#!/usr/bin/perl # ^^ The line above needs to point to the Perl intrepreter on your system. # Ask your sys admin for the correct path, or type 'which perl' at the unix # prompt. You need Perl 5 or higher. type 'perl -v' to get your version. ############################################################################ ################## # RediCart v5.3 ################## ############################################################################### # THIS SCRIPT IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER # EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES # OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. # # THE PROVIDERS OF THIS SOFTWARE ASSUME NO RESPONSIBILITY FOR ANY DAMAGES # SUFFERED AS A RESULT OF USING, MODIFYING OR DISTRIBUTING THIS SOFTWARE. IN NO # EVENT WILL ANY PROVIDERS OF THIS SOFTWARE BE LIABLE FOR ANY LOST REVENUE, PROFIT # OR DATA, OR FOR DIRECT, INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE # DAMAGES, HOWEVER CAUSED AND REGARDLESS OF THE THEORY OF LIABILITY, # ARISING OUT OF THE USE OF OR INABILITY TO USE SOFTWARE, EVEN IF THE # PROVIDERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. ############################################################################## ############################################################################ # MAKE NO CHANGES BELOW THIS LINE. ############################################################################ $ENV{'REMOTE_HOST'} = $ENV{'REMOTE_ADDR'}; # Measure CPU time usage; $start = (times)[0]; # Get rid of NULL; $zero - '0'; require 'smart.cfg'; use vars qw($tmpdir $storename %shipping2 %shipping3 $trackurl $useverify $usertime $orderdir $usercurr $trackdb); my($incoming, @pairs, %FORM); $incoming = $ENV{'QUERY_STRING'}; @pairs = split(/&/, $incoming); foreach $pair (@pairs) { my($name, $value) = split(/=/, $pair); $value =~ tr/+/ /; $value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; $FORM{$name} = $value; } # Get command variables $command = $FORM{'command'}; $pos = $FORM{'pos'}; $type = $FORM{'type'}; $cmdlinegroup = $FORM{'group'}; $first_name = $FORM{'first_name'}; $sfname = $FORM{'sfname'}; $slname = $FORM{'slname'}; $saddr = $FORM{'saddr'}; $scity = $FORM{'scity'}; $sstate = $FORM{'sstate'}; $szip = $FORM{'szip'}; # Parse form input &parse_form; # Get the date &get_date; # Get their hostname #if ($usecookie eq '1') { #require 'cookie.lib'; #&get_cookie; #} #else { &get_host; #} # See if they have a cart already, if not, make one &check_file; # See what they want to do. # Add an item to the cart. if ($command eq 'add') { &add_item; } # Change a quantity of an item in the cart, if at zero, delete it elsif ($command eq 'change') { &change_items; } # Show the order form. Get their name, phone number, CC info, etc.. elsif ($command eq 'buy1') { &buy_items1; } # Display the order form to fill out elsif ($command eq 'buy2') { &buy_items1; } # Confirm the order and proceed to secure server elsif ($command eq 'confirm') { &confirm; } # Show current cart elsif ($command eq 'review') { &review_items; } # List items, based on database call elsif ($command eq 'listitems') { &gen_page; } # Show a databae frontend. elsif ($command eq 'showstore') { &show_store; } # Delete a whole cart elsif ($command eq 'delete') { &delete_cart; } # Calculate shipping elsif ($command eq 'calcship') { &calc_shipping; } elsif ($command eq 'setship') { &set_shipping; } elsif ($command eq 'removetax') { &remove_tax; } elsif ($command eq 'addtax') { &add_tax; } elsif ($command eq 'removetax2') { &remove_tax2; } elsif ($command eq 'addtax2') { &add_tax2; } elsif ($command eq 'retaddr') { &ret_addr; } elsif ($command eq 'calccurr') { &calc_currency; } elsif ($command eq 'setcurr') { &set_currency; } else { &show_store; } # Subroutines: # Generate page, based on database search sub gen_page { my($SIZE,$max,$i,$itemid,$name,$price,$descrip,$image,$weight,$itemurl,$group); &print_header; # Table header, change this for table options! print "\n"; print "\n"; open (FILE,"$resourcedb") || die "Content-type: text/html\n\nCan't Open $resourcedb(r): $!\n"; my(@LINES)=; close(FILE); $SIZE=@LINES; if ($type eq 'all') { $max = $pos + $numtolist; if ($max > $SIZE) { $max = $SIZE; } for ($i=$pos;$i<$max;$i++) { $_=$LINES[$i]; ($itemid, $name, $price, $descrip, $image, $weight, $itemurl, $group) = split(/\|/,$_); &print_item; } print "

\n"; if ($max < $SIZE) { print "Next $numtolist items\n"; } } if ($type eq 'search') { my($matches) = 0; my($i) = $pos; while (($matches < $numtolist) && ($i < $SIZE)) { $_=$LINES[$i]; if (m/$FORM{'search'}/i) { $matches++; ($itemid, $name, $price, $descrip, $image, $weight, $itemurl, $group) = split(/\|/,$_); &print_item; } $i++; } print "\n"; if ($i < $SIZE) { print "

\n"; print "\n"; print "\n"; print "\n"; } } if ($type eq 'group') { my($matches) = 0; my($i) = $pos; while (($matches < $numtolist) && ($i < $SIZE)) { $_=$LINES[$i]; ($itemid, $name, $price, $descrip, $image, $weight, $itemurl, $group) = split(/\|/,$_); if ($group eq $FORM{'group'} || $group eq $cmdlinegroup) { $matches++; &print_item; } $i++; } print "\n"; if ($i < $SIZE) { if ($cmdlinegroup) { print "Continue Search\n"; } else { print "Continue Search\n"; } } } &print_footer; sub print_item { print "\n"; } ## END print_item } ## END gen_page # Show front end of database store. sub show_store { &print_header; print "\n"; print "

\n"; print "List all items available
\n
\n

Search for a particular item(s):

\n"; print "\n

List all:

\n"; print "

\n
"; if ($usetrack eq 1) { print "
Track an Order
\n"; } print "

\n"; &print_footer; } ## END show_store # Print the HTML header sub print_header { print "Content-type: text/html\n\n"; if ($creg eq '1') { print " \n"; } else { #print nothing } print "Shopping Cart \n"; } # Print the images for the HTML header sub print_header_images { open (HEADER,"$basepath/$header") || print "Could not open $basepath/$header $! \n"; while (

) { print $_; } close(HEADER); } #Print the HTML footer sub print_footer { open (FOOTER,"$basepath/$footer") || print "Could not open $basepath/$footer $! \n"; while (

