Latest News: (loading..)

Leaderboard


Popular Content

Showing most liked content since 06/30/2017 in all areas

  1. 13 likes
    My concerns for this software and community have been noted and will be addressed by Harald in the next few days. Until then, when we see what Harald proposes, let's keep on moving forward.
  2. 9 likes
    I just read a bit through this thread here. Sorry to hear that nothing has changed...again. Not sure why Henry's osC version was removed but if it was Harald's doing or on Harald's request meaning that he actually does look into the forum from time to time. I know that coders/devs would love to see an improved osC code base but a store ower doesn't know anything about such code base and I am sure they love the current osC BS community build. It is a very good and stable shop system with many extendable features. More and more addons have been updated to latest standards and require very few code changes. This also thanks to @burt which was always telling us to try to not touch core code. osC might appear dead but its community is not. We are here, some over 10 years. Always trying to improve what we have. It might sound a bit rude but I don't care about Harald's "official" version/release. If it comes it comes if not then not. I have been doing a lot online shopping lately for bike parts and I can tell you all the shops I have seen thus far suck big time. They might use latest coding standards in other carts systems but what good does it do if the person handling the shop has no idea what he is doing. @burt never think that your work was for nothing because it is not. osC BS was a major step forward and we hobby coders learned a lot from it with all the hooks and modules build into it. Without it we would still be at the non-responsive version. I can only say, well done!
  3. 9 likes
    Well said Frank. The businessman in me cringes at reading a topic which turns quickly into bashing by some. Not good reading for anyone coming to this forum looking to make a decision about what shopping cart software to use. I think Gary's intentions were laid out clearly in that it was intended to be a constructive discussion and where he was genuinely asking others for help. Whatever the status of new versions etc. are, I am grateful for this (free) software and the work done by everyone on it, including Gary (for an incredible responsive version) and of course, the founder, Harald. I've learned things I would otherwise never have. I have far more autonomy over my hobbyist website than if I were locked into a hosting solution like shopify (which btw I trialled before coming back to osCommerce). Add-ons are free. Gary's many add ons are fantastic and all he asks for in return are nominal "pledgies" towards the project. Of course I wish more people showed their support with their wallets rather than words judging by the measly sum that has been pledged thus far. Many people are willing to go over and beyond to help others on this forum. I have been the beneficiary of the expertise of many forum members. There are great foundations here and I look forward to osCommerce's future. I would love to help any way I can. I believe in the power of a community and this community still looks like it has a lot of support from its members. Peter
  4. 8 likes
    My post was an attempt to keep osCommerce alive (which is what I have been trying to do for almost 4 years now), and an attempt for any interested parties to help me to do that. A number of people were with me, a number of people were not - and it devolved into the regular bullshit that so often happens on the forum. No change there. As far as I am concerned, the post was removed without good reason; I (as are we all) awaiting a statement from Harald, and it is his perogative to give that statement today, tomorrow, next year or never. If it never comes...so what? People will leave, people will stay, some are able to move to other carts, some are not, some have time and money some do not. osCommerce is over and done with right now and until Harald can say some words and back those words up with action...it stays dead. And that hurts me to say it as I've put 17 years into this software off and on (more on than off), and especially the last 4 years have been as full on as I was able to.
  5. 7 likes
    Thanks chaps. So now we move forward...we can't keep the CE edition stagnant whilst waiting for something that may very well never arrive. In the coming days [ie, not today!], I'll be asking for input on code changes etc, so if anyone wants to be involved in the discussion get yourself a Github account as I shall be using the issues system to move forwards on code changes, ideas etc.
  6. 7 likes
    It would be nice to have clarification. We need transparency from the team who is driving the core osC product. Taking down topics that are posted is a mistake I think. It's the equivalent of me not posting negative reviews on my site because I don't like them. Feedback is good and can almost always be used to improve a product. I have been in business for 13 years and I know this is a fact. The users of this forum are mostly (all?) small business owners and we really do understand how much time and effort go into making something that is as in depth as a robust ecommerce system is. We know it's hard work, we know there will be missed deadlines, we know there will be letdowns, we know that what's going on in your personal life sometimes has to come first, and we understand that there very well may be something going on in your personal life that is affecting your work on this project. This is where transparency is so important. I think most users would be much more understanding of the situation if we simply knew what was going on behind the scenes. Obviously there is no need to share personal information here but just simply letting users know what's up. Asking for help when needed is not a defeat and will not make anyone see you in a bad light. I love osC and it has been very good for my shop. I appreciate the work that went into getting it to where it currently stands and I sincerely hope it will stick around for years to come.
