ps_shopper.inc

php做的网上商店系统。简单易懂

<?php

class ps_shopper {
  var $classname = "ps_shopper";
  
  /**************************************************************************
  ** name: validate_add()
  ** created by:
  ** description:
  ** parameters:
  ** returns:
  ***************************************************************************/
  function validate_add(&$d) {
    $valid = true;
    
    if (!$d["password"]) {
      $d["error"] .= "密码必需填写！<br>";
      $valid = false;
    }
    if ($d["password"] != $d["password2"]) {
      $d["error"] .= "两次密码输入不对！.<br>";
      $valid = false;
    }    
    if (!$d["question"]) {
      $d["error"] .= "忘记密码的问题必填！<br>";
      $valid = false;
    }
    if (!$d["answer"]) {
      $d["error"] .= "忘记密码回答的问题必填！<br>";
      $valid = false;
    }
    if (!$d["true_name"]) {
      $d["error"] .= "真实姓名必需填写！<br>";
      $valid = false;
    }
 //   if (!eregi("^[_*]+(\.+)*$", $d["true_name"])) {
 //     $d["error"] .= "你的真实姓名中含有不能识别的字符！.<br>";
 //     $valid = false;
 //   }
    if (!eregi("^([0-9]{4})?$",$d["year"])) {
      $d["error"] .= "年是四位数必需填完整！<br>";
      $valid = false;
    }
    if(!$d["dey"]) {
       $d["error"] .= "日必需填写.<br>";
       $valid =false;
       }  
    if (!$d["address"]) {
      $d["error"] .= "地址必需填写！<br>";
      $valid = false;
    }
    if (!$d["company"]) {
      $d["error"] .= "公司名称必需填写！<br>";
      $valid = false;
    }
    if (!$d["zip"]) {
      $d["error"] .= "邮政编码必需填写！<br>";
      $valid = false;
    }
    if (!eregi("^([0-9]{6})?$",$d["zip"])) {
      $d["error"] .= "邮政编码必需为6位数字!";
      $valid = false;
    }
    if (!$d["phone"]) {
      $d["error"] .= "联系电话必需填写！<br>";
      $valid = false;
    }
    if (!$d["email"]) {
      $d["error"] .= "你的电子信箱必需填写！<br>";
      $valid = false;
    }
    $db = new ps_DB;
    $q  = "SELECT * from auth_user_md5 ";
    $q .= "WHERE username='" .  $d["user_name"] . "'";
    $db->query($q);
    if ($db->next_record()) {
      $d["error"] .= "The given username already exists. ";
      $d["error"] .= "Please try another username.<br>";
      $valid = false;
    }
    return $valid;
  }
  
  /**************************************************************************
  ** name: validate_delete()
  ** created by:
  ** description:
  ** parameters:
  ** returns:
  ***************************************************************************/
  function validate_delete(&$d) {

    if (!$d["user_id"]) {
      $d["error"] .= "ERROR:  Please select a user to delete.";
      return False;
    }
    else {
      return True;
    }
  }

  /**************************************************************************
  ** name: validate_update()
  ** created by:
  ** description:
  ** parameters:
  ** returns:
  ***************************************************************************/
  function validate_update(&$d) {
    global $perm;
    $valid = true;
    
/*    if (!eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*$", $d["username"])) {
      $d["error"] .= "'Username' cannot contain spaces.<br>";
      $valid = false;
    }*/

    if ($d["password"] != $d["password2"]) {
      $d["error"] .= "两次密码输入不对！.<br>";
      $valid = false;
    }    
    if (!$d["true_name"]) {
      $d["error"] .= "真实姓名必需填写！<br>";
      $valid = false;
    }
 //   if (!eregi("^[_*]+(\.+)*$", $d["true_name"])) {
 //     $d["error"] .= "你的真实姓名中含有不能识别的字符！.<br>";
 //     $valid = false;
 //   }
    if(!$d["year"]) {
       $d["error"] .= "年必需填写.<br>";
       $valid =false;
       }
    if(!$d["month"]) {
       $d["error"] .= "月必需填写.<br>";
       $valid =false;
       }           
    if(!$d["dey"]) {
       $d["error"] .= "日必需填写.<br>";
       $valid =false;
       }  
    if (!$d["address"]) {
      $d["error"] .= "地址必需填写！<br>";
      $valid = false;
    }
    if (!$d["company"]) {
      $d["error"] .= "公司名称必需填写！<br>";
      $valid = false;
    }
    if (!$d["zip"]) {
      $d["error"] .= "邮政编码必需填写！<br>";
      $valid = false;
    }
    if (!eregi("^([0-9]{6})?$",$d["zip"])) {
      $d["error"] .= "邮政编码必需为6位数字!";
      $valid = false;
    }
    if (!$d["phone"]) {
      $d["error"] .= "联系电话必需填写！<br>";
      $valid = false;
    }
    if (!$d["email"]) {
      $d["error"] .= "你的电子信箱必需填写！<br>";
      $valid = false;
    }
    