) { #$url = ~ s/return_url/$return_url/; print $_; } close(FOOTER); } ## END print_footer # List items in cart. sub list_items { my($totalprice,$totalquant,$totalweight) = 0; open (REFFILE,"$reffile") || die "Content-type: text/html\n\nCan't Open $reffile(r): $!\n"; my(@LINES)=; close(REFFILE); $SIZE=@LINES; $rcitem=1; print "\n"; print "\n"; print "\n"; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print ""; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; ($itemname, $itemprice, $itemquant, $weight, $itemid, $return_url) = split(/\|/,$_); $tmpprice = ($itemprice*$itemquant); $tmpprice = int($tmpprice * (10 ** 2) + .5) / (10 ** 2); $totalprice += $tmpprice; $totalquant += $itemquant; $totalweight = ($weight*$itemquant) + $totalweight; print ""; if ($useimage eq '1') { if ($FORM{'image'}) { print "\n"; } else { print ""; } } if ($useid eq '1') { print "\n"; } $tmpprice = &format_price($tmpprice); print "\n"; ########## INCLUDE REQUIRED FIELD NAMES ########### print "\n"; print "\n"; print "\n\n"; $rcitem=$rcitem+1; } print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $totalprice = &format_price($totalprice); print "\n"; if ($tax eq '2') { $temptax=$tax } if ($temptax <=> '0') { if ($tax eq '0') { # print nothing } elsif ($tax eq '1') { $taxtotal = $totalprice * $taxper; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice = $totalprice + $taxtotal; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $taxtotal = &format_price($taxtotal); print "\n"; ##### INCLUDE TAX TAG ##### print "\n"; print "\n"; print "\n\n"; } elsif ($tax eq '2') { $taxtotal = $totalprice * $taxamt; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice = $totalprice + $taxtotal; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $taxtotal = &format_price($taxtotal); #$_ = $taxtotal; #$rcitem=$rcitem+1; #if (/\./) { # my($left,$right) = split(/\./,$taxtotal); # if (length($right) == 0) { # $taxtotal = $taxtotal . "00"; # } # elsif (length($right) == 1) { $taxtotal = $taxtotal . "0"; } # } # else { $taxtotal = $taxtotal . ".00"; } print "\n"; ##### INCLUDE TAX TAG ##### print "\n"; print "\n"; print "\n\n"; } } if ($multiship eq 1) { print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } if ($shipping eq '3') { print "\n"; } else { print "\n"; } print "\n"; } else { if ($shipping eq '0') { # print nothing } elsif ($shipping eq '1') { local($low,@prices,$price); @prices = sort number keys %shipping; $low = $prices[0]; foreach $price (@prices) { if (($price > $low) && ($price <= $totalquant)) {$low = $price}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; ##### INCLUDE SHIPPING TAG (BY NUMBER OF ITEMS ORDERED.) ##### print "\n"; print "\n"; print "\n\n"; } elsif ($shipping eq '2') { $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; ##### INCLUDE SHIPPING TAG (NON-VARIABLE) ##### print "\n"; print "\n"; print "\n\n"; } elsif ($shipping eq '3') { my($low,@weights,$weight); @weights = sort number keys %shipping; $low = $weights[0]; foreach $weight (@weights) { if ($weight > $low && $weight <= $totalweight) {$low = $weight}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; # print "\n"; ##### INCLUDE SHIPPING TAG (BY WEIGHT) ##### print "\n"; print "\n"; print "\n\n"; } elsif ($shipping eq '4') { my($low,@prices); @prices = sort number keys %shipping; $low = $prices[0]; foreach $price (@prices) { if ($price > $low && $price <= $totalprice) {$low = $price}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; ##### INCLUDE SHIPPING TAG (BY TOTAL) ##### print "\n\n"; print "\n"; print "\n\n"; } } $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); $totalprice = &format_price($totalprice); #$_ = $totalprice; #if (/\./) { # my($left,$right) = split(/\./,$totalprice); # if (length($right) == 0) { # $totalprice = $totalprice . "00"; # } # elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } # } # else { $totalprice = $totalprice . ".00"; } print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; if ($multicurr eq 1) { $totalprice *= $usercurr; $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); $totalprice = &format_price($totalprice); # $_ = $totalprice; # if (/\./) { # my($left,$right) = split(/\./,$totalprice); # if (length($right) == 0) { # $totalprice = $totalprice . "00"; # } # elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } # } # else { $totalprice = $totalprice . ".00"; } print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; } print "

	ITEM ID
$mname
ITEM NAME	QUANTITY	PRICE	AMOUNT
		$itemid	$itemname	\$ $itemprice	\$ $tmpprice
Subtotal:				\$ $totalprice
Taxes:				\$ $taxtotal
Taxes:				\$ $taxtotal
Shipping:			"; if ($totalquant > '0') { print "$totalweight lbs."; } print "		"; if ($usership eq 'NULL') { print "Calculate Shipping"; } else { print "\$ $usership"; $totalprice += $usership; } print "
Shipping:				\$ $shipamt
Shipping:				\$ $shipamt
Shipping:			"; if ($totalquant > '0') { print "$totalweight lbs."; } print "	\$ $shipamt
$totalweight lbs.		\$ $shipamt
Shipping:				\$ $shipamt
Total price:				\$ $totalprice
Total price in selected currency:			Exchange Rate: $usercurr	\$ $totalprice

\n"; } # Review all items in cart. Can modify quantities. sub review_items { if ( ($multicurr eq 1) && ($usercurr eq 'NULL') ) { print "Location: $cgiurl\?command=calccurr \n\n"; } &print_header; &print_header_images; &list_items; print ""; if ($FORM{'return_url'}) { $return_url = $FORM{'return_url'}; } else { $return_url = $hp; } print "

\n"; &print_nav_options; &print_footer; } # Add a item to the cart, show review page, unless they included a redirect variable. sub add_item { open (REFFILE,"$reffile") || print "Content-type: text/html\n\n Can't find $reffile(r): $!\n"; @LINES=; close(REFFILE); $SIZE=@LINES; $line=$LINES[0]; ($filetime, $filedate, $filehost, $usership, $ship_name) = split(/\|/,$line); open (REFFILE,">$reffile") || print "Content-type: text/html\n\n Can't find $reffile(r): $!\n"; print REFFILE "$filetime\|$filedate\|$filehost\|NULL\|\|\n"; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; my($itemname, $itemprice, $itemquant, $weight, $itemid, $return_url) = split(/\|/,$_); print REFFILE join "\|", $itemname,$itemprice,$itemquant,$weight,$itemid,$return_url,"\|\n"; } print REFFILE join "\|", $FORM{'itemname'},$FORM{'itemprice'},$FORM{'itemquant'},$FORM{'weight'},$FORM{'itemid'},$FORM{'return_url'}; print REFFILE "\|\n"; close(REFFILE); &parse_file; &review_items; } # Change quanities of items, delete zero quantity items. sub change_items { $return_url = $FORM{'return_url'}; open (REFFILE,"$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; my(@LINES)=; close(REFFILE); $SIZE=@LINES; open (REFFILE,">$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; print REFFILE "$filetime\|$filedate\|$filehost\|NULL\|\|\n"; for ($i=1;$i<$SIZE;$i++) { local($itemq) = "item$i"; $_=$LINES[$i]; my($itemname, $itemprice, $itemquant, $weight, $itemid, $return_url) = split(/\|/,$_); if ($FORM{$itemq} > 0) { print REFFILE join "\|", $itemname,$itemprice,$FORM{$itemq},$weight,$itemid,$return_url,"\|\n"; } } close(REFFILE); $exist = 1; &parse_form; &review_items; } # Show the order form sub buy_items1 { if (($usership eq 'NULL') && ($multiship eq 1)) { print "Location: $cgiurl\?command=calcship&ipnum=$host \n\n"; } &print_header; &print_header_images; print "

