File Source for basket.phpinc

<?php
/** ##################################
*
* project: GNU PORTAL / CMS / SHOP
* module: shop/basket.phpinc
*
* (c) 2003 by Landesverlag Unternehmensservice
* p.krebs@lvus.at
*
* ##################################
**/
session_start();
// initialization:
if (!isset($_GET['cmd'])) $_GET['cmd']="";
if (!isset($_SESSION['USER_ID'])) $_SESSION['USER_ID']=0;
if (!isset($_SESSION['BASKET'])) $_SESSION['BASKET']="";
if (!isset($_SESSION['BAS_ID'])) $_SESSION['BAS_ID']=0;
$bas_items = FALSE;
$bas_arr = FALSE;
if (!isset($SEC_REQ['PUBLIC'])) {
$SEC_REQ['PUBLIC']=(intval($_SESSION['USER_ID']) ? FALSE :TRUE);
}
$SEC_REQ['DBCONN']=TRUE;
include $PROJECT['PHPINCPATH']."user/checkuser.phpinc";
$GLOBALS['DEBUGMODE'] = FALSE;
if (intval($_SESSION['USER_ID'])) {
$query="SELECT c.* FROM T_CLI_CLIENT c, T_CLI_USER cu WHERE cu.USR_ID=".intval($_SESSION['USER_ID'])." AND c.CLI_ID=cu.CLI_ID";
$client=$USRDB->quickQuery($query);
if ((!intval($_SESSION['BAS_ID'])) && (intval($_POST['CREATENEWBASKET']) || intval($_GET['CREATENEWBASKET']))) {
$bas_arr = array();
$bas_arr['USR_ID'] = $_SESSION['USER_ID'];
$bas_arr['CLI_ID'] = $client['CLI_ID'];
require_once $GLOBALS['PHPINCPATH']."common/pcf_Date.phpclass";
$aDate = new pcf_Date();
$bas_arr['BAS_NAME'] ="WK ".$aDate->dateStr();
$bas_arr['BAS_CREATEDATE']=$aDate->getMySqlTimeStamp();
$_SESSION['BAS_ID']=$USRDB->insertArray("T_BASKET",$bas_arr);
}
} else {
$client=FALSE;
}
switch($_GET['cmd']) {
case "add":
if (isset($_GET['PAR_ID'])) {
die("ADD PART NOT JET IMPLEMENTED");
} else if ((isset($_GET['ITEM'])) && (is_array($_GET['ITEM']))) {
die("ADD ITEM NOT JET IMPLEMENTED");
} else {
die("NODATA");
}
case "delete":
if (intval($_SESSION['BAS_ID'])) {
$cmd="DELETE FORM T_BASKET_ITEM WHERE BAS_ID=".intval($_SESSION['BAS_ID']);
$USRDB->executeCmd($cmd);
$cmd="DELETE FROM T_BASKET WHERE BAS_ID=".intval($_SESSION['BAS_ID']);
$USRDB->executeCmd($cmd);
}
// no break to get a new basket
case "new":
$_SESSION['BAS_ID']=0;
// no break because we have to clear the old basket to
case "clear":
$_SESSION['BASKET']="";
break;
case "update":
$bas_items=array();
while(list($key,$val)=each($_POST['ITEM'])) {
if (intval($val['BIT_QUANT'])) {
$bas_items[$key]=$val;
}
}
if (intval($_SESSION['BAS_ID'])) {
$cmd="DELETE FROM T_BASKET_ITEM WHERE BAS_ID=".intval($_SESSION['BAS_ID']);
$USRDB->executeCmd($cmd);
reset($bas_items);$insArr=array();
while(list($key,$val)=each($bas_items)) {
// echo "<pre>";print_r($val);"</pre>";
$val['BAS_ID']=intval($_SESSION['BAS_ID']);
if (intval($val['BIT_QUANT'])) {
if ($key=$USRDB->insertArray("T_BASKET_ITEM",$val,$GLOBALS['DEBUGMODE'])) {
$insArr[$key]=$val;
}
}
}
$bas_items=$insArr;
if (!empty($_POST['BAS_NAME'])) {
$cmd="UPDATE T_BASKET SET BAS_NAME=".DB_getSlashedValue($_POST['BAS_NAME']);
$cmd.=" WHERE BAS_ID=".intval($_SESSION['BAS_ID']);
$USRDB->executeCmd($cmd);
}
}
break;
case "open":
if (isset($_GET['BAS_ID'])) {
$query="SELECT * FROM T_BASKET WHERE BAS_ID=".intval($_GET['BAS_ID'])." AND USR_ID=".intval($_SESSION['USER_ID']);
if ($bas_arr=$USRDB->quickQuery($query)) {
$_SESSION['BAS_ID']=intval($bas_arr['BAS_ID']);
$query="SELECT * FROM T_BASKET_ITEM WHERE BAS_ID=".$bas_arr['BAS_ID'];
if ($cursor=$USRDB->query($query)) {
while($row=$cursor->fetchArrayFld()) {
$bas_items[$row['BIT_ID']]=$row;
}
$cursor->free();
}
}
}
break;
default:
if (!empty($_SESSION['BASKET'])) {
$bas_items=unserialize(base64_decode($_SESSION['BASKET']));
} else {
$bas_items=array();
}
}
if ((intval($_SESSION['BAS_ID'])) && (!$bas_arr)) {
$query="SELECT * FROM T_BASKET WHERE BAS_ID=".intval($_SESSION['BAS_ID'])." AND USR_ID=".intval($_SESSION['USER_ID']);
if (!($bas_arr=$USRDB->quickQuery($query))) {
unset($_SESSION['BAS_ID']);
}
}
if ($bas_items) $_SESSION['BASKET']=base64_encode(serialize($bas_items));
session_write_close();
?>

Source for file basket.phpinc