  7. 7 likes
    Harald I can appreciate all the work you are doing behind the scenes to unify the osCommerce ecosystem, and I see that you have a vision. It's great that you are getting stuck back into it, lots of people were getting frustrated at a lack of progress so it will be great to shut down the negativity with these new releases (even tough they are more than long overdue!) Keep up the great work, it will be terrific to see things pick up again. I have to say that you owe @burt a big debt of gratitude, I hope you are going to do something special for him.
  8. 6 likes
    Slim-Checkout Common opinion is that the checkout process should be as "slim" as possible. This means to hide all page elements which are not strict necessary to show to the customer a simple clean layout, so nothing disturbs his attention from the purchase process. This add-on allows to do it by simple settings in a Header Tag module. Git Hub Repository: https://github.com/raiwa/Slim-Checkout/tree/master What it does: - allows to hide elements on checkout pages - optional hide on checkout pages (checkout_shipping.php, checkout_payment.phpheckout_confirmation.php and checkout_success) - optional hide also on shopping_cart.php - select each group to hide (navbar, header area, boxes, footer and footer suffix Installation: - copy all new files - install and adjust Slim Checkout Header Tag testing , Bug reports and suggestions very welcome. rgds Rainer
  9. 6 likes
  10. 6 likes
    This is hardly Iran, North Korea or 1942 Germany. With all due respect, that is an insult to those who have had to endure the horrors of those regimes. While I agree that open discussion should be allowed, it sounds to me like Harald and Burt are discussing this matter privately, with a positive outcome to be revealed. We should respect that. Let's be patient. If nothing's changed after a time, those who still want to bellyache, can. Me, I'm staying positive and going to continue keeping osCommerce moving. Right now I'm working on AJAX add and remove from cart, AJAX add and remove wishlist (in this case called myCartridges), and Mailchimp/Mandrill integration. Give it a try https://www.ink-cartridge.com.au/pzone/
  11. 6 likes
  12. 6 likes
    Thank You Frank. If it was not for you and a handful of other shopowners...I dread to think where osCommerce would be right now.
  13. 5 likes
    Surfalot CMS is an osCommerce App designed to help the developer and shop owner alike build, maintain, and organize content easily in one place. TinyMCE is integrated to provide WYSIWYG content editing. Create new content and insert it into your navigation quickly and easily directly in the admin. Edit content on existing pages by placing a small template code snippet on your target page. The responsive features of osCommerce v2.3.4 Community Edition are maintained throughout the App. Full osCommerce built-in cache support is available. If your shop runs with osCommerce cache, Surfalot CMS will cache all the page queries so your shop maintains peak performance. Dynamic content from the additional shortcode module is still injected at display time. This is designed specifically for osCommerce v2.3.4 Community Edition. This project was started to see how far I could stretch the "no core changes" principles driving this fabulous osCommerce version with content creation. osCommerce v2.3.4 Official is also supported. Main Features Create and WYSIWYG Edit Site Pages Create and WYSIWYG Edit Content and Blocks Manage page titles, page content, breadcrumb, and meta tags in the admin Create Navigation with a Navbar Module and Sidebar Box Module osCommerce Cache Support Easy install App requires changes to only a few files Place content using existing osC Template groups and create your own Integrated TinyMCE WYSIWYG editor Navigation Features Full featured Navigation manager Manage your Navbar menu with text, links, and existing modules Manage a sidebar information box with new or existing pages and links Specify Font Awesome icons for all Navbar items Compatible with existing Navigation modules Include Surfalot CMS page items anywhere in the Navbar Download: https://apps.oscommerce.com/iJnr7
  14. 5 likes
    I suggest not reading any of those SEO "experts" and just focus on giving your customers a great experience. Repeat business is what you want, not a continual frenetic hunt for new clients through Google.