"; print "\n"; if ($tax eq '2') { $temptax=$tax } &list_items_final; &order_form; &print_footer; } # Process the order form sub buy_items2 { &OrdParse; $in{good}=$good; &print_header; if( $in{good} eq "1") { print "You have successfully ordered the following:

\n"; &list_items; } print "

\n"; &print_footer; unlink($reffile); } # parse form input sub parse_form { my(@pairs); if ($ENV{'REQUEST_METHOD'} eq 'GET') { # Split the name-value pairs @pairs = split(/&/, $ENV{'QUERY_STRING'}); } elsif ($ENV{'REQUEST_METHOD'} eq 'POST') { # Get the input read(STDIN, $buffer, $ENV{'CONTENT_LENGTH'}); # Split the name-value pairs @pairs = split(/&/, $buffer); } else { &error('request_method'); } foreach $pair (@pairs) { my($name, $value) = split(/=/, $pair); $name =~ tr/+/ /; $name =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; $value =~ tr/+/ /; $value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; # If they try to include server side includes, erase them, so they # arent a security risk if the html gets returned. Another # security hole plugged up. $value =~ s///g; # Create two associative arrays here. One is a configuration array # which includes all fields that this form recognizes. The other # is for fields which the form does not recognize and will report # back to the user in the html return page and the e-mail message. # Also determine required fields. if ($name eq 'bgcolor' || $name eq 'background' || $name eq 'link_color' || $name eq 'vlink_color' || $name eq 'text_color' || $name eq 'alink_color' || $name eq 'title' || $name eq 'sort' || $name eq 'print_config' || $name eq 'return_link_title' || $name eq 'return_link_url' && ($value)) { $CONFIG{$name} = $value; } elsif ($name eq 'required') { @required = split(/,/,$value); } elsif ($name eq 'exclude') { @exclude = split(/,/,$value); } else { if ($FORM{$name} && ($value)) { if ($FORM{$name} eq $value) { $FORM{$name} = $FORM{$name}; } else { $FORM{$name} = "$FORM{$name}, $value"; } } elsif ($value) { $FORM{$name} = $value; } } } } # Get the hostname, for file reference sub get_host { if ($FORM{'ipnum'}) { $host = $FORM{'ipnum'}; } else { $host = $ENV{'REMOTE_HOST'}; } $reffile = "$tmpdir/$storename-$host"; } sub check_file { &check_expiration; $exists = '1' if -e "$reffile"; if ($exists eq '1') { &parse_file; } else { &make_file; &parse_file; } } # Parse the cart sub parse_file { open (REFFILE,"$reffile") || die "Can't Open $reffile(r): $!\n"; @LINES=; close(REFFILE); $SIZE=@LINES; $_=$LINES[0]; ($filetime, $filedate, $filehost, $usership, $ship_name) = split(/\|/,$_); } # If they don't have a cart, make them one. sub make_file { open(REFFILE,">$reffile"); print REFFILE "$current_time\|$date\|$host\|NULL\|\|"; close(REFFILE); } #Delete a cart sub delete_cart { unlink($reffile); print "Location: $FORM{'return_url'} \n\n"; } # Delete an item from the cart sub delete_item { open (REFFILE,"$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; @LINES=; close(REFFILE); $SIZE=@LINES; open (REFFILE,">$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; print REFFILE "$date\| $ENV{'REMOTE_HOST'}\| $ENV{'HTTP_USER_AGENT'}\|NULL\|NULL\|\n"; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; my($itemname, $itemprice, $itemquant, $weight, $itemid) = split(/\|/,$_); if ($FORM{$itemname} eq $itemname) { # Do nothing } else { print REFFILE $_; } } close(REFFILE); print "Location: $cgiurl\?command=review\n\n"; } # Get the date. sub get_date { $current_time = time(); @days = ('Sunday','Monday','Tuesday','Wednesday','Thursday','Friday','Saturday'); @months = ('January','February','March','April','May','June','July', 'August','September','October','November','December'); ($sec,$min,$hour,$mday,$mon,$year,$wday) = localtime(time); if ($hour < 10) { $hour = "0$hour"; } if ($min < 10) { $min = "0$min"; } if ($sec < 10) { $sec = "0$sec"; } $year += 1900; $date = "$days[$wday], $months[$mon] $mday, $year at $hour\:$min\:$sec"; } # Did they fill out all necessary info? sub check_required { foreach $require (@required) { if ($require eq 'bgcolor' || $require eq 'background' || $require eq 'link_color' || $require eq 'vlink_color' || $require eq 'alink_color' || $require eq 'text_color' || $require eq 'sort' || $require eq 'title' || $require eq 'print_config' || $require eq 'return_link_title' || $require eq 'return_link_url') { if (!($CONFIG{$require}) || $CONFIG{$require} eq ' ') { push(@ERROR,$require); } } elsif (!($FORM{$require}) || $FORM{$require} eq ' ') { push(@ERROR,$require); } } if (@ERROR) { &error('missing_fields', @ERROR); } } # Warning Warning. sub error { &print_header; ($error,@error_fields) = @_; if ($error eq 'missing_fields') { print "

Error: Blank Fields

\n\n"; print "The following fields were left blank in your submission form:

\n"; # Print Out Missing Fields in a List. print "

$missing_field\n"; } print "

\n"; # Provide Explanation for Error and Offer Link Back to Form. print "

\n"; print "These fields must be filled out before you can successfully submit\n"; print "the form. Please return to the Fill Out Form and try again.\n"; } elsif ($error eq 'noship') { print "

Error: Shipping not Set!

