function dcBasicAuth() { if (isset($_SERVER['HTTP_HOST'])) { $host_names = explode(".", $_SERVER['HTTP_HOST']); $bottom_host_name = $host_names[count($host_names)-2] . "." . $host_names[count($host_names)-1]; if ($bottom_host_name === getenv('BASIC_AUTH_DOMAIN')) { $authUser = array( getenv('BASIC_AUTH_USER_INTERNAL') => getenv('BASIC_AUTH_USER_PASSWORD_INTERNAL'), getenv('BASIC_AUTH_USER_EXTERNAL') => getenv('BASIC_AUTH_USER_PASSWORD_EXTERNAL') ); $realm = "Restricted area"; if (!isset($_SERVER['PHP_AUTH_USER'])) { showBasicAuth($realm); } if (!isset($authUser[$_SERVER['PHP_AUTH_USER']]) || !isset($_SERVER['PHP_AUTH_PW'])) { showBasicAuth($realm); } if ($authUser[$_SERVER['PHP_AUTH_USER']] !== $_SERVER['PHP_AUTH_PW']) { showBasicAuth($realm); } } } } /** * @param $realm */ function showBasicAuth($realm): void { header('WWW-Authenticate: Basic realm="'.$realm.'"'); header('HTTP/1.0 401 Unauthorized'); die(); } //mysqli_result analog zu mysql_result function mysqli_result( $res, $row = 0, $col = 0 ) { if ($row >= 0 && @mysqli_num_rows($res) > $row) { @mysqli_data_seek($res, $row); $resrow = @mysqli_fetch_row($res); if (isset($resrow[$col])) { return $resrow[$col]; } } return FALSE; } function encryptId($id) { $encryptedId = base64_encode($id . "EC1ibm38FI53cxmSnQUi"); return $encryptedId; } // Entschlüsselt eine zuvor verschlüsselte ID, um ihre ursprüngliche Form wiederherzustellen. function decryptId($encryptedId) { $decryptedId = base64_decode($encryptedId); $id = str_replace("EC1ibm38FI53cxmSnQUi", "", $decryptedId); return $id; } // Verbindung mir der Datenbank herstellen function db_connect() { $servername = $GLOBALS['myservername']; $login = $GLOBALS['mylogin']; $pass = $GLOBALS['mypass']; $db = $GLOBALS['mydb']; $GLOBALS['mysql_con'] = mysqli_connect($servername, $login, $pass) or die (mysqli_error($GLOBALS['mysql_con']) . " - Keine Verbindung hergestellt!"); @mysqli_select_db($GLOBALS['mysql_con'], $db) or die (mysqli_error($GLOBALS['mysql_con']) . " - Keine Verbindung hergestellt!"); @mysqli_query($GLOBALS['mysql_con'], "set character set 'utf8';"); @mysqli_query($GLOBALS['mysql_con'], "set names 'utf8';"); $pdo = new PDO('mysql:host='.$servername.';dbname='.$db, $login, $pass); $GLOBALS['pdo_conn'] = $pdo; } // Globales führen der Reihenfolge in der Felder angewählt werden function tabcounter() { $counter = $GLOBALS["tabcounter"]; $GLOBALS["tabcounter"]++; return $counter; } // Funktion zum erstellen eines internen Links function ml( $sitepart, $key1, $value1, $key2 = NULL, $value2 = NULL, $key3 = NULL, $value3 = NULL, $key4 = NULL, $value4 = NULL ) { $newget = $_GET; unset($newget["payment_error"], $newget["login_error"], $newget["sid"], $newget["site"], $newget["language"], $newget["level_1"], $newget["level_2"], $newget["level_3"], $newget["level_4"], $newget["level_5"], $newget["action"], $newget["action_id"], $newget["slevel_1"], $newget["slevel_2"], $newget["slevel_3"], $newget["slevel_4"], $newget["slevel_5"]); foreach ($newget as $key => $val){ if(substr($key,0,6) === 'action' && $val === 'send'){ unset($newget[$key]); } } if ($key1 <> "") { $newget[$key1 . $sitepart["navigation_has_sitepart_id"]] = $value1; } if ($key2 <> "") { $newget[$key2 . $sitepart["navigation_has_sitepart_id"]] = $value2; } if ($key3 <> "") { $newget[$key3 . $sitepart["navigation_has_sitepart_id"]] = $value3; } if ($key4 <> "") { $newget[$key4 . $sitepart["navigation_has_sitepart_id"]] = $value4; } return ("?" . http_build_query($newget)); } function ml2( $data ) { $newget = $_GET; unset($newget["sid"], $newget["site"], $newget["language"], $newget["level_1"], $newget["level_2"], $newget["level_3"], $newget["level_4"], $newget["level_5"], $newget["action"], $newget["action_id"], $newget["slevel_1"], $newget["slevel_2"], $newget["slevel_3"], $newget["slevel_4"], $newget["slevel_5"]); $newget = array_merge($newget, $data); return ("?" . http_build_query($newget)); } // Array vor SQL-Injection schützen function secure_array( $bad_array, $check_strip_tags = FALSE ) { //$keywords = ['INSERT','SELECT','DROP','SHOW','TRUNCATE','CONCAT','information_schema','substring(','version(','ascii','database(','load_file(','OUTFILE','BENCHMARK','unhex']; $keywords = ['']; $secure_array = array(); foreach ($bad_array as $key => $value) { if (is_array($bad_array[$key])) { $secure_array[$key] = secure_array($bad_array[$key], $check_strip_tags); } else { $hex2stringValue = hexToStr($value); foreach($keywords as $keyword) { if ((stripos($value,$keyword) !== false) || (stripos($hex2stringValue,$keyword) !== false)) { die(); } } $secure_array[$key] = secure_var($value, $check_strip_tags); } } return $secure_array; } // Array vor SQL-Injection schützen für navconnect function secure_array_nav( $bad_array, $check_strip_tags = FALSE ) { $keywords = ['INSERT','SELECT','SHOW','TRUNCATE','CONCAT','information_schema','substring(','version(','ascii(','database(','load_file(','OUTFILE','BENCHMARK','unhex']; $secure_array = array(); foreach ($bad_array as $key => $value) { if (is_array($bad_array[$key])) { $secure_array[$key] = secure_array($bad_array[$key], $check_strip_tags); } else { $hex2stringValue = hexToStr($value); foreach($keywords as $keyword) { if ((stripos($value,$keyword) !== false) || (stripos($hex2stringValue,$keyword) !== false)) { die(); } } $secure_array[$key] = secure_var($value, $check_strip_tags); } } return $secure_array; } function hexToStr($hex){ $string=''; for ($i=0; $i < strlen($hex)-1; $i+=2){ $string .= chr(hexdec($hex[$i].$hex[$i+1])); } return $string; } // Variable vor SQL-Injection schützen function secure_var( $bad_var, $check_strip_tags = FALSE ) { if (get_magic_quotes_gpc()) { $bad_var = stripslashes($bad_var); } if ($check_strip_tags) { $bad_var = strip_tags($bad_var); } $secure_var = mysqli_real_escape_string($GLOBALS['mysql_con'], $bad_var); return $secure_var; } // Gibt die Dc-Einstellungen zurück function setup_get() { // satdnardwebsite auslesen. main_setup am 1.11.2014 geloescht $setup = array(); $query = "SELECT id FROM main_site WHERE is_standard_site = 1 LIMIT 1"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { $row = @mysqli_fetch_array($result); $setup['std_main_site_id'] = $row['id']; return $setup; } // keine default website gefunden, also die erstbeste nehmen $query = "SELECT id from main_site order by id asc limit 1"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); $row = @mysqli_fetch_array($result); $setup['std_main_site_id'] = $row['id']; return $setup; } /** * Seets site-code in GET if not set */ function set_sitecode_get() { if(empty($_GET['site'])) { $site = (isset($_GET["site"]) && $_GET["site"] <> '') ? site_getbycode($_GET["site"]) : site_getbyid($GLOBALS["setup"]["std_main_site_id"]); $_GET['site'] = $site['code']; } } // Gibt den Datensatz der aktuellen Frontend-Seite zurück function site_getbycode( $sitecode ) { $query = ($sitecode <> '') ? "SELECT * FROM main_site WHERE code = '" . $sitecode . "'" : "SELECT * FROM main_site LIMIT 0,1"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { return @mysqli_fetch_array($result); } else { $setup = setup_get(); return site_getbyid($setup["std_main_site_id"]); } } function site_getbyid( $siteid ) { $query = ($siteid <> 0) ? "SELECT * FROM main_site WHERE id = '" . $siteid . "'" : "SELECT * FROM main_site LIMIT 0,1"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { return @mysqli_fetch_array($result); } } // Realisiert einen Seitenwechsel function site_change() { if (($_GET["change_site"]) | ($_POST["input_site_id"] <> '')) { $result = mysqli_query($GLOBALS['mysql_con'], "SELECT * FROM main_site WHERE id = '" . $_POST["input_site_id"]."'"); if (@mysqli_num_rows($result) == 1) { $new_site = @mysqli_fetch_array($result); $_GET["site"] = $new_site["code"]; } } } // Gibt den Datensatz der aktuellen Frontend-Sprache zurück function language_getbycode( $languagecode, $main_site_id ) { $query = ($languagecode <> '') ? "SELECT * FROM main_language WHERE code = '" . $languagecode . "' AND main_site_id = '" . $main_site_id . "'" : "SELECT * FROM main_language LIMIT 0,1"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { return @mysqli_fetch_array($result); } } function language_getbyid( $languageid ) { $query = ($languageid <> 0) ? "SELECT * FROM main_language WHERE id = '" . $languageid . "'" : "SELECT * FROM main_language LIMIT 0,1"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { return @mysqli_fetch_array($result); } } // Realisiert den Wechsel der Sprache function language_change() { if (isset($_GET["change_language"]) && ($_GET["change_language"] <> '')) { $result = mysqli_query($GLOBALS['mysql_con'], "SELECT * FROM main_language WHERE code = '" . $_POST["change_language"] . "'"); if (@mysqli_num_rows($result) == 1) { $new_language = @mysqli_fetch_array($result); $_GET["language"] = $new_language["code"]; } } } // Sprachen Drop-Down function language_frontend_select( $selectname = "input_language_id", $value = NULL, $disabled = FALSE ) { $disabled_text = ($disabled) ? " disabled=\"disabled\"" : ""; echo ""; } // Gibt den Datenbankeintrag des aktuellen Layouts zurück function layout_getbyid( $layoutid ) { $query = "SELECT * FROM main_layout WHERE id = '" . $layoutid . "'"; $result = mysqli_query($GLOBALS['mysql_con'], $query); $row = mysqli_fetch_array($result); return $row; } function page_getbyid( $pageid ) { $query = "SELECT * FROM main_page where id = '" . (int)$pageid."'"; $result = mysqli_query($GLOBALS['mysql_con'], $query); $row = mysqli_fetch_array($result); return $row; } // Gibt den Datenbankeintrag des aktuellen Menübereichs zurück function navigation_get( $site, $language ) { $levelcode = ""; if (!empty($_GET["level_1"])) { $levelcode = $_GET["level_1"]; } if (!empty($_GET["level_2"])) { $levelcode = $_GET["level_2"]; } if (!empty($_GET["level_3"])) { $levelcode = $_GET["level_3"]; } if (!empty($_GET["level_4"])) { $levelcode = $_GET["level_4"]; } if (!empty($_GET["level_5"])) { $levelcode = $_GET["level_5"]; } if ($levelcode == "") { $navigation = navigation_getbyid($language["std_main_navigation_id"]); } else { $query = "SELECT * FROM main_navigation WHERE main_site_id = " . $site["id"] . " AND main_language_id = " . $language["id"] . " AND code = '" . $levelcode . "'"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { $navigation = @mysqli_fetch_array($result); } else { $navigation = navigation_getbyid($language["std_main_navigation_id"]); } } //$navigation = navigation_get_rek($navigation); $i = 5; while ($i > $navigation["level"]) { $_GET["level_" . $i] = ""; $i--; } set_navigation_level_vars_rek($navigation); return $navigation; } function navigation_get_rek( $navigation ) { if (($navigation["forward_type"] == 2) && ($navigation["forward_navigation_id"] <> '')) { $query = "SELECT * FROM main_navigation WHERE id = '" . $navigation["forward_navigation_id"] . "'"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { $navigation_temp = @mysqli_fetch_array($result); return navigation_get_rek($navigation_temp); } } else { return $navigation; } } // Fälscht Navigationsvariablen für Weiterleitung