PageRenderTime 52ms CodeModel.GetById 27ms RepoModel.GetById 0ms app.codeStats 0ms

/admin/cake/app_controller.php

https://bitbucket.org/fxrialab/spsp_editor
PHP | 240 lines | 109 code | 20 blank | 111 comment | 9 complexity | 9c47b236144d6ed049b9258695598a7c MD5 | raw file
Possible License(s): LGPL-2.1, AGPL-1.0 
    

  1. <?php

    2. 

  2. /* SVN FILE: $Id: app_controller.php 4409 2007-02-02 13:20:59Z phpnut $ */

    3. 

  3. /**

    4. 

  4.  * Short description for file.

    5. 

  5.  *

    6. 

  6.  * This file is application-wide controller file. You can put all

    7. 

  7.  * application-wide controller-related methods here.

    8. 

  8.  *

    9. 

  9.  * PHP versions 4 and 5

    10. 

  10.  *

    11. 

  11.  * CakePHP(tm) :  Rapid Development Framework <http://www.cakephp.org/>

    12. 

  12.  * Copyright 2005-2007, Cake Software Foundation, Inc.

    13. 

  13.  *								1785 E. Sahara Avenue, Suite 490-204

    14. 

  14.  *								Las Vegas, Nevada 89104

    15. 

  15.  *

    16. 

  16.  * Licensed under The MIT License

    17. 

  17.  * Redistributions of files must retain the above copyright notice.

    18. 

  18.  *

    19. 

  19.  * @filesource

    20. 

  20.  * @copyright		Copyright 2005-2007, Cake Software Foundation, Inc.

    21. 

  21.  * @link				http://www.cakefoundation.org/projects/info/cakephp CakePHP(tm) Project

    22. 

  22.  * @package			cake

    23. 

  23.  * @subpackage		cake.cake

    24. 

  24.  * @since			CakePHP(tm) v 0.2.9

    25. 

  25.  * @version			$Revision: 4409 $

    26. 

  26.  * @modifiedby		$LastChangedBy: phpnut $

    27. 

  27.  * @lastmodified	$Date: 2007-02-02 07:20:59 -0600 (Fri, 02 Feb 2007) $

    28. 

  28.  * @license			http://www.opensource.org/licenses/mit-license.php The MIT License

    29. 

  29.  */

    30. 

  30. /**

    31. 

  31.  * This is a placeholder class.

    32. 

  32.  * Create the same file in app/app_controller.php

    33. 

  33.  *

    34. 

  34.  * Add your application-wide methods in the class below, your controllers

    35. 

  35.  * will inherit them.

    36. 

  36.  *

    37. 

  37.  * @package		cake

    38. 

  38.  * @subpackage	cake.cake

    39. 

  39.  */

    40. 

  40. class AppController extends Controller {

    41. 

  41.     var $components = array('RequestHandler','Gcheckout','Paypal');

    42. 

  42.     //the public variables are used for PAYPAL

    43. 

  43.     //put tha clock of code in

    44. 

  44.     public $returnUrl="";

    45. 

  45.     public $cancelUrl="";

    46. 

  46.     public $notifyUrl="";

    47. 

  47.     public $amountPay=NULL;

    48. 

  48.     public $userEmail=NULL;

    49. 

  49.     public $eventId=NULL;

    50. 

  50.     public $userId=NULL;

    51. 

  51.     public $merchantEmail=NULL;

    52. 

  52.     public $itemName=NULL;

    53. 

  53.     public $itemNumber=NULL;

    54. 

  54.     public $itemQuantity=NULL;

    55. 

  55.     public $invoice=NULL;

    56. 

  56.     public $custom=NULL;

    57. 

  57.     public $paypalUrl='https://www.sandbox.paypal.com/cgi-bin/webscr';

    58. 

  58.     public $ticketPaymentMsg=NULL;

    59. 

  59.     function paypal() {

    60. 

  60. 

    61. 

  61.         if(isset($this->ticketPaymentMsg))

    62. 

  62.             $this->Paypal->ticketPayment=$this->ticketPaymentMsg;

    63. 

  63. 

    64. 

  64.         $this->Paypal->paypal_class();

    65. 

  65.         $this->Paypal->paypal_url = $this->paypalUrl;

    66. 

  66.         $this->Paypal->paypal_url = 'https://www.sandbox.paypal.com/cgi-bin/webscr';

    67. 

  67. 

    68. 

  68.         $this->Paypal->add_field('business', $this->merchantEmail);

    69. 

  69.         $this->Paypal->add_field('return', $this->returnUrl);

    70. 

  70.         //$this->Paypal->add_field('cancel_return', $this->cancelUrl);

    71. 

  71.         $this->Paypal->add_field('notify_url', $this->notifyUrl);

    72. 

  72.         $this->Paypal->add_field('item_name', $this->itemName);

    73. 

  73.         $this->Paypal->add_field('amount', $this->amountPay);

    74. 