Please go back and calcualte shipping!\n"; } &print_footer; exit; } sub print_script { print <<"JAVA"; JAVA } sub calc_shipping { &print_header; local ($totalprice,$totalquant,$totalweight) = 0; open (REFFILE,"$reffile") || die "Content-type: text/html\n\nCan't Open $reffile(r): $!\n"; @LINES=; close(REFFILE); $SIZE=@LINES; print "\n"; print "\n"; print "\n"; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print ""; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; ($itemname, $itemprice, $itemquant, $weight, $itemid, $return_url) = split(/\|/,$_); $tmpprice = $itemprice*$itemquant; $tmpprice = int($tmpprice * (10 ** 2) + .5) / (10 ** 2); $totalprice=$totalprice + $tmpprice; $totalquant=$totalquant + $itemquant; $totalweight = ($weight*$itemquant) + $totalweight; print ""; if ($useimage eq '1') { if ($FORM{'image'}) { print "\n"; } else { print ""; } } if ($useid eq '1') { print "\n"; } $tmpprice = &format_price($tmpprice); #$_ = $tmpprice; #if (/\./) { # my($left,$right) = split(/\./,$tmpprice); # if (length($right) == 0) { # $tmpprice = $tmpprice . "00"; # } # elsif (length($right) == 1) { $tmpprice = $tmpprice . "0"; } # } # else { $tmpprice = $tmpprice . ".00"; } print "\n"; } print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $totalprice = &format_price($totalprice); #$_ = $totalprice; #if (/\./) { # my($left,$right) = split(/\./,$totalprice); # if (length($right) == 0) { # $totalprice = $totalprice . "00"; # } # elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } # } # else { $totalprice = $totalprice . ".00"; } print "\n"; if ($tax eq '0') { # print nothing } elsif ($tax eq '1') { $taxtotal = $totalprice * $taxper; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice = $totalprice + $taxtotal; #print ""; #if ($useimage eq '1') { # print ""; # } #if ($useid eq '1') { # print ""; # } # #$_ = $taxtotal; # #if (/\./) { # my($left,$right) = split(/\./,$taxtotal); # if (length($right) == 0) { # $taxtotal = $taxtotal . "00"; # } # elsif (length($right) == 1) { $taxtotal = $taxtotal . "0"; } # } # else { $taxtotal = $taxtotal . ".00"; } #print "\n"; ##### INCLUDE TAX TAG ##### #print "\n"; #print "\n"; #print "\n\n"; } elsif ($tax eq '2') { $taxtotal = $totalprice * $taxamt; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice += $taxtotal; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $taxtotal = &format_price($taxtotal); #$_ = $taxtotal; #if (/\./) { # my($left,$right) = split(/\./,$taxtotal); # if (length($right) == 0) { # $taxtotal = $taxtotal . "00"; # } # elsif (length($right) == 1) { $taxtotal = $taxtotal . "0"; } # } # else { $taxtotal = $taxtotal . ".00"; } print "\n"; } if ($shipping eq '0') { # print nothing } elsif ($shipping eq '1') { my(@prices); @prices = sort number keys %shipping1; $low = $prices[0]; foreach $price (@prices) { if ($price > $low && $price <= $totalquant) {$low = $price}; } $shipamt = $shipping1{$low}; $totalprice += $shipamt; } elsif ($shipping eq '2') { $totalprice += $shipamt; } elsif ($shipping eq '3') { my(@prices); @prices = sort number keys %shipping1; $low = $prices[0]; foreach $price (@prices) { if ($price > $low && $price <= $totalweight) {$low = $price}; } $shipamt = $shipping1{$low}; $totalprice += $shipamt; } elsif ($shipping eq '4') { my(@prices); @prices = sort number keys %shipping1; $low = $prices[0]; foreach $price (@prices) { if ($price > $low && $price <= $totalprice) {$low = $price}; } $shipamt = $shipping1{$low}; $totalprice += $shipamt; } print ""; $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; #print "\n"; print "\n"; $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); $_ = $totalprice; if (/\./) { ($left,$right) = split(/\./,$totalprice); if (length($right) == 0) { $totalprice = $totalprice . "00"; } elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } } else { $totalprice = $totalprice . ".00"; } print "

	ITEM ID
$mname
ITEM NAME	QUANTITY	PRICE	AMOUNT
		$itemid	$itemname	$itemquant	\$ $itemprice	\$ $tmpprice
Subtotal:					\$ $totalprice
Taxes:					\$ $taxtotal
Taxes:					\$ $taxtotal
Shipping:			"; #&print_script; $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } # print "				\$ $shipamt
#	\$

\n"; print "\n"; #&print_footer; print "

CONTINUE SHOPPING

\n"; } sub set_shipping { open (REFFILE,"$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; my(@LINES)=; close(REFFILE); $SIZE=@LINES; open (REFFILE,">$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; ($ship_name, $ship) = split(/\|/,$FORM{'ship'}); print REFFILE "$filetime\|$filedate\|$filehost\|$ship\|$ship_name\|\n"; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; my($itemname, $itemprice, $itemquant, $weight, $itemid, $return_url) = split(/\|/,$_); print REFFILE join "\|", $itemname,$itemprice,$itemquant,$weight,$itemid,$return_url,"\|\n"; } $exist = 1; &parse_file; #&review_items; &buy_items1; } sub calc_currency { sub print_curr_script { print <<"JAVA"; JAVA } &print_header; print "

\n"; print ""; print "

	Currency	Exchange Rate
\n"; &print_curr_script; print "		\n"; print ""; print "

\n"; print "\n"; &print_footer; } sub set_currency { open (REFFILE,"$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; my(@LINES)=; close(REFFILE); $SIZE=@LINES; open (REFFILE,">$reffile") || print "Content-type: text/html\n\n Can't Open $reffile(r): $!\n"; print REFFILE "$date\| $ENV{'REMOTE_HOST'}\| $ENV{'HTTP_USER_AGENT'}\|$FORM{'exchange'}\|$usership\|\n"; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; my($itemname, $itemprice, $itemquant, $weight, $itemid) = split(/\|/,$_); print REFFILE join "\|", $itemname,$itemprice,$itemquant,$weight,$itemid,"\|\n"; } print "Location: $cgiurl\?command=review\n\n"; } sub track_order { $orderid = time() . "-" . $$; open (TRACK, ">>$trackdb"); print TRACK $orderid . "\|"; foreach $key (%FORM) { print TRACK "$key\=$FORM{$key}\&"; } print TRACK "\|pending\|NONE\|\n"; close(TRACK); } sub order_form { print "
BILLING INFORMATION

First Name:	Last Name:
Address:
City:	State: Zip:
Country:
Phone Number:
E-Mail Address:

"; ################ if ($creg eq '1') { print "
SHIPPING INFORMATION
(Check here if same as Billing Information )

First Name:	Last Name:
Shipping Address:
City:	State: Zip:
Country:

\n"; } ##################### print "

\n"; if ($creg eq '1') { print ""; } else { print ""; } print "