  15. 5 likes
    @raiwa Well done! We appreciate all the hard work you put into your addons and projects but please do me a favor and don't work too much/hard. In the past I/we have lost 2 very good friends from this forum and the last thing I remember was, they were working hard on some addons/projects and it could have been just mere coincidence or just fact that they overworked themselfs till their body gave up. You maintain multiple addons, you work with me on the Point and Rewards module, Sloppy words cleaner and, and, and.... Long story short, watch your health and take enough rest so that we will be able to enjoy you and your work for many years to come. That goes for all of you out there. osC is nice and all but it won't bring you anything if you work yourself to death. Now back to work....
  16. 5 likes
    Hi All.. Both v2.3.5 and v2.3.6 were planend to be released today (end of August) however a few more days is needed. This topic will be updated on the weekend with the date next week when the releases will be pushed out. Kind regards,
  17. 4 likes
    @mgutt 2.3 core base was outdated in ~2012. Latest 2.3.x version upgrades tried to adapt technical requirements and security fixes but we didnt be able to step forward... Next v2.3.6 release wont be the Holi Gral even though many community works was built in. We use BS for ages which is not a secret. It was important adaptaion of responsibility! Some of us developed the brilliant v3 alfa 5 anno but the community didnt want it so opencart was born. You can see the shared ecommerce results... We should separate template files in v2.4 and it will be better than v3 alfa 5 ever thanks to v3 backports. If someone wants v2.3BS than use it. If another wants something better than use v2.4. The mistake wont be again if we have modern core in the battle.
  18. 4 likes
    I consider the actual Git Hub version final. Resume of the last updates: optional hide on checkout pages (login.php, checkout_shipping.php, checkout_payment.phpheckout_confirmation.php and checkout_success) select on which pages to hide each area by checkbox list select each group to hide (navbar, header area, boxes, footer and footer suffix define content width if side columns are hidden, allows to control if main content gets stretched or keeps withe space for side columns optional customized list of header modules to keep showing if header area is hidden. Update from previous versions: uninstall ht module, replace ht module, reinstall ht module. I'll keep it for around one week without touching. Please try and let me know any issues. Then it will be published. If I find time Ill try to go for the version to control each individual module.
  19. 4 likes
    @burt I'm sorry to hear that. I haven't done nearly as much as you have, but osCommerce has been a part of my life for over 14 years, and it hurts to see it die. Thanks again for all of the hard work you put into trying to save it. Regards Jim
  20. 4 likes
    Here's another thought. On the shopping_cart page a new customer has no way to know how long the checkout process is going to be/take. Why not extend out the stepwizard into the cart page, and/or put some text on there telling the customer how far they are from the end. Cart: You are 6 minutes from completing the checkout. Shipping Page: You are 4 minutes from completing etc In addition, there are other things that can be done to help speed up the checkout; Googles Address Finder Remove passwords entirely Turn off all the no needed input fields Save their card details (eg on Braintree/Stipe) Use Paypal Express etc
  21. 4 likes
    This. Absolutely this. Even us "coders" do this. We find the nearest module that does something a bit similar, copy it, and then fanny about with it until it does what we want it to do.
  22. 4 likes
    Hi All.. v2.3.4.1 has just been pushed out with the MySQLi setup detection fix and PHP 7/MySQL 5.7 compatibility updates. This is a silent release as v2.3.5 and v2.3.6 will be pushed out soon that has these fixes already incorporated. These minor fixes were a major showstopper for new installations - far greater than I had thought of. I'm still working hard on "the big picture" and achieving my goals for this year, and sometimes need a f* tonn of pings to address these "minor" code changes. I apologize for that and urge you to keep pinging me in the future when similar showstoppers arise. v2.3.4.1 does not address bootstrap/edge, that is what v2.3.6 is for.
  23. 4 likes
    My ethos is; Make it very simple for the customer to do things. As far as a checkout goes, what can be more simple than; login > choose shipping > choose payment > review order > complete It has been proven many times that a bite-size of cake, followed by a bite-size of cake...is far better than ramming a whole cake down ones throat. What I would like to see [in CORE]...which is sort of related... On shopping_cart.php a summary (estimated) shipping price, (estimated) taxes and so on. So they see their grand total prior to starting a checkout.
