ini_set('arg_separator.output', '&');
session_start();
setcookie("PHPSESSID",session_id());
include "inc/classes/db/db.php";
include "inc/dbConnect.php";
include "inc/smarty.php";
include "inc/functions.php";
include "inc/validate.php";
include "inc/errors.php";
foreach ($_GET as $k=>$v){
$_GET[$k]=mysql_real_escape_string($v);
}
$smarty->assign("komp",$_GET[component]);
$smarty->assign("page",$_GET[page]);
/*
if (!$_SERVER['QUERY_STRING']) $amp='?'; else $amp='&';
$smarty->assign("session",$amp."PHPSESSID=".session_id());
*/
if (in_array($_SERVER['HTTP_HOST'],array('qlife.ba','www.qlife.ba'))){
define("is_ba",true);
} else {
define("is_ba",false);
}
if ($_GET[logout]) {
session_unset();
header("Location: ?component=login");
}
include "inc/config.inc.php";
include "inc/form.php";
if (!$_SESSION[logged] and !$_GET[logout] and (($component!='login' and !$show) or $show)) {
setcookie("redirect", 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'].$amp);
}
switch ($_REQUEST[action]){
case 'qcaffe_post':
$forms[qcaffe_post][fetch][html]=preg_replace("/\r\n|\n|\r/", "
", $_POST[html]);
break;
case newuser:
if ($_POST[username]) {
$query_record = "SELECT * FROM users WHERE username='".$_POST[username]."' OR email='".$_POST[email]."'";
$record = mysql_query($query_record, $dbConnect) or die(mysql_error());
if ($row_record = mysql_fetch_assoc($record))
$forms[newuser][validate][]=array(valid=>false,err_message=>ERROR_USER_OR_EMAIL_EXISTS);
}
break;
case 'login_user':
if ($_COOKIE[redirect])
$forms[login][redirect]=$_COOKIE[redirect];
if ($_POST['username'] and $_POST['pword']) {
$query_record = "SELECT * FROM users WHERE username='".$_POST[username]."' AND pword='".$_POST[pword]."'";
$record = mysql_query($query_record, $dbConnect) or die(mysql_error());
if ($row_record = mysql_fetch_assoc($record)) {
$forms[login_user][fetch][]=$row_record;
$_SESSION[logged]=1;
$_SESSION['group_id']=$row_record['group_id'];
if ($row_record['group_id']==2)
$forms['login_user']['redirect']='?component=calendar';
} else
$errors[login_user]=_("Korisnik nije pronađen");
$forms[login_user][conditions][$_SESSION[logged]]=1;
} else
$errors[login_user]=ERROR_USERNAME;
break;
case 'checkout':
$cartcontent='';
if ($_POST[nazivt]) {
if (is_ba){
$forms[checkout][validate][]=array(valid=>is_Required($_POST[mb]),err_message=>_("Molimo upišite ID Broj"));
$forms[checkout][validate][]=array(valid=>is_Required($_POST['tax_number']),err_message=>_("Molimo upišite PDV Broj"));
} else {
$forms[checkout][validate][]=array(valid=>is_Required($_POST[mb]),err_message=>_("Molimo upišite OIB"));
}
// $forms[checkout][validate][]=array(valid=>is_Required($_POST[oib]),err_message=>_("Molimo upišite OIB"));
} else {
$forms[checkout][validate][]=array(valid=>is_Required($_POST[ime]),err_message=>ERROR_FIRST_NAME);
$forms[checkout][validate][]=array(valid=>is_Required($_POST[prezime]),err_message=>ERROR_LAST_NAME);
}
$broj=db_query("SELECT COUNT(*) as broj from cart",$dbConnect);
$broj[0][broj]=$broj[0][broj]+1;
$cartcontent.=$_POST[pretplata].'
';
$podaci=$_POST[ime].' '.$_POST[prezime];
if ($_POST[nazivt]) $podaci.='
'.$_POST[nazivt];
if (is_ba){
if ($_POST[mb]) $podaci.='
ID Broj: '.$_POST[mb];
} else {
if ($_POST[mb]) $podaci.='
OIB: '.$_POST[mb];
}
if ($_POST['tax_number']) $podaci.='
PDV Broj: '.$_POST['tax_number'];
// if ($_POST[oib]) $podaci.='
OIB: '.$_POST[oib];
$podaci.='
'.$_POST[ulica];
$podaci.='
'.$_POST[pb].' '.$_POST[grad];
$podaci.='
'.$_POST[drzava];
$podaci.='
'.$_POST[telefon];
$podaci.='
'.$_POST[email];
$cartcontent='VAŠI PODACI USPJEŠNO SU ZAPRIMLJENI
'.$podaci.'
'.$cartcontent.'