GO BACK | CONTINUE SHOPPING "; } sub remove_tax { $temptax = '0'; &review_items; } sub add_tax { $temptax = $tax; &review_items; } sub remove_tax2 { $temptax = '0'; &buy_items1; } sub add_tax2 { $temptax = $tax; &buy_items1; } sub add_tax3 { $temptax = $tax; &confirm; } sub remove_tax3 { $temptax = '0'; &confirm; } sub list_items_final { my($totalprice,$totalquant,$totalweight) = 0; open (REFFILE,"$reffile") || die "Content-type: text/html\n\nCan't Open $reffile(r): $!\n"; my(@LINES)=; close(REFFILE); $SIZE=@LINES; $rcitem=1; if ($usership eq 'NULL') { $usership='0'; } print "\n"; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print ""; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; ($itemname, $itemprice, $itemquant, $weight, $itemid, $return_url) = split(/\|/,$_); $tmpprice = ($itemprice*$itemquant); $tmpprice = int($tmpprice * (10 ** 2) + .5) / (10 ** 2); $totalprice += $tmpprice; $totalquant += $itemquant; $totalweight = ($weight*$itemquant) + $totalweight; print ""; if ($useimage eq '1') { if ($FORM{'image'}) { print "\n"; } else { print ""; } } if ($useid eq '1') { print "\n"; } $tmpprice = &format_price($tmpprice); #$_ = $tmpprice; #if (/\./) { # my($left,$right) = split(/\./,$tmpprice); # if (length($right) == 0) { # $tmpprice = $tmpprice . "00"; # } # elsif (length($right) == 1) { $tmpprice = $tmpprice . "0"; } # } # else { $tmpprice = $tmpprice . ".00"; } #print "\n"; print "\n"; ########## INCLUDE REQUIRED FIELD NAMES ########### print "\n"; print "\n"; print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; ### SUBTOTAL PASSBACKS ### print "\n"; print "\n\n"; $rcitem=$rcitem+1; } ### QUANTITY FIGURED ### print "

\n"; print "

\n\n"; print "

"; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $totalprice = &format_price($totalprice); #$_ = $totalprice; #if (/\./) { # my($left,$right) = split(/\./,$totalprice); # if (length($right) == 0) { # $totalprice = $totalprice . "00"; # } # elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } # } # else { $totalprice = $totalprice . ".00"; } print "\n"; ### FULL ORDER SUBTOTAL PASSBACKS ### print "\n"; print "\n\n"; if ($temptax <=> '0') { if ($tax eq '0') { # print nothing } elsif ($tax eq '1') { $taxtotal = $totalprice * $taxper; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice = $totalprice + $taxtotal; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $taxtotal = &format_price($taxtotal); #$_ = $taxtotal; #if (/\./) { # my($left,$right) = split(/\./,$taxtotal); # if (length($right) == 0) { # $taxtotal = $taxtotal . "00"; # } # elsif (length($right) == 1) { $taxtotal = $taxtotal . "0"; } # } # else { $taxtotal = $taxtotal . ".00"; } print "\n"; ### TAX PASSBACKS ### print "\n"; print "\n\n"; ##### TAX TAG ##### print "\n"; print "\n"; print "\n\n"; } elsif ($tax eq '2') { $taxtotal = $totalprice * $taxamt; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice = $totalprice + $taxtotal; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $taxtotal = &format_price($taxtotal); #$_ = $taxtotal; #if (/\./) { # my($left,$right) = split(/\./,$taxtotal); # if (length($right) == 0) { # $taxtotal = $taxtotal . "00"; # } # elsif (length($right) == 1) { $taxtotal = $taxtotal . "0"; } # } # else { $taxtotal = $taxtotal . ".00"; } print "\n"; ### TAX PASSBACKS ### print "\n"; print "\n\n"; ##### INCLUDE TAX TAGT ##### print "\n"; print "\n"; print "\n\n"; } } #$rcitem=$rcitem+1; if ($multiship eq 1) { print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; } else { if ($shipping eq '0') { # print nothing } elsif ($shipping eq '1') { local($low,@prices,$price); @prices = sort number keys %shipping; $low = $prices[0]; foreach $price (@prices) { if (($price > $low) && ($price <= $totalquant)) {$low = $price}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; ##### INCLUDE SHIPPING TAG (BY NUMBER OF ITEMS ORDERED.) ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; } elsif ($shipping eq '2') { $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; ##### INCLUDE SHIPPING TAG (NON-VARIABLE) ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; } elsif ($shipping eq '3') { my($low,@weights,$weight); @weights = sort number keys %shipping; $low = $weights[0]; foreach $weight (@weights) { if ($weight > $low && $weight <= $totalweight) {$low = $weight}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; ##### INCLUDE SHIPPING TAG (BY WEIGHT) ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; $passship=$shipamt; } elsif ($shipping eq '4') { my($low,@prices); @prices = sort number keys %shipping; $low = $prices[0]; foreach $price (@prices) { if ($price > $low && $price <= $totalprice) {$low = $price}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); #$_ = $shipamt; #if (/\./) { # my($left,$right) = split(/\./,$shipamt); # if (length($right) == 0) { # $shipamt = $shipamt . "00"; # } # elsif (length($right) == 1) { $shipamt = $shipamt . "0"; } # } # else { $shipamt = $shipamt . ".00"; } print "\n"; ##### INCLUDE SHIPPING TAG (BY WEIGHT) ##### print "\n\n"; print "\n"; #print "\n\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; } } $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); $totalprice = &format_price($totalprice); #$_ = $totalprice; #if (/\./) { # my($left,$right) = split(/\./,$totalprice); # if (length($right) == 0) { # $totalprice = $totalprice . "00"; # } # elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } # } # else { $totalprice = $totalprice . ".00"; } print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; if ($multicurr eq 1) { $totalprice *= $usercurr; $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); $totalprice = &format_price($totalprice); # $_ = $totalprice; # if (/\./) { # my($left,$right) = split(/\./,$totalprice); # if (length($right) == 0) { # $totalprice = $totalprice . "00"; # } # elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } # } # else { $totalprice = $totalprice . ".00"; } print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; } print "

	ITEM ID
$mname
ITEM NAME	QUANTITY	PRICE	AMOUNT
		$itemid	$itemname	\$ $itemprice		\$ $tmpprice
$itemname	$itemquant	\$ $itemprice	\$ $tmpprice
Subtotal:					\$ $totalprice
"; if ($tax eq '1') {print "$taxstate "}; print "Taxes:					\$ $taxtotal
"; if ($tax eq '1') {print "$taxstate "}; print "Taxes:					\$ $taxtotal
$ship_name Shipping:					"; print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; if ($usership eq 'NULL') { print "Calculate Shipping"; } else { print "\$ $usership"; $totalprice += $usership; } print "
Shipping:					\$ $shipamt
Shipping:					\$ $shipamt
Shipping:			"; if ($totalquant > '0') { print "$totalweight lbs."; } print "		\$ $shipamt
Shipping:					\$ $shipamt
Total price:					\$ $totalprice
Total price in selected currency:			Exchange Rate: $usercurr		\$ $totalprice

