$kind"; $head_ft = "N"; } if (ereg("cart.cust",$SCRIPT_FILENAME)) $localpage='Y'; get_session($sesscook); if (empty($store)) $store = test_id('N'); if (test_order() == FALSE) { standard($store,""); echo "

Your cart is empty.

"; display_return(); echo "If you cannot order then please email us"; foot($store); $bad = 'Y'; } if ($bad == 'Y') return; # omit all the code to the end $MP = "/usr/sbin/sendmail -t"; $js=0; $grand = 0.0; if (ereg("(ozilla.[23456789]|MSIE.[3456789])",$HTTP_USER_AGENT)) { $js=1; if (ereg("AOL",$HTTP_USER_AGENT)) { $js=0; } } switch($action) { case "verify": $errfound = "N"; if ($onum == 0) { standard($store,''); echo "

Your cart is empty.

"; display_return(); $finish = "Y"; break; } if(!$client) { fault("You did not enter your Name"); } if(!$adda) { fault("You did not enter your Address"); } if(!$city) { fault("You did not enter your City"); } if (!$state) { fault("You did not enter your State"); } if (!$postal) { fault("You did not enter your Postal Code"); } if (!$email) { fault("You did not enter your Email address"); } else { if (! ereg("^[^@ ]+@([a-zA-Z0-9\-]+\.)+([a-zA-Z0-9\-]{2}|net|com|gov|mil|org|edu|int)$",$email)) { fault("Badly formed Email address"); } } if (isset($clid) && $clid != "") { $res= db_query("select id from customers where id = '$clid'"); $ct = db_numrows($res); if ($ct > 0) { fault("The reference selected already exists -select another"); } if (strlen($pass1) < 4) { fault("Passwords to be at least 4 characters"); } if ($pass1 != $pass2) { fault("Passwords did not match"); } } if ($ordmeth == "S") { include "$CART/cardver.inc"; } if ($errfound == "N") { $res = @ms_query("select name from countries where id = '$ctry'"); $ct_name = @db_result($res,0,"name"); $res = db_query("select * from sohead where id = '$onum'"); $oval = db_result($res,0,"oval"); $tax = db_result($res,0,"tax"); $post = db_result($res,0,"post"); $query = "update sohead set"; $query .= " cust='$clid'"; $query .= ",name='$client'"; $query .= ",adda='$adda'"; $query .= ",addb='$addb'"; $query .= ",addc='$city'"; $query .= ",addd='$state'"; $query .= ",zipc='$postal'"; $query .= ",email='$email'"; $query .= ",tel='$tel'"; $query .= ",fax='$fax'"; $query .= ",cred='$CardNumber'"; $query .= ",cexm='$ExpMon'"; $query .= ",cexy='$ExpYear'"; $query .= ",ctyp='$CardType'"; $query .= ",issue='$issue'"; $query .= ",comm='$body'"; $query .= ",stat='$ordmeth'"; $query .= ",odat=now()"; $query .= ",otim=now()"; $query .= ",url='$REMOTE_ADDR'"; $query .= " where id = $onum"; db_query($query); if ($ordmeth == "P") { # NB. echo is used as opposed to fopen because we have # already shown the page head in viewcart.htm types echo "


";
			echo "
";
			echo "Your name is    : $client
";
			echo "Address         : $adda
";
			echo "                : $addb
";
			echo "                : $city
";
			echo "                : $state
";
			echo "                : $ct_name
";
			echo "                : $postal
";
			echo "EC Vat Code     : $ecvat
";
			echo "Telephone       : $tel
";
			echo "Fax             : $fax
";
			echo "Order Number    : $onum
";
			echo "Email at        : $email
";
			echo "Quoted Price    : $oval
";
			if (strtolower($ctry) == 'uk')
				echo "Shipping        : $post
";
			else
				echo "Shipping        : to be quoted by email
";
			echo "Tax             : $tax
";
			echo "Supply the following items
";
			echo "--------------------------
";
		}
		if ($ordmeth == "S")
		{
			if ($CardType == "Other")
			{
				$CardType = $cname;
			}
		}
		$cres = ms_query("select email from client where id = '$store'");
		$cl_email = @db_result($cres,0,"email");
		if (!empty($cl_email))
			$mailman = $cl_email;
		if ($ordmeth != "P")
		{
		   	$fd = popen($MP,"w");
			fputs($fd, "To: $mailman\n");
			fputs($fd, "From: $email\n");
			fputs($fd, "Subject: Sales Order $onum-$store- $client at $email\n");
			fputs($fd, "Reply-to: $email\n");
			$ver = phpversion();
			fputs($fd, "X-Mailer: PHP/FI $ver\n\n");
			fputs($fd, "Order Number         : $onum\n");
			fputs($fd, "Email at             : $email\n");
			list($enam,$base) = split("@",$email,2);
			