  24. 3 likes
  25. 3 likes
    New add-on Modules Control Extended and more complete version of Slim Checkout to control each individual content module for each store page. Download: https://github.com/raiwa/Module_Control/tree/master/New_Files/catalog/admin/includes/languages What it does: - add Module Control Page to Admin/Modules - allows to define controlled pages - allows to decide separate for each installed module and for each controlled page to be hidden. - control for each store root page (file) - control for each installed module of the following groups: - navbar - header - boxes - footer - footer_suffix Install: - copy all files from "New Files" folder - copy and replace "osc_template.php" from "Modified File" folder. Go to Admin/Modules/Modules Control This is Beta version. Please try and test. Any bug report and suggestion very welcome. rgds Rainer
  26. 3 likes
    https://apps.oscommerce.com/m2hDP&rma-returns-system-for-osc2-3-4bs Full product returns system for osCommerce. Features · No core file changes needed, just upload to your store. · One click install. · Works with PHP 7.1 and Edge · Create returns from admin, or allow customers to create their own, or both. · You choose which order statuses orders must be at for customers to return items. · You choose how many days after ordering customers can return items from an order. · Includes issuing of discount coupons direct from the returns admin page*. · Includes Paypal refunds direct from the returns admin page**. Partial refunds OK. · If you require serial numbers to be entered this can be turned on in admin. You can also make serial numbers optional or compulsory. · Return items to inventory if you desire, just tick a box on the returns admin page. · Set a default restocking fee, and inform the customer when they fill in the return request. · Terms and conditions can be shown to customers before they fill in a return request, if so they must agree to continue. They can also have the terms and conditions emailed to their email address. · One click comments when updating orders. · Unlimited number of return reasons. · Unlimited number of refund methods. · Only logged in customers can create a return request. · Search for RMAs in admin by RMA Number, customer name, or order id · Will not create duplicate RMA request numbers.
  27. 3 likes
  28. 3 likes
    @estrich super! well done on this. Now this works, but it can be optimised further to save on queries. When writing code it is always advisable to get something that works (which you have done!), then to optimise and optimise and optimise until it is ready for others to use. If you want to learn how, I can give some "advice" but would then expect you to go away, work on it, then post back where I can give more "advice" and do so again. In other words, I'll point you the right way but won't give you the code.
  29. 3 likes
    Ivan: 1 - The Option Types addon will let you set an attribute to type text, textarea, radio, checkbox, file (dropdown) and image. 2 - Use the KISS image thumbnailer. It creates thumbnails on the fly and its main use, at least for me, is to decrease load time.
  30. 3 likes
    I wanted to try something a little more different, and so I came up with this; http://template.me.uk/illusory-hope/ Limited to 20 buyers. First 10 can have it for £50. Next 10 at £100. If of interest, PM me. There are NO CORE CODE CHANGES.
  31. 3 likes
    @Frankl and the communty has created a great example about APP. But this example does'nt have elements to create a page in front office. This tuto resolve this point. You will the base to develop you own page We want to create a new enhanced contact us page for example This example don't give you all the code about the admin, classes .... Just the necessary to create a catalog page Below you will find all the code to start correctly ? After you must complete the elements by your own code Note : In App you can : Create page In admin Create page in Shop Add content in Shop (header / content / footer) Add Hook inside a page (like action, save, delete, insert, update) Add module like order total, payment, shipping ... You can not : Create a boxe (I tried with no success) : use the default osc approach Create a header_tag : use the default osc approach Go back to our code ! Step one oscommerce.json add Shop Element Info&Contact will be your link to access via the catalog Sites\\Shop\\Pages\\Manager is the location about the files and process "routes": { "Admin": "Sites\\Admin\\Pages\\Home", "Shop": { "Info&Contact": "Sites\\Shop\\Pages\\Manager" } } Step 2 Create your directories Apps -Communication --Manager ---languages ----- english ------- Sites ---------Shop ----------Manager ---Sites -----Shop ------Pages -------Manager --------Actions ----------Contact --------templates Step 3 Now in directories languages/english/...../Manager create contact.txt add heading_title = Contact US Step 4 Now in directories Sites/Shop/Pages/Manager create a file Manager.php Add namespace OSC\Apps\Communication\Manager\Sites\Shop\Pages\Manager; use OSC\OM\Registry; use OSC\Apps\Communication\Manager\Manager as ManagerAPP; class Manager extends \OSC\OM\PagesAbstract { public $app; protected function init() { $OSCOM_Manager = new ManagerAPP(); Registry::set('ManagerAPP', $OSCOM_Manager); $this->app = Registry::get('Manager'); $this->app->loadDefinitions('Sites/Shop/main'); // not necessary } } Step 5 Now in directories Sites/Shop/Pages/Manager/Actions create a file Contact.php Add namespace OSC\Apps\Communication\Manager\Sites\Shop\Pages\Manager\Actions; use OSC\OM\OSCOM; use OSC\OM\Registry; use OSC\OM\HTML; class Contact extends \OSC\OM\PagesActionsAbstract { public function execute() { global $breadcrumb, $OSCOM_Manager; $OSCOM_Manager = Registry::get('Manager'); // display or not the page (admin action) if (!defined('OSC_APP_MANAGER_STATUS') || !in_array(OSC_APP_MANAGER_STATUS, [ '1', '0' ])) { return false; } $this->page->setFile('contact.php'); $this->page->data['action'] = 'Contact'; //language $OSCOM_Manager->loadDefinitions('Sites/Shop/Manager/contact'); $breadcrumb->add(OSCOM_Manager->getDef('navbar_title'), OSCOM_Manager->link('index.php', 'Info&Contact')); } } Step 6 Now in directories Sites/Shop/Pages/Manager/Actions/Contact create a file Process.php Add namespace OSC\Apps\Communication\Manager\Sites\Shop\Pages\Manager\Actions\Contact; use OSC\OM\Registry; class Process extends \OSC\OM\PagesActionsAbstract { public function execute() { $OSCOM_Manager = Registry::get('Manager'); ------- your code to manage the process about the form ----- // Redirect on other page $OSCOM_Manager->redirect('index.php', 'Info&Contact&Success'); } } Step 7 Now in directories Sites/Shop/Pages/Manager/templates create a file contact.php Add <?php use OSC\OM\OSCOM; use OSC\OM\Registry; use OSC\OM\HTML; ?> <div class="page-header"> <h1><?php echo $OSCOM_PageManager->getDef('heading_title'); ?></h1> </div> <?php echo HTML::form('contact', OSCOM::link('index.php', 'Info&Contact&Process'), 'post', 'enctype="multipart/form-data"', ['tokenize' => true]); ?> ---- you can continue with your code ---- Step 8 Now to access at your page : http://www.mysite/catalog/index.php?Info&Contact
  32. 3 likes
    @Dutch1 OK, so you are trying to use the beta version of some software, which has already been described as not ready for production use, and then instead of listening to others advice and using 2.3.4BS you continue to run into issues with the beta version and come here to bitch about osCommerce being terrible. If the software is that bad why don't you contribute something that will fix the errors that you seem to keep having? This software is free to use and there is no one forcing you to do so. The developers involved often receive no compensation for their time and also have real jobs that need their attention. osCommerce 2.3.4BS works very well and many shop owners including myself are using it to run successful online shops.
  33. 3 likes
    There are very few coders on the Forum and all of them do it for a living. Why would these people help you? Most of the pro developers departed because there is no way for them to earn a living here. What there are a lot of; Shopowners who are looking for help Shopowners who can code a bit Shopowners who can code a lot Shopowners who can code are busy running their own shops...and if you are super lucky you might hit on one who is able to help you.
  34. 3 likes
    What about currency symbol left: <span style="white-space: no-wrap;"> and symbol right: <small style="padding-left: 5px;">AUD</small></span>
  35. 3 likes
    Sorry, I didn't write anything constructive in my post I think just by judging the way that one page checkout screenshot looks is overwhelming the customer with too much information on the screen at once. The checkout process column on the right is not needed as I presume that information is shown again in the last step for the confirmation. The same edit links are also available with each step listed. Having a JavaScript based one-page checkout procedure is nice and can outperform a standard checkout procedure, but only if it has been designed properly. The idea behind a one-page checkout procedure is to keep it as simple as possible for the customer experience, not the technical achievement experience.