    return $valid;
  }
  
  /**************************************************************************
   * name: add()
   * created by: pablo
   * description: adds a shopper to a vendor
   * parameters:
   * returns:
   **************************************************************************/
  function add(&$d) {
    global $ps_vendor_id,
           $ps_user;

    $hash_secret = "PHPShopIsCool";
    $db = new ps_DB;
    $timestamp = time();
    
    if (!$this->validate_add($d)) {
      return False;
    }
   
    $user_id=md5(uniqid($hash_secret));
    
    $q = "INSERT INTO auth_user_md5 (user_id,username,password, perms) ";
    $q .= "VALUES ('";
    $q .= $user_id . "','";
    $q .= $d["user_name"] . "','";
    $q .= md5($d["password"]) . "',";
    $q .= "'shopper')";
    $db->query($q);

    if (USER_INFO_XF_4 and $d["extra_field_4"] == "") {
      $d["extra_field_4"] = "N";
    }
    if (USER_INFO_XF_5 and $d["extra_field_5"] == "") {
      $d["extra_field_5"] = "N";
    }
    
    // 插入数据
    
    $q = "INSERT INTO user_info (user_id,address_type, address_type_name,";
    $q .= "user_name, question, answer, true_name,";
    $q .= "year, month, dey, sex,";
    $q .= "card,email,company,phone, fax,";
    $q .= "address,zip,country,province,duty,clay,turnover,url,howlearn,";
    $q .= "extra_field_4,extra_field_5,cdate,mdate) VALUES ";
    $q .= "('" . $user_id . "',";
    $q .= "'BT',";
    $q .= "'会员','";
    $q .= $d["user_name"] . "','";
    $q .= $d["question"] . "','";
    $q .= $d["answer"] . "','";
    $q .= $d["true_name"] . "','";
    $q .= $d["year"] . "','";
    $q .= $d["month"] . "','";
    $q .= $d["dey"] . "','";
    $q .= $d["sex"] . "','";
    $q .= $d["card"] . "','";
    $q .= $d["email"] . "','";
    $q .= $d["company"] . "','";
    $q .= $d["phone"] . "','";
    $q .= $d["fax"] . "','";
    $q .= $d["address"] . "','";
    $q .= $d["zip"] . "','";
    $q .= "CHINA','";
    $q .= $d["province"] . "','";
    $q .= $d["duty"] . "','";
    $q .= $d["clay"] . "','";
    $q .= $d["turnover"] . "','";
    $q .= $d["url"] . "','";
    $q .= $d["howlearn"] . "','";
    $q .= $d["extra_field_4"] . "','";
    $q .= $d["extra_field_5"] . "','";
    $q .= $timestamp . "','";
    $q .= $timestamp . "') ";
    $db->query($q);
    
   
    if (!$d["shopper_group_id"]) {
       $q =  "SELECT * from shopper_group WHERE ";
       $q .= "shopper_group_name='市场价'";
       $q .= "AND vendor_id='$ps_vendor_id'";
       $db->query($q);
       $db->next_record();
       $d["shopper_group_id"] = $db->f("shopper_group_id");
    }
 
    $q  = "INSERT INTO shopper_vendor_xref ";
    $q .= "(user_id,vendor_id,shopper_group_id,customer_number) ";
    $q .= "VALUES ('";
    $q .= $user_id . "','";
    $q .= $ps_vendor_id . "','";
    $q .= $d["shopper_group_id"] . "','";
    $q .= $d["customer_number"] . "')";
    $db->query($q);

