert) { echo mysql_error(); } $q_temp_header="select * from $temp_header"; $r_temp_header=mysql_query($q_temp_header); if(!$r_temp_header) { echo mysql_error(); } $row_temp_header=mysql_fetch_array($r_temp_header); ?> </td> <td colspan="5" align="center" bgcolor="<?=$_SESSION['bgcol']?>" class="left-links"> <em><font color="#FF0000"> <? if($_SESSION['order_success']!="") { echo $_SESSION['order_success']; $_SESSION['order_success']=""; $_SESSION['bgcol']=""; } else { echo " "; } ?> </font></em></td> <td align="left" class="left-links"> </td> </tr> <tr align="center" valign="top"> <td height="25" colspan="7" class="left-links"><table width="765" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="350" align="right" valign="top"> <table width="350" border="0" cellspacing="0" cellpadding="0"> <tr> <td height="32" align="left" valign="middle" class="create-catalog-header" style="padding-left:20px"><font color="#000033"> Billing Information</font></td> </tr> <tr> <td width="362" align="left" valign="top"> <table width="350" border="0" cellpadding="4" cellspacing="0" class="all-borders"> <tr align="left" valign="middle"> <td width="100" height="25"><font color="#000033">Name</font></td> <td height="25"> <?=$row_temp_header['billing_name']?> </td> </tr> <tr align="left" valign="middle"> <td height="25" valign="top"><font color="#000033">Address</font></td> <td height="25"> <?=$row_temp_header['billing_address']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">Country</font></td> <td height="25"> <?=$row_temp_header['billing_country']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">State</font></td> <td height="25"> <?=$row_temp_header['billing_state']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">Contact No.</font></td> <td height="25"> <?=$row_temp_header['billing_contact']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">Email</font></td> <td height="25"> <?=$row_temp_header['billing_email']?> </td> </tr> </table></td> </tr> </table></td> <td align="left" valign="top"> </td> <td width="350" align="left" valign="top"> <table width="350" border="0" cellspacing="0" cellpadding="0"> <tr> <td height="32" align="left" valign="middle" class="create-catalog-header" style="padding-left:20px"><font color="#000033"> Delivery Information</font> </td> </tr> <tr> <td align="left" valign="top"><table width="350" border="0" cellpadding="4" cellspacing="0" class="all-borders"> <tr align="left" valign="middle"> <td width="100" height="25"><font color="#000033">Name</font></td> <td height="25"> <?=$row_temp_header['shipping_name']?> </td> </tr> <tr align="left" valign="middle"> <td height="25" valign="top"><font color="#000033">Address</font></td> <td height="25"> <?=$row_temp_header['shipping_address']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">Country</font></td> <td height="25"> <?=$row_temp_header['shipping_country']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">State</font></td> <td height="25"> <?=$row_temp_header['shipping_state']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">Delivery Zip</font></td> <td height="25"> <?=$row_temp_header['shipping_zip']?> </td> </tr> <tr align="left" valign="middle"> <td height="25"><font color="#000033">Contact No.</font></td> <td height="25"> <?=$row_temp_header['shipping_contact']?> </td> </tr> </table></td> </tr> </table></td> </tr> <tr> <td align="right" valign="top"> </td> <td align="left" valign="top"> </td> <td align="left" valign="top"> </td> </tr> <tr> <td align="left" valign="top"> <table width="350" border="0" cellspacing="0" cellpadding="0"> <tr> <td height="32" align="left" valign="middle" class="create-catalog-header" style="padding-left:20px"><font color="#000033"> Special Notes (If Any)</font></td> </tr> <tr> <td align="left" valign="top"><table width="350" border="0" cellpadding="4" cellspacing="0" class="all-borders"> <tr align="left" valign="middle"> <td width="100" height="25"><font color="#000033">Notes</font></td> <td height="25"> <?=$row_temp_header['special_note']?> </td> </tr> </table></td> </tr> </table></td> <td align="left" valign="top"> </td> <td align="center" valign="middle"> <? if($_GET['p_option']=="paypal") { include(PAYPAL_PROCESS); } else if($_GET['p_option']=="creditcard") { ?> <table width="350" border="0" cellpadding="2" cellspacing="0" class="all-borders"> <tr align="left" valign="middle" class="create-catalog-header"> <td height="32" colspan="2"> Credit Card Information</td> </tr> <tr align="left" valign="middle"> <td width="100" height="25" valign="top"><font color="#000033">Card Type</font></td> <td height="25"> <?=$_SESSION['card_type']?> </td> </tr> <tr align="left" valign="middle"> <td height="25" valign="top"><font color="#000033">Card No:</font></td> <td height="25"> xxxx xxxx xxxx <?=substr($_SESSION['card_number'],-4)?> </td> </tr> <tr align="left" valign="middle"> <td height="25" valign="top"><font color="#000033">Validate Upto</font></td> <td height="25"> <?=$_SESSION['card_validity']?> </td> </tr> <tr align="left" valign="middle" bgcolor="#D2EDFF"> <td height="25" valign="top"> </td> <td height="25" align="center"><img src="images/cc_paynow.jpg" width="100" height="25" onMouseOver="this.style.cursor='pointer'" onClick="cc_process()"></td> </tr> </table> <? } else if($_GET['p_option']=="lease") { include(LEASE_PROCESS); } ?> </td> </tr> </table></td> </tr> <tr align="left" valign="middle"> <td height="25" class="left-links"> </td> <td class="left-links"> </td> <td class="left-links"> </td> <td colspan="2" align="right" class="left-links"> </td> <td align="left" class="left-links"> </td> <td align="left" class="left-links"> </td> </tr> </table></td> </tr> </table> <script language="JavaScript" type="text/javascript"> function cc_process() { window.location='payment_process/cc_confirm_payment.php'; } function lease_process() { window.location='payment_process/lease_confirm_payment.php'; } </script>