';
$forms[checkout][fetch][cartcontent]=$cartcontent;
if (is_ba){
$forms[checkout]['sendto']=array(
array(name=>$_POST[ime].' '.$_POST[prezime],
email=>$_POST[email]),
array(name=>'q21 Online Store',
email=>'info@quantum21.net'),
array(name=>'q21 Online Store',
email=>'qLife@quantum21.net'),
array(name=>'q21 Online Store',
email=>'naklada.mate@infoneum.com')
);
$forms[checkout]['template']='components/static/checkout_ba.html';
}
$smarty->assign("bn",$broj[0][broj]);
// $smarty->assign("placanje",$placanje);
$smarty->assign("cartcontent",$cartcontent);
break;
case ordercart:
$cartcontent='';
if ($_POST[nazivt]) {
// $forms[ordercart][validate][]=array(valid=>is_Required($_POST[mb]),err_message=>ERROR_MB);
if (is_ba){
$forms[ordercart][validate][]=array(valid=>is_Required($_POST[mb]),err_message=>_("Molimo upišite ID Broj"));
$forms[ordercart][validate][]=array(valid=>is_Required($_POST['tax_number']),err_message=>_("Molimo upišite PDV Broj"));
} else {
$forms[ordercart][validate][]=array(valid=>is_Required($_POST[mb]),err_message=>_("Molimo upišite OIB"));
}
} else {
$forms[ordercart][validate][]=array(valid=>is_Required($_POST[ime]),err_message=>ERROR_FIRST_NAME);
$forms[ordercart][validate][]=array(valid=>is_Required($_POST[prezime]),err_message=>ERROR_LAST_NAME);
}
foreach ($_SESSION[cart] as $v1) {
$new_array[]="qbooks.id=".$v1[id];
}
$tmp_cart=db_query("SELECT qbooks.*, authors.name FROM qbooks left join authors on authors.id=qbooks.author where ".implode(" OR ",$new_array), $dbConnect);
foreach ($tmp_cart as $v1){
$cartcontent.=$v1[title].' '.$_POST['kol'.$v1[id]].' x '.($_POST['total'.$v1[id]]/$_POST['kol'.$v1[id]]).' kn
';
}
$broj=db_query("SELECT COUNT(*) as broj from cart",$dbConnect);
$broj[0][broj]=$broj[0][broj]+1;
for($i=0;$i<=(8-strlen($broj[0][broj]));$i++)
$broj[0][broj]='0'.$broj[0][broj];
if ($_POST[placanje]=='pouzece')
$placanje=25; else $placanje=20;
$cartcontent.='-
UKUPNI IZNOS NARUDŽBE = '.number_format(($_POST[ukup]),2,'.',',').' kn + '.$placanje.' kn = '.number_format(($_POST[ukup]+$placanje),2,'.',',').' kn';
$podaci=$_POST[ime].' '.$_POST[prezime];
if ($_POST[nazivt]) $podaci.='
'.$_POST[nazivt];
if (is_ba){
if ($_POST[mb]) $podaci.='
ID Broj: '.$_POST[mb];
} else {
if ($_POST[mb]) $podaci.='
OIB: '.$_POST[mb];
}
if ($_POST['tax_number']) $podaci.='
PDV Broj: '.$_POST['tax_number'];
// if ($_POST[oib]) $podaci.='
OIB: '.$_POST[oib];
$podaci.='
'.$_POST[ulica];
$podaci.='
'.$_POST[pb].' '.$_POST[grad];
$podaci.='
'.$_POST[drzava];
$podaci.='
'.$_POST[telefon];
$podaci.='
'.$_POST[email];
$cartcontent='VAŠI PODACI USPJEŠNO SU ZAPRIMLJENI
BROJ NARUDŽBE: '.($broj[0][broj]).'
'.$podaci.'
'.$cartcontent.'
';
$smarty->assign("bn",$broj[0][broj]);
$smarty->assign("placanje",$placanje);
$forms[ordercart][fetch][cartcontent]=$cartcontent;
break;
}
form_process($_REQUEST[action], $forms,$smarty);
$smarty->assign("errors",$errors);
if ($_REQUEST[action]=='ordercart' and !$errors[ordercart]) {
unset($_SESSION[cart]);
$_GET[component]='static';
$smarty->assign("cart",$cartcontent);
foreach($_POST as $k=>$v1)
$smarty->assign($k,$v1);
$_GET[page]='cart';
}
if (count($_SESSION[cart]))
$smarty->assign("cart1",count($_SESSION[cart]));
if ($_SESSION[logged]) {
$smarty->assign("logged",$_SESSION[logged]);
$smarty->assign("first_name",$_SESSION[first_name]);
$smarty->assign("last_name",$_SESSION[last_name]);
}
if ($id and $_POST[action]=='newuser') {
$_SESSION[logged]=1;
$_SESSION[userid]=$id;
session_register(logged);
session_register(userid);
header("Location: ?component=login&show=myaccount");
}
$temp_file='index.html';
switch ($_GET[component]){
case '':
$component_file='components/headers/headers.php';
$temp_file='home.html';
break;
case 'calendar':
$temp_file='calendar.html';
if ($_GET['template']=='blank')
$temp_file='blank.html';
default:
$component_file='components/'.$_GET[component].'/'.$_GET[component].'.php';
break;
}
if (file_exists($component_file)) {
ob_start();
include $component_file;
$contents = ob_get_contents();
ob_end_clean();
$smarty->assign("body",$contents);
}
foreach(array('banners', 'book_of_the_month','qdialogue','qlife') as $v1){
ob_start();
include 'modules/'.$v1.'/'.$v1.'.php';
$module = ob_get_contents();
ob_end_clean();
$smarty->assign($v1,$module);
}
setcookie("PHPSESSID",session_id());
$smarty->display($temp_file);