  36. 3 likes
    @ArtcoInc @greasemonkey @Dan Cole Alright. Let me take a look at what I got and think of a way to share this in a meaningful way. It's built with a couple of php classes and sitting on top of a heavily customized version of OsC. This will not be a drop in solution, so some motivation and technical work on the receivers end will be required, I think. I can't promise anything this week, but I'll start looking into sharing code and guidelines to make this work for you. Expect two functionalities: 1) Synching your OsC inventory with Amazon, QTPro supported and 2) Downloading Amazon orders to OsC with inventory update. In the mean time, get your credentials in order: https://developer.amazonservices.com
  37. 3 likes
    Hi All.. User profiles are now available at the Apps Marketplace! Ambassadors get the bonus of highlighting 3 Apps on their profile page. This is currently their last 3 updated Apps - the next update to the Profiles page will allow the highlighted Apps to be defined. Caching has also been improved by moving to memcached - there should be a noticeable speed difference browsing through the pages. I'm keeping an eye on this to make sure the correct cache objects are flushed when updates are performed - if you spot something out of sync, please inform me about it. Thanks!
  38. 2 likes
    Been a while now and no news or update. Thats not looking good.
  39. 2 likes
  40. 2 likes
    Based on EzSocial v1.01 add-on for OsCommerce 2.3 Written by Christopher Trigg. Easy and friendly way to add social logins to your site. Uses PHP for backend work to login and CSS to display buttons Consists of: Base module which installs a social login box on your login.php page; and Sub-modules for each social login provider. No core files overwritten, just upload then follow installation instructions. Requires you to create an app for each provider you require (Facebook, Google, LinkedIn) - instructions are included. You can also add other providers such as Twitter, Instagram, Github, Microsoft, Yahoo etc with minimal effort (some technical knowledge required) All feedback, problems, suggestions welcome Find it here https://apps.oscommerce.com/vVTNW&ezsocial-for-osc2-3-4bs-v1-0a
  41. 2 likes
    @burt @Dennisra @frankl I didn't find the old files so I create new one Special Products Content Module(BS) and it working well Omar
  42. 2 likes
    I suddenly started having very slow access and page loads in my Admin (it's renamed) while the catalog side ran fast. After thinking about this a bit I figured it had to be because of the Apache Auth on Admin. To back up a little, Apache 2.4 changed the way .htaccess works for allowing and denying, see http://httpd.apache.org/docs/current/upgrading.html There's a module call mod_compat that makes the old system compatible, but that's definitely where my problem was. It would take a minute for a page to load in Admin. Important to note that the exact way they show on the apache site didn't work. Mine below works. Here's my old .htaccess SSLRequireSSL Order Deny,Allow deny from all allow from IP my ip AuthName "Restricted" AuthUserFile "my path to file" AuthType Basic require valid-user Here's my new one that is working completely from my testing. Test yours if you change this. NOTE: Important to note that the exact way they show on the apache site didn't work. Mine below works. SSLRequireSSL AuthType Basic AuthUserFile "my path to file" AuthName "Restricted" <RequireAll> Require valid-user Require ip my ip </RequireAll> I don't know if anyone else will run into this but I'm guessing this is coming. We should probably look at making changes to all the .htaccess files.
  43. 2 likes
    Ignore my errors this was due to me testing the review module but not making a review. I've made the review module that is included work too. I'll post the update shortly.
