I'm in a corner, someone please help.

rfarley1

I'm normally only a flash developer, but I've been working on a redesign in a test folder on their sever and the client is blaming me for a problem in their shopping cart. Basically the argument is that it worked before I started doing the job. So I have to try to fix it with very little knowledge of such things. Hopefully this is all the code that has problems. Thanks in advance for any help or advice.

cart.php

<?
	$PAGE['title'] = "Biz Naming Central :: Cart";
	include("include/header.php");

//
// update
//
if (isset($_GET["UPDATE"])) {/*{{{*/

	$product_ids	= array_keys($_GET["qty"]);
	$qty			= $_GET["qty"];
	$remove			= $_GET["remove"];

	// update qty
	for ($i=0; $i<count($product_ids); $i++) {

		$_SESSION["session"]->cart->addItem($product_ids[$i], $qty[$product_ids[$i]]);
	}

	// remove items
	for ($i=0; $i<count($remove); $i++) {
		$_SESSION["session"]->cart->removeItem($remove[$i]);
	}

	header("location: cart.php?".SID);
}/*}}}*/


//
// checkout
//
if (isset($_GET["CHECK_OUT"])) {
	header("location: login2.php?pos=cart&".SID);
}

// make sure we are secure
/*	if (!isset($_SERVER["HTTPS"])) {
			header("location: https://www.namestructures.com/cart.php?".SID);
	}
*/
	if ($_GET["M"]) {
		echo "<table align=center border=0><tr><td>";
		ReportError($_GET["M"]);
		echo "</td></tr></table><br>";
	}
?>

<TABLE BORDER=0 CELLPADDING=3 CELLSPACING=0 WIDTH="600" ALIGN="CENTER">

<FORM METHOD=GET>
<input type=hidden name="<?=session_name()?>" value="<?=session_id()?>">

<tR BACKGROUND="/images/green_bttn_bg_small.gif" HEIGHT="35"><TD WIDTH=40><b CLASS="white">Remove</b></TD> <TD><b CLASS="white">Product(s)</b></TD><TD WIDTH=40><b CLASS="white">Qty.</b></TD>	<TD><b CLASS="white">Price</b></TD>	<TD><b CLASS="white">Shipping</b></TD><TD WIDTH=40><b CLASS="white">Total</b></TD></TR>
<?
	$items = $_SESSION["session"]->cart->getItems();	
	$product_ids = array_keys($items);


	for ($i=0; $i<count($product_ids); $i++) {

		$res = doQuery("SELECT * FROM products where id=".$product_ids[$i]);
		$row = mysql_fetch_Array($res);

		$desc = $row["short_desc"];
	?>
		<tR>
			<TD VALIGN="TOP" ALIGN="CENTER"><INPUT TYPE=CHECKBOX NAME="remove[]" VALUE="<?=$product_ids[$i]?>"></TD>
			<TD><A HREF="products.php?<?=SID?>" style="COLOR:#000000; TEXT-DECORATION:NONE; FONT-WEIGHT:BOLD;"><?=$row["name"]?></a><br><?=$desc?></TD>
			<TD valign=top><INPUT TYPE=TEXT NAME=qty[<?=$product_ids[$i]?>] SIZE=1 VALUE="<?=$_SESSION["session"]->cart->getQty($product_ids[$i])?>"></TD>
			<TD valign=top><?=sprintf("$%01.2f",$_SESSION["session"]->cart->getPrice($product_ids[$i]))?></TD>
			<TD valign=top><?=sprintf("$%01.2f",$_SESSION["session"]->cart->getShipping($product_ids[$i]))?></TD>
			<TD valign=top><?=sprintf("$%01.2f",$_SESSION["session"]->cart->getQtyPrice($product_ids[$i]))?></TD>
		</TR>
	<?
	}
?>
<TR><td colspan=7 align=right><b>Total: </b> <?=sprintf("$%01.2f",$_SESSION["session"]->cart->getTotalPrice($product_ids[$i]))?></td></tr>
<TR><td colspan=7 align=right><INPUT TYPE=SUBMIT NAME=UPDATE value="Update"> <INPUT TYPE=button NAME="none" VALUE="Continue Shopping" OnClick="javascript:document.location='products.php?<?=SID?>';"> <INPUT TYPE=SUBMIT NAME=CHECK_OUT value="Check Out"></td></tr>
</FORM>
</TABLE>
<br />
<br />
<br />