  74.         $this->Paypal->add_field('quantity', $this->itemQuantity);

    75. 

  75.         $this->Paypal->add_field('custom', $this->custom);

    76. 

  76.         $this->Paypal->add_field('invoice',$this->invoice);

    77. 

  77.         $this->Paypal->add_field('cbt','Return to Xoimages.com to complete your transaction');

    78. 

  78.         $this->Paypal->submit_paypal_post(); // submit the fields to paypal

    79. 

  79.     }

    80. 

  80.     //-----

    81. 

  81.     function transactionMaster($transactionDesc = null,$transactionHead = null,$transactionTitle = null, $invoice = null,$invoiceId = null) {

    82. 

  82.         mysql_query("

    83. 

  83. 				INSERT INTO 

    84. 

  84. 				xouser_transactions(transaction_desc,transaction_head,transaction_title,invoice,invoice_id)

    85. 

  85. 				VALUES('".$transactionDesc."','".$transactionHead."','".$transactionTitle."','".$invoice."','".$invoiceId."')") or die("Error on line ".__LINE__.mysql_error());

    86. 

  86. 

    87. 

  87.         return $xouserTransactionId=mysql_insert_id();

    88. 

  88.     }

    89. 

  89. 

    90. 

  90.     //'-1' entry implies that buyer has been charged

    91. 

  91.     //'+1' entry implies thar he has paid the amount that is charged

    92. 

  92.     //At the time of commission calculation we will make the charged entry against the user

    93. 

  93.     function transactionDetail($buyer = null,$amount = null,$DbCr = null,$lastTransactionId = null, $receipient = null) {

    94. 

  94. 

    95. 

  95.         mysql_query("INSERT INTO

    96. 

  96. 				xouser_transaction_details(user_id,amount,DrCr,xouser_transaction_id,payment_to)

    97. 

  97. 				VALUES('".$buyer."','".$amount."','".$DbCr."','".$lastTransactionId."','".$receipient."')");

    98. 

  98. 

    99. 

  99.     }

    100. 

  100. 

    101. 

  101.     function getPaymentMethods($userId) {

    102. 

  102.         /*$queryAdminPaymentSetup=mysql_query("SELECT paypal_email,gcheckout_email FROM user_payment_setup WHERE user_id='".$userId."'") or die("Error on line :".__LINE__.mysql_error());*/

    103. 

  103. 

    104. 

  104.         $queryAdminPaymentSetup=mysql_query("SELECT paypal_email FROM user_payment_setup WHERE user_id='".$userId."'") or die("Error on line :".__LINE__.mysql_error());

    105. 

  105.         $fetchAdminPaymentSetup=mysql_fetch_assoc($queryAdminPaymentSetup);

    106. 

  106.         return $fetchAdminPaymentSetup;

    107. 

  107.     }

    108. 

  108. 

    109. 

  109.     function getUserDetails($userId) {

    110. 

  110.         $qry2=mysql_query("SELECT UD.*,U.* FROM user_details UD,users U WHERE UD.user_id=U.id AND U.id='".$userId."'");

    111. 

  111.         $rowQry=mysql_fetch_assoc($qry2);

    112. 

  112.         

    113. 

  113.         return $rowQry;

    114. 

  114.     }

    115. 

  115. 

    116. 

  116.     function senderMail($sender=null,$receiver=null,$subject=null,$body=null) {

    117. 

  117.         $mailQry = "

    118. 

  118. 		INSERT INTO sent_mails(user_id, reciever_id, email_subject, email_body) 

    119. 

  119. 		VALUES(".$sender.", ".$receiver.", '".$subject."', '".addslashes($body)."')";

    120. 

  120.         $sentMailUpdate = mysql_query($mailQry) or die("1 - ".mysql_error());

    121. 

  121.     }

    122. 

  122. 

    123. 

  123.     function receiverMail($receiver=null,$sender=null,$subject=null,$body=null) {

    124. 

  124.         $eMailQry = "

    125. 

  125. 			INSERT INTO 

    126. 

  126. 			emails(user_id, email_creater, email_subject, email_body) 

    127. 

  127. 			VALUES(".$receiver.", ".$sender.", '".$subject."', '".addslashes($body)."')";

    128. 

  128.         $inboxUpdate = mysql_query($eMailQry) or die("2 - ".mysql_error());

    129. 

  129.     }

    130. 

  130. 

    131. 

  131.     function parseXmlArray($xmlData) {

    132. 

  132.         $data = $xmlData;

    133. 

  133.         $xml_parser = xml_parser_create();

    134. 

  134.         xml_parse_into_struct($xml_parser, $data, $vals, $index);

    135. 

  135.         xml_parser_free($xml_parser);

    136. 

  136. 

    137. 

  137.         $params = array();

    138. 

  138.         $level = array();

    139. 

  139.         foreach ($vals as $xml_elem) {

    140. 

  140.             if ($xml_elem['type'] == 'open') {

    141. 