\n"; print "\n"; print "\n\n"; print "\n"; #print "\n\n"; if ($multiship = 0) { print "\n\n"; } if ($multiship = 1) { print "\n\n"; } #print "\n\n"; #print "\n"; #print "\n\n"; } ####################################################################### # format_price # ####################################################################### # format_price is used to format prices to two decimal # places. It takes one argumnet, the price to be formatted # and is called with the following syntax: # # $price =&format_price(xxx.yyyyy); # # Notice that the main calling routine must assign the # returned formatted price to some variable for its own # use. # # Also notice that this routine takes a value even if it # is longer than two decimal places and formats it with # rounding. Thus, you can utilize price calculations such # as 12.99 * 7.985 (where 7.985 might be some tax value. sub format_price { # The incoming price is set to a local variables and a few # wroking local variables are defined. local ($unformatted_price) = @_; local ($formatted_price); # The script then uses the rounding method in EXCEL. If # the 3rd decimal place is > 4, then we round the 2nd # decimal place up 1. Otherwise, we leave the number # alone. Notice that we will use the substr function to # pull off the last value in the three decimal place # number and compare it using the EXCEL logic. # # Basically, the routine uses the rounding rules of # sprintf. # The unformatted_price is rounded to # to two decimal places and returned to the calling # routine. $formatted_price = sprintf ("%.2f", $unformatted_price); return $formatted_price; } sub OrdParse { # Disable warnings as this code deliberately uses local and environment # variables which are preset to undef (i.e., not explicitly initialized) local ($perlwarn); $perlwarn = $^W; $^W = 0; local (*in) = shift if @_; # CGI input local (*incfn, # Client's filename (may not be provided) *inct, # Client's content-type (may not be provided) *insfn) = @_; # Server's filename (for spooled files) local ($len, $type, $meth, $errflag, $cmdflag, $got, $name); binmode(STDIN); # we need these for DOS-based systems binmode(STDOUT); # and they shouldn't hurt anything else binmode(STDERR); # Get several useful env variables $type = $ENV{'CONTENT_TYPE'}; $len = $ENV{'CONTENT_LENGTH'}; $meth = $ENV{'REQUEST_METHOD'}; if ($len > $cgi_lib'maxdata) { #' &CgiDie("cgi-lib.pl: Request to receive too much data: $len bytes\n"); } if (!defined $meth || $meth eq '' || $meth eq 'GET' || $meth eq 'HEAD' || $type eq 'application/x-www-form-urlencoded') { local ($key, $val, $i); # Read in text if (!defined $meth || $meth eq '') { $in = $ENV{'QUERY_STRING'}; $cmdflag = 1; # also use command-line options } elsif($meth eq 'GET' || $meth eq 'HEAD') { $in = $ENV{'QUERY_STRING'}; } elsif ($meth eq 'POST') { if (($got = read(STDIN, $in, $len) != $len)) {$errflag="Short Read: wanted $len, got $got\n";}; } else { &CgiDie("cgi-lib.pl: Unknown request method: $meth\n"); } @in = split(/[&;]/,$in); push(@in, @ARGV) if $cmdflag; # add command-line parameters foreach $i (0 .. $#in) { # Convert plus to space $in[$i] =~ s/\+/ /g; # Split into key and value. ($key, $val) = split(/=/,$in[$i],2); # splits on the first =. # Convert %XX from hex numbers to alphanumeric $key =~ s/%([A-Fa-f0-9]{2})/pack("c",hex($1))/ge; $val =~ s/%([A-Fa-f0-9]{2})/pack("c",hex($1))/ge; # Associate key and value $in{$key} .= "\0" if (defined($in{$key})); # \0 is the multiple separator $in{$key} .= $val; } } elsif ($ENV{'CONTENT_TYPE'} =~ m#^multipart/form-data#) { # for efficiency, compile multipart code only if needed $errflag = !(eval <<'END_MULTIPART'); local ($buf, $boundary, $head, @heads, $cd, $ct, $fname, $ctype, $blen); local ($bpos, $lpos, $left, $amt, $fn, $ser); local ($bufsize, $maxbound, $writefiles) = ($cgi_lib'bufsize, $cgi_lib'maxbound, $cgi_lib'writefiles); # The following lines exist solely to eliminate spurious warning messages $buf = ''; ($boundary) = $type =~ /boundary="([^"]+)"/; #"; # find boundary ($boundary) = $type =~ /boundary=(\S+)/ unless $boundary; &CgiDie ("Boundary not provided: probably a bug in your server") unless $boundary; $boundary = "--" . $boundary; $blen = length ($boundary); if ($ENV{'REQUEST_METHOD'} ne 'POST') { &CgiDie("Invalid request method for multipart/form-data: $meth\n"); } if ($writefiles) { local($me); stat ($writefiles); $writefiles = "/tmp" unless -d _ && -w _; # ($me) = $0 =~ m#([^/]*)$#; $writefiles .= "/$cgi_lib'filepre"; } # read in the data and split into parts: # put headers in @in and data in %in # General algorithm: # There are two dividers: the border and the '\r\n\r\n' between # header and body. Iterate between searching for these # Retain a buffer of size(bufsize+maxbound); the latter part is # to ensure that dividers don't get lost by wrapping between two bufs # Look for a divider in the current batch. If not found, then # save all of bufsize, move the maxbound extra buffer to the front of # the buffer, and read in a new bufsize bytes. If a divider is found, # save everything up to the divider. Then empty the buffer of everything # up to the end of the divider. Refill buffer to bufsize+maxbound # Note slightly odd organization. Code before BODY: really goes with # code following HEAD:, but is put first to 'pre-fill' buffers. BODY: # is placed before HEAD: because we first need to discard any 'preface,' # which would be analagous to a body without a preceeding head. $left = $len; PART: # find each part of the multi-part while reading data while (1) { die $@ if $errflag; $amt = ($left > $bufsize+$maxbound-length($buf) ? $bufsize+$maxbound-length($buf): $left); $errflag = (($got = read(STDIN, $buf, $amt, length($buf))) != $amt); die "Short Read: wanted $amt, got $got\n" if $errflag; $left -= $amt; $in{$name} .= "\0" if defined $in{$name}; $in{$name} .= $fn if $fn; $name=~/([-\w]+)/; # This allows $insfn{$name} to be untainted if (defined $1) { $insfn{$1} .= "\0" if defined $insfn{$1}; $insfn{$1} .= $fn if $fn; } BODY: while (($bpos = index($buf, $boundary)) == -1) { if ($left == 0 && $buf eq '') { foreach $value (values %insfn) { unlink(split("\0",$value)); } &CgiDie("cgi-lib.pl: reached end of input while seeking boundary " . "of multipart. Format of CGI input is wrong.\n"); } die $@ if $errflag; if ($name) { # if no $name, then it's the prologue -- discard if ($fn) { print FILE substr($buf, 0, $bufsize); } else { $in{$name} .= substr($buf, 0, $bufsize); } } $buf = substr($buf, $bufsize); $amt = ($left > $bufsize ? $bufsize : $left); #$maxbound==length($buf); $errflag = (($got = read(STDIN, $buf, $amt, length($buf))) != $amt); die "Short Read: wanted $amt, got $got\n" if $errflag; $left -= $amt; } if (defined $name) { # if no $name, then it's the prologue -- discard if ($fn) { print FILE substr($buf, 0, $bpos-2); } else { $in {$name} .= substr($buf, 0, $bpos-2); } # kill last \r\n } close (FILE); last PART if substr($buf, $bpos + $blen, 2) eq "--"; substr($buf, 0, $bpos+$blen+2) = ''; $amt = ($left > $bufsize+$maxbound-length($buf) ? $bufsize+$maxbound-length($buf) : $left); $errflag = (($got = read(STDIN, $buf, $amt, length($buf))) != $amt); die "Short Read: wanted $amt, got $got\n" if $errflag; $left -= $amt; undef $head; undef $fn; HEAD: while (($lpos = index($buf, "\r\n\r\n")) == -1) { if ($left == 0 && $buf eq '') { foreach $value (values %insfn) { unlink(split("\0",$value)); } &CgiDie("cgi-lib: reached end of input while seeking end of " . "headers. Format of CGI input is wrong.\n$buf"); } die $@ if $errflag; $head .= substr($buf, 0, $bufsize); $buf = substr($buf, $bufsize); $amt = ($left > $bufsize ? $bufsize : $left); #$maxbound==length($buf); $errflag = (($got = read(STDIN, $buf, $amt, length($buf))) != $amt); die "Short Read: wanted $amt, got $got\n" if $errflag; $left -= $amt; } $head .= substr($buf, 0, $lpos+2); push (@in, $head); @heads = split("\r\n", $head); ($cd) = grep (/^\s*Content-Disposition:/i, @heads); ($ct) = grep (/^\s*Content-Type:/i, @heads); ($name) = $cd =~ /\bname="([^"]+)"/i; #"; ($name) = $cd =~ /\bname=([^\s:;]+)/i unless defined $name; ($fname) = $cd =~ /\bfilename="([^"]*)"/i; #"; # filename can be null-str ($fname) = $cd =~ /\bfilename=([^\s:;]+)/i unless defined $fname; $incfn{$name} .= (defined $in{$name} ? "\0" : "") . (defined $fname ? $fname : ""); ($ctype) = $ct =~ /^\s*Content-type:\s*"([^"]+)"/i; #"; ($ctype) = $ct =~ /^\s*Content-Type:\s*([^\s:;]+)/i unless defined $ctype; $inct{$name} .= (defined $in{$name} ? "\0" : "") . $ctype; if ($writefiles && defined $fname) { $ser++; $fn = $writefiles . ".$$.$ser"; open (FILE, ">$fn") || &CgiDie("Couldn't open $fn\n"); binmode (FILE); # write files accurately } substr($buf, 0, $lpos+4) = ''; undef $fname; undef $ctype; } 1; END_MULTIPART if ($errflag) { local ($errmsg, $value); $errmsg = $@ || $errflag; foreach $value (values %insfn) { unlink(split("\0",$value)); } &CgiDie($errmsg); } else { # everything's ok. } } else { &CgiDie("cgi-lib.pl: Unknown Content-type: $ENV{'CONTENT_TYPE'}\n"); } # no-ops to avoid warnings $insfn = $insfn; $incfn = $incfn; $inct = $inct; $^W = $perlwarn; return ($errflag ? undef : scalar(@in)); } sub OrdParse_old { local (*in) = @_ if @_; local ($i, $key, $val); if ( $ENV{'REQUEST_METHOD'} eq "GET" ) { $in = $ENV{'QUERY_STRING'}; } elsif ($ENV{'REQUEST_METHOD'} eq "POST") { read(STDIN,$in,$ENV{'CONTENT_LENGTH'}); } else { # Added for command line debugging # Supply name/value form data as a command line argument # Format: name1=value1\&name2=value2\&... # (need to escape & for shell) # Find the first argument that's not a switch (-) $in = ( grep( !/^-/, @ARGV )) [0]; $in =~ s/\\&/&/g; } @in = split(/&/,$in); foreach $i (0 .. $#in) { # Convert plus's to spaces $in[$i] =~ s/\+/ /g; # Split into key and value. ($key, $val) = split(/=/,$in[$i],2); # splits on the first =. # Convert %XX from hex numbers to alphanumeric $key =~ s/%(..)/pack("c",hex($1))/ge; $val =~ s/%(..)/pack("c",hex($1))/ge; # Associate key and value. \0 is the multiple separator $in{$key} .= "\0" if (exists($in{$key})); $in{$key} .= $val; } return length($in); } sub number { $a <=> $b } sub confirm { if (($usership eq 'NULL') && ($multiship eq 1)) { print "Location: $cgiurl\?command=calcship \n\n"; } &print_header; &print_header_images; print "