			fputs($fd, "Login Id             : $bulluser\n");
			fputs($fd, "User name is         : $client\n");
			fputs($fd, "Address              : $adda\n");
			fputs($fd, "                     : $addb\n");
			fputs($fd, "                     : $city\n");
			fputs($fd, "                     : $state\n");
			fputs($fd, "                     : $ct_name\n");
			fputs($fd, "                     : $postal\n");
			fputs($fd, "EC Vat Code          : $ecvat\n");
			fputs($fd, "Telephone            : $tel\n");
			fputs($fd, "Fax                  : $fax\n");
			fputs($fd, "Quoted Price         : $oval\n");
			fputs($fd, "Shipping             : $post\n");
			fputs($fd, "Tax                  : $tax\n");
			$tot = $oval + $tax + $post;
			fputs($fd, "Quoted Total         : $tot\n");
			if ($ordmeth == "S")
			{
				if ($CardType == "Other")
				{
					$CardType = $cname;
				}
				fputs($fd, "Card                 : $CardType     $ExpMon/$ExpYear\n");
				fputs($fd, "Card                 : $CardNumber\n");
				fputs($fd, "Issue                : $issue\n");
				fputs($fd, "------------------------------------------\n");
			}
			if ($ordmeth == "T")
			{
				fputs($fd, "CALL CLIENT FOR CARD DETAILS\n");
			}
		}
		$res = db_query("select * from soline where onum = '$onum' order by id");
		$ct = db_numrows($res);
		for ($j = 0; $j < $ct; $j++)
		{
			$prod = mysql_result($res,$j,"prod");
			$price = mysql_result($res,$j,"price");
			$sdesc = mysql_result($res,$j,"sdesc");
			$qty = mysql_result($res,$j,"qty");
			$mail_bod .= "\nItem: $prod -Quantity $qty at  $price  $sdesc";
			if ($ordmeth != "P")
			{
	    		fputs($fd, "$onum -Item: $prod -Quantity $qty at  $price  $sdesc\n");
			}
			else
	    		echo "$onum -Item: $prod -Quantity $qty at  $price -$sdesc
";
		}
		if ($ordmeth != "P")
		{
			if (!empty($body))
			{
				fputs($fd, "-----Other Comments ---\n");
				fputs($fd, $body);
			}
			fputs($fd, "-----------End of Order $onum -------\n");
        		pclose($fd);
		}
		if ($ordmeth == "P")
		{
			if (!empty($body))
			{
				echo "-----Other Comments ---
";
				echo nl2br($body);
			}
			echo "----End of Order $onum -----

";
			echo "Sign Here       -->.";
			echo "
"; upd_session("onum",0); display_return(); exit(); } $fd = popen($MP,"w"); fputs($fd, "To: $email\n"); fputs($fd, "From: $mailman\n"); fputs($fd, "Subject: Order Confirmation\n"); fputs($fd, "Reply-to: $mailman\n"); $ver = phpversion(); fputs($fd, "X-Mailer: PHP/FI $ver\n\n"); fputs($fd, "Order Number : $onum\n"); fputs($fd, "Your order has been received\n"); fputs($fd, "$mail_bod\n"); fputs($fd, "Quoted Price : $oval\n"); fputs($fd, "Shipping : $post\n"); fputs($fd, "Tax : $tax\n"); $tot = $oval + $tax + $post; fputs($fd, "Quoted Total : $tot\n"); pclose($fd); standard($store,"Order Details Page"); echo "
"; echo "

Your Order has been sent for processing

"; echo "

Order Number is $onum

"; display_return(); echo "
"; upd_session("onum",0); $dot = substr($email,-3,1); $cid = strtoupper(substr($email,-2,2)); /* ignore all .com etc */ if (($dot == '.') && ($cid != $ctry)) { $res = @ms_query("select zone,name from countries where id = '$ctry'"); $ct_name = @db_result($res,0,"name"); echo "

Your quoted charge was based on pricing for $ct_name"; echo "

Your actual charge may be different if you live in a different country"; } $finish = "Y"; break; } break; default: $oldc = $ctry; standard($store,"Order Details Page"); break; } ?> Enter Fields Below to Complete the Order"; disp_oval($onum); echo "

To view pricing in another currency return use your back button "; # It would be nice to make a different action for post to allow a neat print out # However this picks up a dodgy background if not verified ok ?>

?action=verify OnSubmit='return CheckForm(this)' > > > >

Items marked (*) must be entered

>
"; } ?> >
Other requests
To view pricing in another currency return use your back button "; ?>