  141.                 if (array_key_exists('attributes',$xml_elem)) {

    142. 

  142.                     list($level[$xml_elem['level']],$extra) = array_values($xml_elem['attributes']);

    143. 

  143.                 }

    144. 

  144.                 else {

    145. 

  145.                     $level[$xml_elem['level']] = $xml_elem['tag'];

    146. 

  146.                 }

    147. 

  147.             }

    148. 

  148. 

    149. 

  149.             if ($xml_elem['type'] == 'complete') {

    150. 

  150.                 $start_level = 1;

    151. 

  151.                 $php_stmt = '$params';

    152. 

  152.                 while($start_level < $xml_elem['level']) {

    153. 

  153.                     $php_stmt .= '[$level['.$start_level.']]';

    154. 

  154.                     $start_level++;

    155. 

  155.                 }

    156. 

  156.                 $php_stmt .= '[$xml_elem[\'tag\']] = $xml_elem[\'value\'];';

    157. 

  157.                 eval($php_stmt);

    158. 

  158.             }

    159. 

  159.         }

    160. 

  160. 

    161. 

  161.         return $params;

    162. 

  162.     }

    163. 

  163. 

    164. 

  164.     function checkSession() {

    165. 

  165.         // If the session info hasn't been set...

    166. 

  166.         if (!$this->Session->check('Admin')) {

    167. 

  167.             // Force the user to login

    168. 

  168.             $this->redirect('/admins/login');

    169. 

  169.         }

    170. 

  170.         else {

    171. 

  171.             $this->layout = 'default_after_login';

    172. 

  172.             /*$hours = date("H");

    173. 

  173. 				$minutes = date("i");

    174. 

  174. 				$seconds = date("s");

    175. 

  175. 				$month = date("m");

    176. 

  176. 				$day = date("d");

    177. 

  177. 				$year = date("Y");

    178. 

  178. 				$total = date("m-d-Y-H-i-s");

    179. 

  179. 				$now = mktime($hours, $minutes, $seconds, $month, $day, $year);

    180. 

  180. 				$page_qry = "select * from sites where page='$_SERVER[REQUEST_URI]'";

    181. 

  181. 				$res_page = mysql_query($page_qry);

    182. 

  182. 				if(mysql_num_rows($res_page)==0)

    183. 

  183. 				{

    184. 

  184. 					$qry = "insert into `sites` (page, time, referrer, browser, ip, timeStamp, pagetitle, visits) values ('$_SERVER[REQUEST_URI]', '$total', '$_SERVER[HTTP_REFERER]', '$_SERVER[HTTP_USER_AGENT]', '$_SERVER[REMOTE_ADDR]', '$now', '".$this->pageTitle."', 1 )";

    185. 

  185. 					$res = mysql_query($qry);

    186. 

  186. 				}

    187. 

  187. 				else

    188. 

  188. 				{

    189. 

  189. 					$qry = "UPDATE `sites` SET visits = visits + 1 WHERE `page` ='$_SERVER[REQUEST_URI]'";

    190. 

  190. 					$res = mysql_query($qry);

    191. 

  191. 				}*/

    192. 

  192.         }

    193. 

  193.     }

    194. 

  194. 

    195. 

  195.     /*function checkAccess()

    196. 

  196.     {

    197. 

  197.         // Check access using the component:

    198. 

  198.         $access = $_SESSION['Admin_type'];

    199. 

  199. 

    200. 

  200. 		//access denied

    201. 

  201.         if ($access == 1)

    202. 

  202.         {

    203. 

  203.             return true;

    204. 

  204.             //exit;

    205. 

  205.         }

    206. 

  206.         //access allowed

    207. 

  207.         else

    208. 

  208.         {

    209. 

  209.             return false;

    210. 

  210.             

    211. 

  211.         }

    212. 

  212.     }

    213. 

  213. 	

    214. 

  214. 	

    215. 

  215. 	 function checkAccess1($menu_name,$permission_type)

    216. 

  216.     {

    217. 

  217.       

    218. 

  218. 		// Check access using the component:

    219. 

  219.         //$access = $_SESSION[$menu_name]['modify'];

    220. 

  220.        	$access = $this->Acl->check($_SESSION['Admin_cat'],$menu_name,$permission_type);

    221. 

  221. 			

    222. 

  222. 	

    223. 

  223. 	

    224. 

  224. 	    //access denied

    225. 

  225.         if ($access)

    226. 

  226.         {

    227. 

  227.             return true;

    228. 

  228.             //exit;

    229. 

  229.         }

    230. 

  230.         //access allowed

    231. 

  231.         else

    232. 

  232.         {

    233. 

  233.            $this->redirect('admins/access_denied');

    234. 

  234. 		    return false;

    235. 

  235.             

    236. 

  236.         }

    237. 

  237.     }*/

    238. 

  238. 

    239. 

  239. }

    240. 

  240. ?>
    241.