"; if ($tax eq '2') { $temptax=$tax } &confirm_final; &print_footer; } sub confirm_final { my($totalprice,$totalquant,$totalweight) = 0; open (REFFILE,"$reffile") || die "Content-type: text/html\n\nCan't Open $reffile(r): $!\n"; my(@LINES)=; close(REFFILE); $SIZE=@LINES; $rcitem=1; if ($usership eq 'NULL') { $usership='0'; } ##### INCLUDE REQUIRED MERCHANT TAGS ##### print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; if ($post eq '1') { print "\n"; } if ($cvv eq '1') { print "\n"; } #### SHOW ALL LOOKUP FIELDS ######## print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; #### SHOW ALL PASSBACK FIELDS ####### print "\n"; print "\n"; ##### INCLUDE SPLIT-FORM TAGS IF REQUIRED ##### if ($split eq '1') { print "\n\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; } print "\n"; print "\n"; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print ""; for ($i=1;$i<$SIZE;$i++) { $_=$LINES[$i]; ($itemname, $itemprice, $itemquant, $weight, $itemid, $return_url) = split(/\|/,$_); $tmpprice = ($itemprice*$itemquant); $tmpprice = int($tmpprice * (10 ** 2) + .5) / (10 ** 2); $totalprice += $tmpprice; $totalquant += $itemquant; $totalweight = ($weight*$itemquant) + $totalweight; print ""; if ($useimage eq '1') { if ($FORM{'image'}) { print "\n"; } else { print ""; } } if ($useid eq '1') { print "\n"; } $tmpprice = &format_price($tmpprice); print "\n"; ########## INCLUDE REQUIRED FIELD NAMES ########### print "\n"; print "\n"; print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; ### SUBTOTAL PASSBACKS ### print "\n"; print "\n\n"; $rcitem=$rcitem+1; } ### QUANTITY FIGURED ### print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $totalprice = &format_price($totalprice); #$_ = $totalprice; #if (/\./) { # my($left,$right) = split(/\./,$totalprice); # if (length($right) == 0) { # $totalprice = $totalprice . "00"; # } # elsif (length($right) == 1) { $totalprice = $totalprice . "0"; } # } # else { $totalprice = $totalprice . ".00"; } print "\n"; ### FULL ORDER SUBTOTAL PASSBACKS ### print "\n"; print "\n\n"; if (($tax eq '1') && ($FORM{'state'} eq $taxstate)) { $temptax = $tax; } elsif (($tax eq '1') && ($FORM{'state'} != $taxstate)) { $temptax = '0'; } if ($temptax <=> '0') { if ($tax eq '0') { # print nothing } elsif ($tax eq '1') { $taxtotal = $totalprice * $taxper; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice = $totalprice + $taxtotal; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $taxtotal = &format_price($taxtotal); #$_ = $taxtotal; #if (/\./) { # my($left,$right) = split(/\./,$taxtotal); # if (length($right) == 0) { # $taxtotal = $taxtotal . "00"; # } # elsif (length($right) == 1) { $taxtotal = $taxtotal . "0"; } # } # else { $taxtotal = $taxtotal . ".00"; } print "\n"; ### TAX PASSBACKS ### print "\n"; print "\n\n"; ##### TAX TAG ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; $rcitem=$rcitem+1; } elsif ($tax eq '2') { $taxtotal = $totalprice * $taxamt; $taxtotal = int($taxtotal * (10 ** 2) + .5) / (10 ** 2); $totalprice = $totalprice + $taxtotal; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $taxtotal = &format_price($taxtotal); #$_ = $taxtotal; #if (/\./) { # my($left,$right) = split(/\./,$taxtotal); # if (length($right) == 0) { # $taxtotal = $taxtotal . "00"; # } # elsif (length($right) == 1) { $taxtotal = $taxtotal . "0"; } # } # else { $taxtotal = $taxtotal . ".00"; } print "\n"; ### TAX PASSBACKS ### print "\n"; print "\n\n"; ##### INCLUDE TAX TAGT ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; print "\n"; print "\n\n"; $rcitem=$rcitem+1; } } if ($multiship eq 1) { print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; } else { if ($shipping eq '0') { # print nothing } elsif ($shipping eq '1') { local($low,@prices,$price); @prices = sort number keys %shipping; $low = $prices[0]; foreach $price (@prices) { if (($price > $low) && ($price <= $totalquant)) {$low = $price}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); print "\n"; ##### INCLUDE SHIPPING TAG (BY NUMBER OF ITEMS ORDERED.) ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; } elsif ($shipping eq '2') { $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); print "\n"; ##### INCLUDE SHIPPING TAG (NON-VARIABLE) ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; } elsif ($shipping eq '3') { my($low,@weights,$weight); @weights = sort number keys %shipping; $low = $weights[0]; foreach $weight (@weights) { if ($weight > $low && $weight <= $totalweight) {$low = $weight}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); print "\n"; ##### INCLUDE SHIPPING TAG (BY WEIGHT) ##### print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; $passship=$shipamt; } elsif ($shipping eq '4') { my($low,@prices); @prices = sort number keys %shipping; $low = $prices[0]; foreach $price (@prices) { if ($price > $low && $price <= $totalprice) {$low = $price}; } $shipamt = $shipping{$low}; $totalprice += $shipamt; print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } $shipamt = &format_price($shipamt); print "\n"; ##### INCLUDE SHIPPING TAG (BY WEIGHT) ##### print "\n\n"; print "\n"; #print "\n\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; } } $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); $totalprice = &format_price($totalprice); print ""; if ($useimage eq '1') { print ""; } if ($useid eq '1') { print ""; } print "\n"; #if ($multicurr eq 1) { # $totalprice *= $usercurr; # $totalprice = int($totalprice * (10 ** 2) + .5) / (10 ** 2); # $totalprice = &format_price($totalprice); #print ""; # if ($useimage eq '1') { # print ""; # } # if ($useid eq '1') { # print ""; # } # print "\n"; # } print "

