Here is the complete php section of my orderdetails pae:
<?php
//WA eCart Include
require_once("../WA_eCart/HeckieCart_PHP.php");
?>
<?php require_once('../Connections/connHeckie.php'); ?>
<?php
$HeckieCart->GetContent();
?>
<?php require_once("../WA_DigitalFilePro/HelperPHP.php"); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
{
$theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
switch ($theType) {
case "text":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "long":
case "int":
$theValue = ($theValue != "") ? intval($theValue) : "NULL";
break;
case "double":
$theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
break;
case "date":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "defined":
$theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
break;
}
return $theValue;
}
}
?>
<?php
$currentPage = $_SERVER["PHP_SELF"];
?>
<?php
$maxRows_WADAorderdetails = 1000;
$pageNum_WADAorderdetails = 0;
if (isset($_GET['pageNum_WADAorderdetails'])) {
$pageNum_WADAorderdetails = $_GET['pageNum_WADAorderdetails'];
}
$startRow_WADAorderdetails = $pageNum_WADAorderdetails * $maxRows_WADAorderdetails;
$WADAID_WADAorderdetails = "-1";
if (isset($_GET['ID'])) {
$WADAID_WADAorderdetails = (get_magic_quotes_gpc()) ? $_GET['ID'] : addslashes($_GET['ID']);
}
mysql_select_db($database_connHeckie, $connHeckie);
$query_WADAorderdetails = sprintf("SELECT * FROM orderdetails WHERE DetailOrderID = %s ORDER BY DetailItemName ASC", GetSQLValueString($WADAID_WADAorderdetails, "int"));
$query_limit_WADAorderdetails = sprintf("%s LIMIT %d, %d", $query_WADAorderdetails, $startRow_WADAorderdetails, $maxRows_WADAorderdetails);
$WADAorderdetails = mysql_query($query_limit_WADAorderdetails, $connHeckie) or die(mysql_error());
$row_WADAorderdetails = mysql_fetch_assoc($WADAorderdetails);
if (isset($_GET['totalRows_WADAorderdetails'])) {
$totalRows_WADAorderdetails = $_GET['totalRows_WADAorderdetails'];
} else {
$all_WADAorderdetails = mysql_query($query_WADAorderdetails);
$totalRows_WADAorderdetails = mysql_num_rows($all_WADAorderdetails);
}
$totalPages_WADAorderdetails = ceil($totalRows_WADAorderdetails/$maxRows_WADAorderdetails)-1;
$colname_rsOrder = "-1";
if (isset($_GET['ID'])) {
$colname_rsOrder = (get_magic_quotes_gpc()) ? $_GET['ID'] : addslashes($_GET['ID']);
}
mysql_select_db($database_connHeckie, $connHeckie);
$query_rsOrder = sprintf("SELECT *, DATE_FORMAT(OrderDate, '%%W %%D %%M %%Y %%r') as OrderDate FROM orders WHERE OrderID = %s", GetSQLValueString($colname_rsOrder, "int"));
$rsOrder = mysql_query($query_rsOrder, $connHeckie) or die(mysql_error());
$row_rsOrder = mysql_fetch_assoc($rsOrder);
$totalRows_rsOrder = mysql_num_rows($rsOrder);
$colname_rsDownloadFile = "-1";
if (isset($_POST['fileID'])) {
$colname_rsDownloadFile = (get_magic_quotes_gpc()) ? $_POST['fileID'] : addslashes($_POST['fileID']);
}
mysql_select_db($database_connHeckie, $connHeckie);
$query_rsDownloadFile = sprintf("SELECT * FROM orderdetails WHERE DetailsID = %s", GetSQLValueString($colname_rsDownloadFile, "int"));
$rsDownloadFile = mysql_query($query_rsDownloadFile, $connHeckie) or die(mysql_error());
$row_rsDownloadFile = mysql_fetch_assoc($rsDownloadFile);
$totalRows_rsDownloadFile = mysql_num_rows($rsDownloadFile);?>
<?php
WA_DFP_SetupDownloadStatusStruct("WA_DownloadResult1");
if($_SERVER["REQUEST_METHOD"] == "POST"){
WA_DFP_DownloadFile("WA_DownloadResult1", "../downloads/", "".$row_rsDownloadFile['DetailDownloadFile'] ."", "[FileName]", 1, $database_connHeckie, $connHeckie, "orderdetails", "DetailsID", "".$row_rsDownloadFile['DetailsID'] ."", "DetailDownload");
}
?>
<?php
$queryString_WADAorderdetails = "";
if (!empty($_SERVER['QUERY_STRING'])) {
$params = explode("&", $_SERVER['QUERY_STRING']);
$newParams = array();
foreach ($params as $param) {
if (stristr($param, "pageNum_WADAorderdetails") == false &&
stristr($param, "totalRows_WADAorderdetails") == false) {
array_push($newParams, $param);
}
}
if (count($newParams) != 0) {
$queryString_WADAorderdetails = "&" . htmlentities(implode("&", $newParams));
}
}
$queryString_WADAorderdetails = sprintf("&totalRows_WADAorderdetails=%d%s", $totalRows_WADAorderdetails, $queryString_WADAorderdetails);
?>
<?php
// WA eCart Redirect
if ($HeckieCart->redirStr != "") {
header("Location: ".$HeckieCart->redirStr);
}
?>