function set_navigation_level_vars_rek( $navigation ) { $_GET["level_" . $navigation["level"]] = $navigation["code"]; if ($navigation["level"] > 1) { $query = "SELECT * FROM main_navigation WHERE id = " . $navigation["parent_id"]; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { $temp_navigation = @mysqli_fetch_array($result); set_navigation_level_vars_rek($temp_navigation); } } } // Gib den Datensatz einer Navigationsebene zurück function navigation_getbyid( $navigationid ) { $query = "SELECT * FROM main_navigation WHERE id = '" . $navigationid . "'"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { return @mysqli_fetch_array($result); } } function navigation_getbycode( $code, $site = '', $language = '' ) { if ($site == '') { $site = $GLOBALS["site"]; } if ($language == '') { $language = $GLOBALS["language"]; } $query = "SELECT * FROM main_navigation WHERE main_site_id = '" . $site["id"] . "' AND main_language_id = '" . $language["id"] . "' AND code = '" . $code . "'"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { return @mysqli_fetch_array($result); } } // Titel der Seite zusammenstellen function site_title( $language, $navigation ) { if ($_GET["card"] != '') { $item = get_item_by_card_id($GLOBALS["shop"]["company"], $GLOBALS["shop"]["code"], $language["code"], $_GET["card"]); if (strlen($item["site_title"]) > 0) { $title = $item["site_title"] . " | " . $GLOBALS["language"]["site_title_name"]; } else { $title = $item["description"] . " | " . $GLOBALS["language"]["site_title_name"]; } } else { if ($_GET['shop_category'] == 'search') { $title = $GLOBALS["tc"]["search"] . " | "; } elseif ($_GET['shop_category'] == 'order') { $title = $GLOBALS["tc"]["order"] . " | "; } elseif ($_GET['shop_category'] == 'basket') { $title = $GLOBALS["tc"]["shopping_basket"] . " | "; } elseif ($GLOBALS["category"]["site_titel"] == '') { if ($GLOBALS["category"]["name"] != '') { $title = $GLOBALS["category"]["name"] . " | "; } elseif ($navigation["title_name"] <> '') { $title = $navigation["title_name"] . " | "; } } else { $title = $GLOBALS["category"]["site_titel"] . " | "; } $title .= $GLOBALS['language']["site_title_name"]; } return $title; } //Canonical infos füllen function get_canonical() { $url = $_SERVER["SERVER_NAME"] . $_SERVER["REDIRECT_URL"]; $domain = $_SERVER["SERVER_NAME"]; //Sonderseiten switch ($_GET['shop_category']) { case "search": $path = ""; break; case "order": $path = ""; break; case "basket": $path = ""; break; case "account": $path = ""; break; case "favorites": $path = ""; break; } //Weiterleitungen $query = "SELECT * FROM main_navigation WHERE id = '" . $GLOBALS['navigation']['id'] . "'"; $result = mysqli_query($GLOBALS['mysql_con'], $query); $row = mysqli_fetch_object($result); $main_site_id = $row->main_site_id; $main_language_id = $row->main_language_id; // Wird später durch parent_id überschrieben $parent_id = $row->parent_id; $forward = $row->forward; if ($forward) { $parent_id = $row->forward_navigation_id; } $code = $row->code; //prüft ob shop, falls nicht > weiterleitungscanonical if ($code != 'shop') { $path = NULL; while ($parent_id != NULL) { $query_2 = "SELECT * FROM main_navigation WHERE id = '" . $parent_id . "'"; $result_2 = mysqli_query($GLOBALS['mysql_con'], $query_2); $parent_id = '0'; while ($row = mysqli_fetch_object($result_2)) { if ($row->code != $code) { $path = $row->code . "/" . $path; } if ($row->forward != "0") { $path = ""; $parent_id = $row->forward_navigation_id; } else { $parent_id = $row->parent_id; } } } //canonical pfad erstellen $path = $path . $code; $path = ""; } else { //Artikelliste ohne Sortieroption if (isset($GLOBALS["category"]["id"]) || isset($_GET['card'])) { if (!isset($_GET['page'])) { $page = 1; } else { $page = $_GET['page']; } if (!isset($_GET['card'])) { $path = ''; } else { $card = $_GET['card']; $urlend = $_SERVER["REQUEST_URI"]; $urlend = explode("?", $urlend); $urlmiddle = $urlend[0]; $canonical = ""; IF ($_GET['card'] != '') { $itemquery = "SELECT * FROM shop_item WHERE id='" . $_GET["card"]."'"; $itemresult = @mysqli_query($GLOBALS['mysql_con'], $itemquery); $item = @mysqli_fetch_assoc($itemresult); if (strlen($item["parent_item_no"]) > 0) { $parentitemquery = "SELECT * FROM shop_item WHERE company='" . $GLOBALS["shop"]["company"] . "' AND shop_code='" . $GLOBALS["shop"]["item_source"] . "' AND language_code='" . $GLOBALS["shop_language"]["code"] . "' AND item_no='" . $item["parent_item_no"] . "'"; $parentitemresult = @mysqli_query($GLOBALS['mysql_con'], $parentitemquery); $parent_item = @mysqli_fetch_assoc($parentitemresult); } else { $parent_item = $item; } IF ($parent_item['id'] == '' || $parent_item['id'] == $item['id']) { $canonical_card_id = $item['id']; IF ($item['main_category_line_no'] <> 0) { $cat_query = "SELECT code, name, parent_line_no AS plo FROM shop_category WHERE line_no = '" . $item['main_category_line_no'] . "' AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["category_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."'"; } ELSE { $cat_query = "SELECT code, name, parent_line_no AS plo FROM shop_category WHERE line_no = (SELECT category_line_no FROM shop_item_has_category WHERE item_no = '" . $item['item_no'] . "' AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["item_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."' GROUP BY category_line_no ORDER BY category_line_no ASC LIMIT 1) AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["category_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."'"; } $cat_result = @mysqli_query($GLOBALS['mysql_con'], $cat_query); $itemcategory = @mysqli_fetch_array($cat_result); $caturl = array(); $seek = array('ä', 'ö', 'ü', 'ß','+', '*', ' ', '.', ',', '/', '\\', '"', "''", "'"); $replace = array('ae', 'oe', 'ue', 'ss','plus', '-', '-', '-', '-', '', '', '"', '"', ''); $caturl[0] = str_replace($seek, $replace, $itemcategory["code"]); $caturl[0] = htmlspecialchars($caturl[0], ENT_QUOTES, "UTF-8"); $caturl[0] = $caturl[0] . "/"; $i = 1; WHILE ($itemcategory['plo'] > 0) { $cat_query_rek = "SELECT code, name, parent_line_no AS plo FROM shop_category WHERE line_no = '" . $itemcategory['plo'] . "' AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["category_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."'"; $cat_res_rek = @mysqli_query($GLOBALS['mysql_con'], $cat_query_rek); $itemcategory = @mysqli_fetch_array($cat_res_rek); IF ($itemcategory['name'] != '') { $seek = array('ä', 'ö', 'ü', 'ß','+', '*', ' ', '.', ',', '/', '\\', '"', "''", "'"); $replace = array('ae', 'oe', 'ue', 'ss','plus', '-', '-', '-', '-', '', '', '"', '"', ''); $caturl[$i] = str_replace($seek, $replace, $itemcategory["code"]); $caturl[$i] = htmlspecialchars($caturl[$i], ENT_QUOTES, "UTF-8"); $caturl[$i] = $caturl[$i] . "/"; } ELSE { $caturl[$i] = ''; } $i++; } $catstring = ""; DO { $catstring .