"; print "window.location = 'https://www.scottosgifts.com/cart.php'"; print ""; exit(); } ?> Scotto's Holiday Gifts :: My Gift List"; if (isset($_GET['signin'])) { $heading .=" :: Checkout 1/2
Checkout Step 1 of 2
"; } if (isset($_GET['checkout'])) { $heading .=" :: Checkout 2/2
Checkout Step 2 of 2
"; } if (isset($_GET['success'])) { $heading .=" :: Thank you for your order"; } if (isset($_GET['failed'])) { $heading .=" :: Order Canceled"; } if ( (isset($_POST['add'])) || (isset($_POST['add_x'])) ) { //add to database $idproduct =$_POST["idprod"]; $idcat =$_POST["idcat"]; $idsubcat =$_POST["idsubcat"]; $prodname =$_POST["prodname"]; $sku =$_POST["sku"]; $onsale =$_POST["onsale"]; $price =$_POST["price"]; $quantity =$_POST["quantity"]; $color =$_POST["color"]; $size =$_POST["size"]; $today = date("Y-m-d"); $card =$_POST["cards"]; $occasion =$_POST["occasion"]; $shipselect = explode("*", $_POST["shipselect"]); $shipmethod =$shipselect[0]; $shipamount =$shipselect[1]; $fromname =$_POST["fromname"]; $fromphone =$_POST["fromphone"]; $fromemail =$_POST["fromemail"]; $recname =$_POST["recname"]; $recaddress =$_POST["recaddress"]; $reccity =$_POST["reccity"]; $recstate =$_POST["recstate"]; $reczip =$_POST["reczip"]; $recmsgtitle =$_POST["recmsgtitle"]; $recmsg=nl2br($_POST["recmsg"]); $recsign =$_POST["recsign"]; $_SESSION['fromname'] = $fromname; $_SESSION['fromphone'] = $fromphone; $_SESSION['fromemail'] = $fromemail; $_SESSION['recname'] = $recname; $_SESSION['recaddress'] = $recaddress; $_SESSION['reccity'] = $reccity; $_SESSION['recstate'] = $recstate; $_SESSION['reczip'] = $reczip; $_SESSION['recmsgtitle'] = $recmsgtitle; $_SESSION['recmsg'] = $recmsg; $_SESSION['recsign'] = $recsign; $query="INSERT INTO cart (idsession,idcheck,idproduct,idcat,idsubcat,prodname,sku,price,onsale,quantity,color,size,today,card, occasion,shipmethod,shipamount,fromname,fromphone,fromemail,recname,recaddress,reccity,recstate,reczip,recmsgtitle,recmsg,recsign) VALUES (\"$idsession\",\"$idcheck\",\"$idproduct\",\"$idcat\",\"$idsubcat\",\"$prodname\",\"$sku\",\"$price\",\"$onsale\",\"$quantity\",\"$color\",\"$size\",\"$today\", \"$card\",\"$occasion\",\"$shipmethod\",\"$shipamount\",\"$fromname\",\"$fromphone\",\"$fromemail\",\"$recname\",\"$recaddress\",\"$reccity\",\"$recstate\",\"$reczip\", \"$recmsgtitle\",\"$recmsg\",\"$recsign\");"; $result=mysql_query($query) or die ("Query failed add".mysql_error()); $path = explode('/', $_SERVER['HTTP_REFERER']); print ""; } //update database if (isset($_POST['update'])) { $update = $_POST; //print_r ($update); foreach ($update as $key => $value) { $quantity = $value; $idcart = $key; $idcart = $idcart / 2 / $idcheck; //print $idcart; $query="UPDATE cart SET quantity=\"$quantity\" WHERE id='$idcart';"; $result=mysql_query($query) or die ("Query failed1".$query); } if (!empty($_POST['coupon'])) { $_SESSION['coupon'] = ''; $_SESSION['discount'] = '0.00'; $coupon = $_POST['coupon']; $coupon1 = strtoupper($coupon); $coupon2 = strtolower($coupon); $queryc="SELECT * FROM coupons WHERE used!='yes' AND (caption='$coupon2' OR caption='$coupon1' OR caption='$coupon')"; $resultc=mysql_query($queryc) or die ("Query failed coupon ".$queryc.' '.mysql_error()); $rowc = mysql_fetch_array($resultc); $id = $rowc["id"]; $caption = $rowc["caption"]; $percent = $rowc["percent"]; $ends = $rowc["ends"]; $starts = $rowc["starts"]; $single = $rowc["single"]; $todays_date = date("Y-m-d"); $today = strtotime($todays_date); $expiration_date1 = strtotime($starts); $expiration_date2 = strtotime($ends); if ($expiration_date1 <= $today) { if ($expiration_date2 >= $today) { $valid = "yes"; } else { $valid = "no"; } } else { $valid = "no"; } if ($valid == "yes") { $discount = $_SESSION['totalnosale']*$percent/100; $_SESSION['coupon'] = $coupon; $_SESSION['couponid'] = $id; $_SESSION['discount'] = $discount; $_SESSION['single'] = $single; } } //update database from edit } if (isset($_POST['updatedit'])) { $idproduct =$_POST["idproduct"]; $quantity =$_POST["quantity"]; $color =$_POST["color"]; $size =$_POST["size"]; $idedit =$_POST["idedit"]; $idcart = $idedit / 2 / 3; $query="UPDATE cart SET quantity=\"$quantity\",color=\"$color\",size=\"$size\" WHERE id='$idcart';"; $result=mysql_query($query) or die ("Query failed1".