ACC SHELL
<?
include "lib/class.mysql.php";
include "lib/function.php";
include "lib/config.php";
include "lib/class.reex.php";
function validateForm() {
// je-li vyplněn input www nebo
// byl formulář odeslán za méně než 5 sekund,
// byl formulář odeslán za více než 30 minut
// je to robot, nic neodesílej
$nDobaVyplnovani = ((float) $_POST["endtime"] - (float) $_POST["starttime"]);
if ($_POST["www"] != "" ||
($nDobaVyplnovani <= 5 || $nDobaVyplnovani > 1800000)) {
return false;
}
// nejsou-li vyplněna poviná pole, nic neodesílej
// sem by se to nemělo dostat, ale co kdyby se někdo něco snažil podstrčit
if (trim($_POST["produkt"]) == "" || trim($_POST["name"]) == "" ||
trim($_POST["surname"]) == "" || trim($_POST["email"]) == "" ||
trim($_POST["phone"]) == "" || trim($_POST["street"]) == "" ||
trim($_POST["city"]) == "") {
return false;
}
// není-li validní e-mail, skonči
if (!filter_var(trim($_POST["email"]), FILTER_VALIDATE_EMAIL)) {
return false;
}
return true;
}
function sendMailToUser() {
global $page;
$page->connect();
$sSql = "SELECT subject, text
FROM eq_mail
WHERE type LIKE 'order-klient'";
$aMailData = $page->query_fetch_assoc($sSql);
$sName = "Equinox-bikes"; //senders name
$sEmail = "info@eqnx.co"; //senders e-mail adress
$sRecipient = trim($_POST["email"]); //recipient
$sMailBody = $aMailData["text"]; //mail body
$sSubject = $aMailData["subject"]; //subject
$sHeader = "From: ". $sName . " <" . trim($sEmail) . ">\r\nContent-Type: text/plain; charset=utf-8\r\n"; //optional headerfields
mail($sRecipient, $sSubject, $sMailBody, $sHeader); //mail command :)
}
function findDistributor() {
global $page;
switch ($_SERVER["SERVER_NAME"]) {
case "localhost": case "equinox.local": // lokální vývoj, přepiš si na mail vývojáře
return "anna.ryvova@gmail.com;";
break;
/* case "new.eqnx.co": // testovací server, testovací mailová adresa
return "bucek.karel@gmail.com";
break; */
default:
$page->connect();
$sSql = "SELECT text
FROM eq_distributors
WHERE kategorie = " . intval($_POST["country"]);
$aAddress = $page->query_fetch_assoc($sSql);
$sRegExp = "[a-zA-Z0-9._-]+@[a-zA-Z0-9.-]{2,}\.[a-zA-Z]{2,4}";
$oMaily = new cReex($aAddress["text"], $sRegExp);
return $oMaily->arFound[0] . ", info@eqnx.co";
break;
}
}
function sendMailToDistributor() {
global $page;
$page->connect();
$sSql = "SELECT subject, text
FROM eq_mail
WHERE type LIKE 'order-distributor'";
$aMailData = $page->query_fetch_assoc($sSql);
$sSql = "SELECT cz
FROM eq_distributors_kategorie
WHERE id = '{$_POST["country"]}'";
$aCountry = $page->query_fetch_assoc($sSql);
$sName = "Equinox-bikes"; //senders name
$sEmail = "info@eqnx.co"; //senders e-mail adress
// $sRecipient = findDistributor();
$sRecipient = "info@eqnx.co";
$sMailBody = $aMailData["text"]; //mail body
$sSubject = $aMailData["subject"]; //subject
$sHeader = "From: ". $sName . " <" . trim($sEmail) . ">\r\nContent-Type: text/plain; charset=utf-8\r\n"; //optional headerfields
$sMailBody = str_replace("[produkt]", $_POST["produkt"], $sMailBody);
$sMailBody = str_replace("[name]", $_POST["name"], $sMailBody);
$sMailBody = str_replace("[surname]", $_POST["surname"], $sMailBody);
$sMailBody = str_replace("[email]", $_POST["email"], $sMailBody);
$sMailBody = str_replace("[phone]", $_POST["phone"], $sMailBody);
$sMailBody = str_replace("[street]", $_POST["street"], $sMailBody);
$sMailBody = str_replace("[city]", $_POST["city"], $sMailBody);
$sMailBody = str_replace("[country]", $aCountry["cz"], $sMailBody);
$sMailBody = str_replace("[message]", $_POST["message"], $sMailBody);
mail($sRecipient, $sSubject, $sMailBody, $sHeader); //mail command :)
}
$status = FALSE;
$url = (isset($_POST['url']) ? htmlspecialchars($_POST['url'], ENT_QUOTES) : "http://{$_SERVER["SERVER_NAME"]}");
if (validateForm()) {
sendMailToUser();
sendMailToDistributor();
$status = TRUE;
}
session_start();
$_SESSION["order"] = $status;
header("Location: ".$url);
exit;
ACC SHELL 2018