Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Branch: master
119 lines (108 sloc) 4.66 kB
<?php
/* SSL Management */
$useSSL = true;
include(dirname(__FILE__).'/config/config.inc.php');
require_once(dirname(__FILE__).'/init.php');
include_once(dirname(__FILE__).'/classes/Product.php');
if (!$cookie->isLogged())
Tools::redirect('authentication.php?back=history.php');
$errors = array();
if (Tools::isSubmit('submitMessage'))
{
$idOrder = intval(Tools::getValue('id_order'));
$msgText = htmlentities(Tools::getValue('msgText'), ENT_COMPAT, 'UTF-8');
if (!$idOrder OR !Validate::isUnsignedId($idOrder))
$errors[] = Tools::displayError('order is no longer valid');
elseif (empty($msgText))
$errors[] = Tools::displayError('message cannot be blank');
elseif (!Validate::isMessage($msgText))
$errors[] = Tools::displayError('message is not valid (HTML is not allowed)');
if(!sizeof($errors))
{
$order = new Order(intval($idOrder));
if (Validate::isLoadedObject($order) AND $order->id_customer == $cookie->id_customer)
{
$message = new Message();
$message->id_customer = intval($cookie->id_customer);
$message->message = $msgText;
$message->id_order = intval($idOrder);
$message->private = false;
$message->add();
if (!Configuration::get('PS_MAIL_EMAIL_MESSAGE'))
$to = strval(Configuration::get('PS_SHOP_EMAIL'));
else
{
$to = new Contact(intval(Configuration::get('PS_MAIL_EMAIL_MESSAGE')));
$to = strval($to->email);
}
$toName = strval(Configuration::get('PS_SHOP_NAME'));
$customer = new Customer(intval($cookie->id_customer));
if (Validate::isLoadedObject($customer))
Mail::Send(intval($cookie->id_lang), 'order_customer_comment', 'Message from a customer',
array(
'{lastname}' => $customer->lastname,
'{firstname}' => $customer->firstname,
'{id_order}' => intval($message->id_order),
'{message}' => $message->message),
$to, $toName, $customer->email, $customer->firstname.' '.$customer->lastname);
if (Tools::getValue('ajax') != 'true')
Tools::redirect('order-detail.php?id_order='.intval($idOrder));
}
else
{
$errors[] = Tools::displayError('order not found');
}
}
}
if (!$id_order = intval(Tools::getValue('id_order')) OR !Validate::isUnsignedId($id_order))
$errors[] = Tools::displayError('order ID is required');
else
{
$order = new Order($id_order);
if (Validate::isLoadedObject($order) AND $order->id_customer == $cookie->id_customer)
{
$id_order_state = intval($order->getCurrentState());
$carrier = new Carrier(intval($order->id_carrier), intval($order->id_lang));
$addressInvoice = new Address(intval($order->id_address_invoice));
$addressDelivery = new Address(intval($order->id_address_delivery));
if ($order->total_discounts > 0)
$smarty->assign('total_old', floatval($order->total_paid - $order->total_discounts));
$products = $order->getProducts();
$customizedDatas = Product::getAllCustomizedDatas(intval($order->id_cart));
Product::addCustomizationPrice($products, $customizedDatas);
$smarty->assign(array(
'shop_name' => strval(Configuration::get('PS_SHOP_NAME')),
'order' => $order,
'return_allowed' => intval($order->isReturnable()),
'currency' => new Currency($order->id_currency),
'order_state' => intval($id_order_state),
'invoiceAllowed' => intval(Configuration::get('PS_INVOICE')),
'invoice' => (OrderState::invoiceAvailable(intval($id_order_state)) OR $order->invoice_number),
'order_history' => $order->getHistory(intval($cookie->id_lang), false, true),
'products' => $products,
'discounts' => $order->getDiscounts(),
'carrier' => $carrier,
'address_invoice' => $addressInvoice,
'invoiceState' => (Validate::isLoadedObject($addressInvoice) AND $addressInvoice->id_state) ? new State(intval($addressInvoice->id_state)) : false,
'address_delivery' => $addressDelivery,
'deliveryState' => (Validate::isLoadedObject($addressDelivery) AND $addressDelivery->id_state) ? new State(intval($addressDelivery->id_state)) : false,
'messages' => Message::getMessagesByOrderId(intval($order->id)),
'CUSTOMIZE_FILE' => _CUSTOMIZE_FILE_,
'CUSTOMIZE_TEXTFIELD' => _CUSTOMIZE_TEXTFIELD_,
'customizedDatas' => $customizedDatas));
if ($carrier->url AND $order->shipping_number)
$smarty->assign('followup', str_replace('@', $order->shipping_number, $carrier->url));
}
else
$errors[] = Tools::displayError('cannot find this order');
}
$smarty->assign('errors', $errors);
if (Tools::getValue('ajax') == 'true')
$smarty->display(_PS_THEME_DIR_.'order-detail.tpl');
else
{
include(dirname(__FILE__).'/header.php');
$smarty->display(_PS_THEME_DIR_.'order-detail.tpl');
include(dirname(__FILE__).'/footer.php');
}
?>
Jump to Line
Something went wrong with that request. Please try again.