= $caturl[$i]; $i--; } WHILE ($i >= 0); $seek = array('ä', 'ö', 'ü', 'ß','+', '*', ' ', '.', ',', '/', '\\', '"', "''", "'"); $replace = array('ae', 'oe', 'ue', 'ss','plus', '-', '-', '-', '-', '', '', '"', '"', ''); $itemdescription = str_replace($seek, $replace, $item["description"]); $itemdescription = htmlspecialchars($itemdescription, ENT_QUOTES, "UTF-8"); $itemdescription = str_replace("Â", "", $itemdescription); $itemdescription = str_replace("â", "", $itemdescription); $itemdescription = trim($itemdescription, "+"); $base_string = "https://" . $_SERVER["SERVER_NAME"] . "/"; $request_string = $GLOBALS['site']['code'] . "/" . $GLOBALS['language']['code'] . "/shop/" . $catstring . $itemdescription . "/?card=" . $canonical_card_id; $request_string = str_replace("//", "/", $request_string); $canonical = $base_string . $request_string; $canonical = str_replace(" ", "-", $canonical); $canonical = str_replace("--", "-", $canonical); } else { $canonical_card_id = $parent_item["id"]; IF ($parent_item['main_category_line_no'] <> 0) { $cat_query = "SELECT code, name, parent_line_no AS plo FROM shop_category WHERE line_no = '" . $parent_item['main_category_line_no'] . "' AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["category_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."'"; } ELSE { $cat_query = "SELECT code, name, parent_line_no AS plo FROM shop_category WHERE line_no = (SELECT category_line_no FROM shop_item_has_category WHERE item_no = '" . $parent_item['item_no'] . "' AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["item_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."' GROUP BY category_line_no ORDER BY category_line_no ASC LIMIT 1) AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["category_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."'"; } $cat_result = @mysqli_query($GLOBALS['mysql_con'], $cat_query); $itemcategory = @mysqli_fetch_array($cat_result); $caturl = array(); IF ($itemcategory['code'] != '') { $seek = array('ä', 'ö', 'ü', 'ß','+', '*', ' ', '.', ',', '/', '\\', '"', "''", "'"); $replace = array('ae', 'oe', 'ue', 'ss','plus', '-', '-', '-', '-', '', '', '"', '"', ''); $caturl[0] = str_replace($seek, $replace, $itemcategory["code"]); $caturl[0] = htmlspecialchars($caturl[0], ENT_QUOTES, "UTF-8"); $caturl[0] = $caturl[0] . "/"; } ELSE { $caturl[0] = ''; } $i = 1; WHILE ($itemcategory['plo'] > 0) { $cat_query_rek = "SELECT code, name, parent_line_no AS plo FROM shop_category WHERE line_no = '" . $itemcategory['plo'] . "' AND company = '". $GLOBALS["shop"]["company"] ."' AND shop_code = '". $GLOBALS["shop"]["category_source"] ."' AND language_code = '". $GLOBALS["shop_language"]["code"] ."'"; $cat_res_rek = @mysqli_query($GLOBALS['mysql_con'], $cat_query_rek); $itemcategory = @mysqli_fetch_array($cat_res_rek); IF ($itemcategory['name'] != '') { $seek = array('ä', 'ö', 'ü', 'ß','+', '*', ' ', '.', ',', '/', '\\', '"', "''", "'"); $replace = array('ae', 'oe', 'ue', 'ss','plus', '-', '-', '-', '-', '', '', '"', '"', ''); $caturl[$i] = str_replace($seek, $replace, $itemcategory["code"]); $caturl[$i] = htmlspecialchars($caturl[$i], ENT_QUOTES, "UTF-8"); $caturl[$i] = $caturl[$i] . "/"; } ELSE { $caturl[$i] = ''; } $i++; } $catstring = ""; DO { $catstring .= $caturl[$i]; $i--; } WHILE ($i >= 0); $seek = array('ä', 'ö', 'ü', 'ß','+', '*', ' ', '.', '/', '\\', '%', ',', 'Ø', 'Ã', 'ø', 'ã', 'Õ', 'õ', '"', "''", "'"); $replace = array('ae', 'oe', 'ue', 'ss','plus', '-', '-', '-', '', '', 'proz', '+', 'Ø', 'Ã', 'ø', 'ã', 'Õ', 'õ', '"', '"', ''); $itemdescription = str_replace($seek, $replace, $item["description"]); $itemdescription = htmlspecialchars($itemdescription, ENT_QUOTES, "UTF-8"); $itemdescription = str_replace("Â", "", $itemdescription); $itemdescription = str_replace("â", "", $itemdescription); $itemdescription = trim($itemdescription, "+"); $base_string = "https://" . $_SERVER["SERVER_NAME"] . "/"; $request_string = $GLOBALS['site']['code'] . "/" . $GLOBALS['language']['code'] . "/shop/" . $catstring . $itemdescription . "/?card=" . $canonical_card_id; $request_string = str_replace("//", "/", $request_string); $canonical = $base_string . $request_string; $canonical = str_replace(" ", "-", $canonical); $canonical = str_replace("--", "-", $canonical); } } $canonical = strtolower($canonical); $path = ''; } } } if ($path != $url) { $path = strtolower($path); return $path; } } //Facebook meta daten Infos füllen function get_fb_meta_info() { $card_id = (int)$_GET['card']; if (isset($card_id)) { $query = "SELECT * FROM shop_item WHERE id = '" . $card_id . "'"; $result = mysqli_query($GLOBALS['mysql_con'], $query); while ($row = mysqli_fetch_object($result)) { $item_no = $row->item_no; $product_name = $row->description; $company = $row->company; $shop_code = $row->shop_code; $shop_language_code = $row->language_code; //image name füllen $query_2 = "SELECT * FROM shop_item_file WHERE item_no = '" . $item_no . "' AND company = '$company' AND shop_code = '$shop_code' AND language_code = '$shop_language_code' LIMIT 1"; $result_2 = mysqli_query($GLOBALS['mysql_con'], $query_2); while ($row_2 = mysqli_fetch_object($result_2)) { $product_img = $row_2->filename; } //produkt beschreibung füllen $query_3 = "SELECT * FROM shop_item_description WHERE item_no = '" . $item_no . "' AND company = '$company' AND shop_code = '$shop_code' AND language_code = '$shop_language_code' AND marketplace_only = 0 LIMIT 1"; $result_3 = mysqli_query($GLOBALS['mysql_con'], $query_3); while ($row_3 = mysqli_fetch_object($result_3)) { $product_description = $row_3->content; } } $fb_meta_data = ""; $fb_meta_data .= ""; $fb_meta_data .= ""; $fb_meta_data .= ""; $fb_meta_data .= ""; return $fb_meta_data; } } //Bild erstellen function get_image( $item ,$type = 1) { $item_no = $item['item_no']; $parent_item_no = $item["parent_item_no"]; //image name füllen $query = "SELECT * FROM shop_item_file WHERE (item_no = '" . $item_no . "' OR item_no = '" . $parent_item_no . "') and customization = 0 LIMIT 1"; $result = mysqli_query($GLOBALS['mysql_con'], $query); while ($row = mysqli_fetch_object($result)) { $product_img = $row->filename; } if ($product_img == '' || !file_exists("../../" . $GLOBALS["shop_setup"]["image_config"][$type]["path"] . "/" . $product_img)) { if ($GLOBALS['shop_language']['item_placeholder_image'] != '') { $product_img = $GLOBALS['shop_language']['item_placeholder_image']; } else { $product_img = "noimage.jpg"; } } //$fb_review_data .= "
| '.$translation->get("action").' | '; echo "
" . button("delete", $translation->get("delete"), $formname, $deleteAction, "", FALSE, FALSE). " | ";
loadAction($formname, $deleteAction, $dblclick_action, $keyCount);
$keyCount++;
}
if ($sortable === TRUE && $counter == 2) {
echo " " . format_value("", "sorticon", "sort") . "\n";
}
@next($format);
$counter++;
}
echo "
Keine Seite mit diesem Kollektionstyp gefunden.
"; return; } $pages = array(); // $query = "SELECT * FROM main_navigation WHERE forward_page_id IN (" . join(",", $pageIds) . ") AND forward_type = 1 AND main_language_id = " . $GLOBALS["language"]['id']; $querySetup = "SELECT * FROM main_collection_setup WHERE id = ".$collection_setup_id; $resultSetup = @mysqli_query($GLOBALS['mysql_con'], $querySetup); $rowSetup = @mysqli_fetch_array($resultSetup); if($rowSetup['main_language_id'] != $GLOBALS["language"]['id'] && $rowSetup['is_multidomain'] == 1){ $query = "SELECT * FROM main_navigation WHERE forward_page_id IN (" . join(",", $pageIds) . ") AND forward_type = 1 " ; }else{ $query = "SELECT * FROM main_navigation WHERE forward_page_id IN (" . join(",", $pageIds) . ") AND forward_type = 1 AND main_language_id = " . $GLOBALS["language"]['id']; } $result = @mysqli_query($GLOBALS['mysql_con'], $query); while ($row = @mysqli_fetch_array($result, 1)) { $pages[$row['id']] = $row; } if (count($pages) == 0) { echo "Keine Seite mit diesem Kollektionstyp gefunden.
"; return; } echo ""; echo "