  44. 2 likes
    Never mind I found a fix. This ##### BOF POINTS REWARDS BS ####### if ((MODULE_HEADER_TAGS_POINTS_REWARDS_USE_POINTS_SYSTEM == 'True') && (MODULE_HEADER_TAGS_POINTS_REWARDS_USE_REDEEM_SYSTEM == 'True')) { if (isset($_POST['customer_shopping_points_spending']) && is_numeric($_POST['customer_shopping_points_spending']) && ($_POST['customer_shopping_points_spending'] > 0)) { $customer_shopping_points_spending = false; // This if sentence should include check for amount of points on account compared to the transferred point from checkout_payment.php // Possible Hack Fix included if (tep_calc_shopping_pvalue($_POST['customer_shopping_points_spending']) < $order->info['total'] && !is_object($$payment) || (tep_get_shopping_points($customer_id) < $_POST['customer_shopping_points_spending'])) { $customer_shopping_points_spending = false; tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REDEEM_SYSTEM_ERROR_POINTS_NOT), 'SSL')); } else { $customer_shopping_points_spending = $_POST['customer_shopping_points_spending']; if (!tep_session_is_registered('customer_shopping_points_spending')) tep_session_register('customer_shopping_points_spending'); } } //To ensure only the first order of a new customer is entitled to grant point to his/her referrer. Otherwise, a hacker might hard-code the email address of a referrer and cheat for point on every single order the new customer made. if (tep_not_null(MODULE_HEADER_TAGS_POINTS_REWARDS_POINTS_USE_REFERRAL_SYSTEM) && (tep_count_customer_orders() == 0)) { if (isset($_POST['customer_referred']) && tep_not_null($_POST['customer_referred'])) { $customer_referral = false; $check_mail = trim($_POST['customer_referred']); if (tep_validate_email($check_mail) == false) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REFERRAL_ERROR_NOT_VALID), 'SSL')); } else { $valid_referral_query = tep_db_query("select customers_id from customers where customers_email_address = '" . $check_mail . "' limit 1"); $valid_referral = tep_db_fetch_array($valid_referral_query); if (!tep_db_num_rows($valid_referral_query)) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REFERRAL_ERROR_NOT_FOUND), 'SSL')); } if ($check_mail == $order->customer['email_address']) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REFERRAL_ERROR_SELF), 'SSL')); } else { $customer_referral = $valid_referral['customers_id']; if (!tep_session_is_registered('customer_referral')) tep_session_register('customer_referral'); } } } } } if ( ($payment_modules->selected_module != $payment) || ( is_array($payment_modules->modules) && (sizeof($payment_modules->modules) > 1) && !is_object($$payment) ) || (is_object($$payment) && ($$payment->enabled == false)) ) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(ERROR_NO_PAYMENT_MODULE_SELECTED), 'SSL')); } ######## EOF POINTS REWARDS BS #################*/ Should be this. ##### BOF POINTS REWARDS BS ####### if ((USE_POINTS_SYSTEM == 'true') && (USE_REDEEM_SYSTEM == 'true')) { if (isset($_POST['customer_shopping_points_spending']) && is_numeric($_POST['customer_shopping_points_spending']) && ($_POST['customer_shopping_points_spending'] > 0)) { $customer_shopping_points_spending = false; // This if sentence should include check for amount of points on account compared to the transferred point from checkout_payment.php // Possible Hack Fix included if (tep_calc_shopping_pvalue($_POST['customer_shopping_points_spending']) < $order->info['total'] && !is_object($$payment) || (tep_get_shopping_points($customer_id) < $_POST['customer_shopping_points_spending'])) { $customer_shopping_points_spending = false; tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REDEEM_SYSTEM_ERROR_POINTS_NOT), 'SSL')); } else { $customer_shopping_points_spending = $_POST['customer_shopping_points_spending']; if (!tep_session_is_registered('customer_shopping_points_spending')) tep_session_register('customer_shopping_points_spending'); } } //To ensure only the first order of a new customer is entitled to grant point to his/her referrer. Otherwise, a hacker might hard-code the email address of a referrer and cheat for point on every single order the new customer made. if (tep_not_null(USE_REFERRAL_SYSTEM) && (tep_count_customer_orders() == 0)) { if (isset($_POST['customer_referred']) && tep_not_null($_POST['customer_referred'])) { $customer_referral = false; $check_mail = trim($_POST['customer_referred']); if (tep_validate_email($check_mail) == false) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REFERRAL_ERROR_NOT_VALID), 'SSL')); } else { $valid_referral_query = tep_db_query("select customers_id from customers where customers_email_address = '" . $check_mail . "' limit 1"); $valid_referral = tep_db_fetch_array($valid_referral_query); if (!tep_db_num_rows($valid_referral_query)) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REFERRAL_ERROR_NOT_FOUND), 'SSL')); } if ($check_mail == $order->customer['email_address']) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(REFERRAL_ERROR_SELF), 'SSL')); } else { $customer_referral = $valid_referral['customers_id']; if (!tep_session_is_registered('customer_referral')) tep_session_register('customer_referral'); } } } } } if ( ( is_array($payment_modules->modules) && (sizeof($payment_modules->modules) > 1) && !is_object($$payment) ) && (!$customer_shopping_points_spending) || (is_object($$payment) && ($$payment->enabled == false)) ) { tep_redirect(tep_href_link('checkout_payment.php', 'error_message=' . urlencode(ERROR_NO_PAYMENT_MODULE_SELECTED), 'SSL')); } ######## EOF POINTS REWARDS BS #################*/ And in checkout_payment.php Find if (sizeof($selection) > 1) { echo tep_draw_radio_field('payment', $selection[$i]['id'], ($selection[$i]['id'] == $payment), 'required aria-required="true"'); } else { echo tep_draw_hidden_field('payment', $selection[$i]['id']); } Replace with if (sizeof($selection) > 1) { echo tep_draw_radio_field('payment', $selection[$i]['id'], ($selection[$i]['id'] == $payment), 'aria-required="true"'); } else { echo tep_draw_hidden_field('payment', $selection[$i]['id']); } Something similar may also need to be done for any other 'checkout_*.php' pages.