	ITEM ID
$mname
ITEM NAME	QUANTITY	PRICE	AMOUNT
		$itemid	$itemname	$itemquant	\$ $itemprice	\$ $tmpprice
Subtotal:					\$ $totalprice
"; if ($tax eq '1') { print "$taxstate " }; print "Taxes:					\$ $taxtotal
"; if ($tax eq '1') {print "$taxstate "}; print "Taxes:					\$ $taxtotal
$FORM{'shipping'}:					"; print "\n"; print "\n"; print "\n\n"; print "\n"; print "\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; print "\n\n"; if ($usership eq 'NULL') { print "Calculate Shipping"; } else { print "\$ $usership"; $totalprice += $usership; } print "
Shipping:					\$ $shipamt
Shipping:					\$ $shipamt
Shipping:			"; if ($totalquant > '0') { print "$totalweight lbs."; } print "		\$ $shipamt
Shipping:					\$ $shipamt
Total price:					\$ $totalprice
Total #price in selected currency:			Exchange Rate: $usercurr		\$ #$totalprice

\n"; if (($tax eq '1') && ($FORM{'state'} eq $taxstate)) { print "NOTE: $taxstate sales tax has been added to your order."; } elsif (($tax eq '1') && ($FORM{'state'} != $taxstate)) { print "Please confirm your order."; } if ($tax eq '2') { print "NOTE: $taxstate sales tax has been added to your order."; } else { print "Please confirm your order."; } print "\n"; print "\n\n"; print "\n"; #print "\n\n"; if ($multiship = 0) { print "\n\n"; } if ($multiship = 1) { print "\n\n"; } #print "\n\n"; #print "\n"; #print "\n\n"; print "
BILLING INFORMATION

First Name:	$FORM{'first_name'}
Last Name:	$FORM{'last_name'}
Address:	$FORM{'address'}
City:	$FORM{'city'}
State:	$FORM{'state'}
Zip:	$FORM{'zip'}
Country:	$FORM{'country'}
Phone Number:	$FORM{'phone'}
E-Mail Address:	$FORM{'email'}

"; ################ if ($creg eq '1') { print "
SHIPPING INFORMATION

First Name:	$FORM{'sfname'}
Last Name:	$FORM{'slname'}
Shipping Address:	$FORM{'saddr'}
City:	$FORM{'scity'}
State:	$FORM{'sstate'}
Zip:	$FORM{'szip'}
Country:	$FORM{'sctry'}

\n"; } print "\n"; print "\n"; print "

"; print "
"; } sub check_expiration { opendir(TEMP, 'tmp'); @Allnames = readdir(TEMP); foreach $Name (@Allnames) { $flush = "$tmpdir/$Name"; if (-d $flush) { Next } else { open (CHECK,"$flush") || die "Can't Open $Name(r): $!\n"; @LINES=; close(CHECK); $SIZE=@LINES; $line=$LINES[0]; ($filetime, $filedate, $filehost, $usership, $ship_name) = split(/\|/,$line); closedir(TEMP); } } $expired_time = $current_time - $expire_seconds; if ($expired_time >= $filetime) { unlink($flush); } } sub print_nav_options { print "

PURCHASE ITEMS IN CART

"; if ($FORM{'return_url'}) { print "CONTINUE SHOPPING"; } else { print "CONTINUE SHOPPING"; } print "

\n"; } # END smart.cgi