$query); } //set shipping if (isset($_POST['shipping'])) { $shipping = $_POST['shipping']; $shipping= explode('/', $shipping); $shippingmethod=$shipping[0]; $shippingfee=$shipping[1]; $_SESSION['shippingfee'] = $shippingfee; $_SESSION['shippingmethod'] = $shippingmethod; } //remove if (isset($_GET['remove'])) { $idcart= $_GET['remove']; $idcart = $idcart / 2 / 3; $query="DELETE FROM cart WHERE id='$idcart';"; $result=mysql_query($query) or die ("Query failed"); } //view goes here if (!isset($_GET['res'])) { $queryver="SELECT * FROM cart WHERE idsession='$idsession' AND idcheck='$idcheck'"; $resultver=mysql_query($queryver) or die ("Query failedver"); $num_rowsver = mysql_num_rows($resultver); if ( (empty($num_rowsver)) && (!isset($_GET['res'])) ) { print ""; exit(); } $total = '0.00'; $totalnosale = '0.00'; $i = '0'; //pull shipping $shippingdetails =''; $query12="SELECT * FROM shipping"; $result12=mysql_query($query12) or die ("Query failed12 ".mysql_error()); $num_rows12 = mysql_num_rows($result12); if (!empty($num_rows12)) { $shippingdetails .="
"; } //begin content $content =''; $content .= ' '; $query="SELECT * FROM cart WHERE idsession='$idsession' AND idcheck='$idcheck'"; $result=mysql_query($query) or die ("Query failed"); while ($row = mysql_fetch_array($result)) { $idcart =$row["id"]; $idproduct =$row["idproduct"]; $idcat =$row["idcat"]; $idsubcat =$row["idsubcat"]; $prodname =$row["prodname"]; $sku =$row["sku"]; $price =$row["price"]; $quantity =$row["quantity"]; $color =$row["color"]." "; $size =$row["size"]." "; $recname =$row["recname"]." "; $shipamount =$row["shipamount"]; $query1="SELECT * FROM products WHERE id='$idproduct'"; $result1=mysql_query($query1) or die ("Query failed1"); $row1 = mysql_fetch_array($result1); $description = $row1["description"]; $photo1 = $row1["photo1"]; $onsale = $row1["onsale"]; $idedit = $idcart * 3 * 2; $subtotal = $price * $quantity + $shipamount; $total = $subtotal + $total; if ($onsale != 'yes') { //for coupons $subtotalnosale = $price * $quantity; $totalnosale = $subtotalnosale + $totalnosale; } mysql_free_result($result1); if ($i == 0) { $content .= ''; $i++; } else { $content .= ''; $i = 0; } $content .= ' '; //[Edit] } mysql_free_result($result); $_SESSION['subtotal'] = $total; $_SESSION['totalnosale'] = $totalnosale; //forcoupon calc $totalship = $total + $_SESSION['shippingfee']; if ($statevisitor == '000') { //comes from top file $tax = $totalship * 0.095; $tax = round($tax, 2); } else { $tax = '0.00'; } if ((isset($_SESSION['state'])) && ($_SESSION['state'] == 'CA')) { //comes from top file $tax = $totalship * 0.095; $tax = round($tax, 2); } else { $tax = '0.00'; } $totaltaxed = $totalship + $tax; $_SESSION['taxamount'] = $tax; $_SESSION['total'] = $totaltaxed; $content .= ' '; $content .= ''; $content .= ''; $content .= ' '; $content .= ''; $content .= ''; $content .= ''; $content .= ''; /*$content .= ' '; */ /*$content .= ' '; */ $content .= ''; $content .= '
    Unit S&H Total

'.$prodname.' - Style #'.$sku.'
'.$color.' '.$size.' Ship to: '.$recname.'

'.money_format('%(#10n', $price).' '.money_format('%(#10n', $shipamount).' '.money_format('%(#10n', $subtotal).'
  Subtotal   '.money_format('%(#10n', $_SESSION['subtotal']).'
*Doesn\'t apply to sale items.      Coupon Code '; if (!empty($_SESSION['discount'])) { $content .= '- '.money_format('%(#10n', $_SESSION['discount']); } $content .= '

 
Shipping   '.$shippingdetails.'
**Applies to California residents only      Sales Tax   '.money_format('%(#10n', $tax).'
  Total   '.money_format('%(#10n', $totaltaxed).'

'; if ( (isset($_GET['signin'])) || (isset($_GET['checkout'])) || (isset($_GET['success'])) || (isset($_GET['failed'])) ) { } else { $content .= '
'; } $content .= '
'; } ?>

Home


I have an account Email         Password       

Open a new account
Email:*
Password:*
Newsletter:* Opt-in

Billing Address
First Name:*
Last Name:*
Address:*
City:*
State* - Zip:*    
Phone:*

*required fields