  45. 2 likes
    I have managed to find a fix to bug 3. In admin/customers_points.php Find if ($pointstodel > 0) { if (isset($_POST['set_exp']) && ($_POST['set_exp'] == 'on') && ($balance > 0)) { $expire = date('Y-m-d', strtotime('+ '. POINTS_AUTO_EXPIRES .' month')); $expire_date = "\n" . sprintf(EMAIL_TEXT_EXPIRE, tep_date_short($expire)); tep_db_query("update customers set customers_shopping_points = customers_shopping_points - '". $pointstodel ."', customers_points_expires = '". $expire ."' where customers_id = '". (int)$customers_id ."'"); } else { $exp = ($balance > 0) ? $Cexpire_date : 'null'; tep_db_query("update customers set customers_shopping_points = customers_shopping_points - '". $pointstodel ."' where customers_id = '". (int)$customers_id ."'"); $expire_date = "\n" . sprintf(EMAIL_TEXT_EXPIRE, tep_date_short($_POST['customers_points_expires'])); } Replace with if ($pointstodel > 0) { if (isset($_POST['set_exp']) && ($_POST['set_exp'] == 'on') && ($balance > 0)) { $expire = date('Y-m-d', strtotime('+ '. POINTS_AUTO_EXPIRES .' month')); $expire_date = "\n" . sprintf(EMAIL_TEXT_EXPIRE, tep_date_short($expire)); tep_db_query("update customers set customers_shopping_points = customers_shopping_points - '". $pointstodel ."', customers_points_expires = '". $expire ."' where customers_id = '". (int)$customers_id ."'"); } else if (isset($_POST['set_exp']) && ($_POST['set_exp'] == 'on') && ($balance == '0')) { $expire = null; $expire_date = "\n" . sprintf(EMAIL_TEXT_EXPIRE, tep_date_short($expire)); tep_db_query("update customers set customers_shopping_points = customers_shopping_points - '". $pointstodel ."', customers_points_expires = '". $expire ."' where customers_id = '". (int)$customers_id ."'"); } else { $exp = ($balance > 0) ? $Cexpire_date : 'null'; tep_db_query("update customers set customers_shopping_points = customers_shopping_points - '". $pointstodel ."' where customers_id = '". (int)$customers_id ."'"); $expire_date = "\n" . sprintf(EMAIL_TEXT_EXPIRE, tep_date_short($_POST['customers_points_expires'])); }
  46. 2 likes
    The requirement that the site must be powered by osCommerce is no longer in place with the new Live Sites website. This is due to the many forks of osCommerce available and not wanting to spend resources policing each submission. Each submission is processed in the background though to make sure a valid website has been submitted. The listings now serve as an inspiration of what can be achieved in e-commerce, websites (v3 framework), user interface design, and technology.
  47. 2 likes
    Guys, the next updates will be pushed out this month. v2.3.5 and v2.3.6 will be out this month, and v2.4 will be out next month. The community bootstrap edition Gary worked on will be moved to the official v2.3.6 version.
  48. 2 likes
    6 steps, and entering credit card information before the checkout confirmation page? That's not an improvement.
  49. 2 likes
    @imusorka Instructions for what @discxpress suggested: In phpMyAdmin (if you have it) choose the products_to_categories table, then select structure. Tick both columns and then click Index.
  50. 2 likes
    Try the app. All feedback welcome. https://apps.oscommerce.com/vVTNW&ezsocial-for-osc2-3-4bs-v1-0a