<table border="0" cellpadding="0" cellspacing="0">

    <tr bgcolor="#003366"><td colspan=3 height=16><img src="images/x.gif" width=1 height=22></td></tr>

    <tr bgcolor="#719ECF"><td colspan=3 height=16><img src="images/x.gif" width=772 height=16></td></tr>

    <tr bgcolor="#719ECF">
      <td colspan=3>


<?
	include("include/footer.php");
?>

login2.php

<?
	$PAGE["title"] = "Biz Naming Central :: Login";
	include("include/header.php");

/****************************************
* Login
****************************************/ 
if (isset($_POST["LOGIN"])) {/*{{{*/

	if(VerifyPost($_POST)) {

		if ($_SESSION["session"]->user->VerifyLogin($_POST["email"],$_POST["password"])) {

			if (isset($_POST["remember_me"])) {

				$cipher = mcrypt_module_open(MCRYPT_BLOWFISH,'','cbc','');
				mcrypt_generic_init($cipher, $_SETTINGS["email"], "12345678");
				$pass = mcrypt_generic($cipher, $_POST["password"]);
				mcrypt_generic_deinit($cipher);


				$value = "{$_POST["email"]}:$pass";
				setcookie("user_pass", $value, time()+60*60*24*90);
			}

			header("Location: payment.php?".SID);exit;
		} else {
			$_GET["M"] = 2;
		}
	} else 
		$_GET["M"] = 1;
}/*}}}*/

// Logout code...
if (isset($_GET["LOGOUT"])) {/*{{{*/
	session_unset();
	session_destroy();
	header("location: /");
}/*}}}*/



// get cookie info
if ($_COOKIE["user_pass"]) {/*{{{*/

	$data = explode(":",$_COOKIE["user_pass"]);

	$user = $data[0];
	$pass = $data[1];

	$cipher = mcrypt_module_open(MCRYPT_BLOWFISH,'','cbc','');
	mcrypt_generic_init($cipher, $_SETTINGS["email"], "12345678");
	$pass = trim(mdecrypt_generic($cipher,$pass));
	mcrypt_generic_deinit($cipher);
}/*}}}*/


switch ($_GET["M"]) {

	case 1:
		ReportError("Please Fill In All Fields");
		echo "<br>";
		break;
	case 2:
		ReportError("Your Email Address And Password Were Incorrect");
		echo "<br>";
		break;
}
?>

<table border=0 align="center" CELLSPACING=5>
	<tr>
		<td><b>New to Biz Naming Central?</b></td>
		<td STYLE="PADDING:0px;"></td>
		<td><b>Returning Client</b></td>
	</tr>

	<tr>
		<td colspan=3 BGCOLOR="#CCCCCC" HEIGHT=1 STYLE="PADDING:0px;"></td>
	</tr>

	<tr>

		<TD VALIGN="TOP">

				If you want to sign in, you'll need to register first.<p>
			<a href="payment.php?<?=SID?>"><b>Register New Account</b></a>

		</TD>

		<TD BGCOLOR="#CCCCCC" WIDTH=1 STYLE="PADDING:0px;"></TD>

		<TD>
			Enter Your Email Address And Password To Login.
			<p>

			<form method=post ACTION="<?=$_SERVER["PHP_SELF"]?>?<?=SID?>">
			Email Address:<Br>
			<INPUT TYPE=text name="email" value="<?=$user?>" size=25><br>
			<br>

			Password:<br>
			<INPUT TYPE=PASSWORD NAME="password" VALUE="<?=$pass?>"><br>
			<A HREF="send_password.php?<?=SID?>">Forgot</A> your password?<br>
			<br>
			<input type=submit name="LOGIN" value="Submit">
			<p>
			<INPUT TYPE=checkbox name="remember_me" value="1" CHECKED> Remember My Username and Passord
			</form>
		</TD>


	</tr>

</table>
<?	
	include("include/footer.php");
?>

laserlight

Sorry, but it does not really work this way. You need to provide more details, e.g., what is this portion of the script supposed to do, how does it not work, what version of PHP is used on what webserver on what platform, etc.

If you are really unable to provide these information, and you truly have very little skills in PHP, I advise you to subcontract a PHP programmer.

rfarley1

Thanks for the info. You are correct I truly have very little skills in php.

Sxooter

First I would conclusively prove it was or wasn't my fault. Put the code back the way you found it and see if it starts working. You did take a backup before you started, right? Or better yet, this thing is in CVS, right? right?