    $d["password"] = $d["password2"];
    if (!$d["nologin"]) {
      $ps_user->login(&$d);
    }
    return True;
    
  }
  
  /**************************************************************************
  ** name: update()
  ** created by:
  ** description:
  ** parameters:
  ** returns:
  ***************************************************************************/
  function update(&$d) {
    global $auth,
           $perm;

    $db = new ps_DB;
    $timestamp = time();
 
    if (!$this->validate_update($d)) {
      return False;
    }

    if ($d["user_id"] != $auth["user_id"] && $auth["perms"] != "admin") {
      $d["error"] = "Tricky tricky, but we know about this one.";
      return False;
    }
    if ($d["password_1"]) {
      $d["password"] = md5($d["password"]);
      $q  = "UPDATE auth_user_md5 SET ";
      $q .= "password='" . $d["password"] . "' ";
      if($d["username"]) {
        $q .= ",username='" . $d["username"] . "' ";
      }
      $q .= "WHERE user_id='" . $d["user_id"] . "'";      
      $db->query($q); 
    }
    elseif($d["username"]) {
      $q  = "UPDATE auth_user_md5 SET ";
      $q .= "username='" . $d["username"] . "' ";
      $q .= "WHERE user_id='" . $d["user_id"] . "'";      
      $db->query($q);
    }

    if (USER_INFO_XF_4 and $d["extra_field_4"] == "") {
      $d["extra_field_4"] = "N";
    }
    if (USER_INFO_XF_5 and $d["extra_field_5"] == "") {
      $d["extra_field_5"] = "N";
    }
    
    if ($perm->check("admin,storeadmin") && $d["user_id"])
       $user_id = $d["user_id"];
    else
       $user_id = $auth["user_id"];
    /* Update Bill To */
    $q  = "UPDATE user_info SET ";
    $q .= "question='" . $d["question"] . "', ";
    $q .= "answer='" . $d["answer"] . "', ";
    $q .= "true_name='" . $d["true_name"] . "', ";
    $q .= "card='" . $d["card"] . "', ";
    $q .= "sex='" . $d["sex"] . "', ";
    $q .= "year='" . $d["year"] . "', ";
    $q .= "month='" . $d["month"] . "', ";
    $q .= "dey='" . $d["dey"] . "', ";
    $q .= "email='" . $d["email"] . "', ";
    $q .= "company='" . $d["company"] . "', ";
    $q .= "phone='" . $d["phone"] . "', ";
    $q .= "fax='" . $d["fax"] . "', ";
    $q .= "country='" . $d["country"] . "', ";
    $q .= "address='" . $d["address"] . "', ";
    $q .= "zip='" . $d["zip"] . "', ";
    $q .= "extra_field_4='" . $d["extra_field_4"] . "', ";
    $q .= "extra_field_5='" . $d["extra_field_5"] . "', ";
    $q .= "mdate='" . $timestamp . "' ";
    $q .= "WHERE user_id='" . $user_id . "' ";
    $q .= "AND address_type='BT'";

    $db->query($q);

    // Update shopper group relationship

    $q = "UPDATE shopper_vendor_xref SET ";
    $q .= "shopper_group_id='" . $d["shopper_group_id"] . "', ";
    $q .= "customer_number='" . $d["customer_number"] . "' ";
    $q .= "WHERE user_id='" . $user_id . "'";
    $db->query($q);

    return True;
  }
  
  /**************************************************************************
  ** name: delete()
  ** created by:
  ** description:
  ** parameters:
  ** returns:
  ***************************************************************************/
  function delete(&$d) {
    $db = new ps_DB;
    
    if (!$this->validate_delete($d)) {
      return False;
    }

    // Delete auth_user_md5 entries    
    $q = "DELETE from auth_user_md5 where user_id='" . $d["user_id"] . "'";
    $db->query($q);

    // Delete user_info entries
    $q = "DELETE from user_info where user_id='" . $d["user_id"] . "'";
    $db->query($q);

    // Delete shopper_vendor_xref entries
    $q = "DELETE from shopper_vendor_xref where user_id='" . $d["user_id"] . "'"; 
    $db->query($q);
    
    return True;
  }
}
$ps_shopper = new ps_shopper;
?>