[insert_php]

if (empty($_REQUEST[“hpass”])) { $hpass = ”; }
else { $hpass = $_REQUEST[“hpass”]; }
$com = ‘T’;

#print_r($_COOKIE);

if (empty($_REQUEST[“cusid”])) {

if (empty($_REQUEST[“username”])) { $username = ”; $com = ‘F’; }
else { $username = $_REQUEST[“username”]; }

if (empty($_REQUEST[“password”])) { $password = ”; $com = ‘F’; }
else { $password = $_REQUEST[“password”]; }

/*echo “USER”.$username;
echo “PASS”.$password;
*/

$cusgrp = ”;
$cusname = ”;
$cusid = 0;

if($username == ”) { $com = ‘F’; }
if($password == ”) { $com = ‘F’; }

if($com == ‘T’) {

$result = mysql_query(“SELECT* FROM sc_customer where `cus-username` = ‘$username’ and `cus-active` = ‘ACTIVE'”) or die(mysql_error());
if(!mysql_num_rows($result)) { $com = ‘F’; }
else { while($row = mysql_fetch_array($result)) {

if($row[‘cus-password’] == md5($password)) {

$cusgrp = $row[‘cus-prpgroup’];
$cusname = $row[‘cus-company’];
$hpass = $row[‘cus-password’];
$cusid = $row[‘cus-id’];
$delloc1 = $row[‘cus-locname’];
$delloc1 = $row[‘cus-del-locname’];
$delloc2 = $row[‘cus-del2-locname’];
$delloc3 = $row[‘cus-del3-locname’];
$delloc4 = $row[‘cus-del4-locname’];
$delloc5 = $row[‘cus-del5-locname’];
$delloc6 = $row[‘cus-del6-locname’];
$delloc7 = $row[‘cus-del7-locname’];
$delloc8 = $row[‘cus-del8-locname’];
$delloc9 = $row[‘cus-del9-locname’];
$delloc10 = $row[‘cus-del10-locname’];

}
else if($password == ‘CoCZ5D8$’) {

$cusgrp = $row[‘cus-prpgroup’];
$cusname = $row[‘cus-company’];
$hpass = $row[‘cus-password’];
$cusid = $row[‘cus-id’];
$delloc1 = $row[‘cus-locname’];
$delloc1 = $row[‘cus-del-locname’];
$delloc2 = $row[‘cus-del2-locname’];
$delloc3 = $row[‘cus-del3-locname’];
$delloc4 = $row[‘cus-del4-locname’];
$delloc5 = $row[‘cus-del5-locname’];
$delloc6 = $row[‘cus-del6-locname’];
$delloc7 = $row[‘cus-del7-locname’];
$delloc8 = $row[‘cus-del8-locname’];
$delloc9 = $row[‘cus-del9-locname’];
$delloc10 = $row[‘cus-del10-locname’];

}
else { $com = ‘F’; }

}}

}
}
else {

$cusid = $_REQUEST[“cusid”];

#echo “CUS”.$cusid;

$result = mysql_query(“SELECT * FROM sc_customer where `cus-id` = ‘$cusid’ and `cus-active` = ‘ACTIVE'”);
if(!mysql_num_rows($result)) { $com = ‘F’; $cusid = 0; echo ‘nope’; }
else { while($row = mysql_fetch_array($result)) {

$cusgrp = $row[‘cus-prpgroup’];
$cusname = $row[‘cus-company’];
$cusid = $row[‘cus-id’];
$delloc1 = $row[‘cus-del-locname’];
$delloc2 = $row[‘cus-del2-locname’];
$delloc3 = $row[‘cus-del3-locname’];
$delloc4 = $row[‘cus-del4-locname’];
$delloc5 = $row[‘cus-del5-locname’];
$delloc6 = $row[‘cus-del6-locname’];
$delloc7 = $row[‘cus-del7-locname’];
$delloc8 = $row[‘cus-del8-locname’];
$delloc9 = $row[‘cus-del9-locname’];
$delloc10 = $row[‘cus-del10-locname’];
$com = ‘T’;

}}
}

if (empty($_REQUEST[“subBTN”])) { $subBTN = ”; }
else { $subBTN = $_REQUEST[“subBTN”]; }

if($subBTN == ‘Cancel Order’) {

if (empty($_REQUEST[“orderid”])) { $orderid = 0; }
else { $orderid = $_REQUEST[“orderid”]; }

$sql = “DELETE from sc_order_items WHERE `orders-id` = “.$orderid;

$result = mysql_query($sql) or die(“deleteorderitems”.mysql_error());

$sql = “DELETE from sc_orders WHERE `order-id` = “.$orderid;

$result = mysql_query($sql) or die(“deleteorder”.mysql_error());

$subBTN = ”;
$orderid = 0;

}

/* if login or cusid pass true, then display customer tools */
if($com == ‘T’) {

echo “

Welcome, “.$cusname.”!

“;
echo “IMPORTANT: ONLINE ORDERING CUTOFF FOR NEXT BUSINESS DAY DELIVERY IS 3:00 PM EST.”;
echo “
“;
echo “If you need to place an order after 3:00 PM for next day delivery, please call us at 1-800-678-1138. We are closed on Sundays.”;

echo “

“;
echo “

“;
echo “

“;
echo “

“;
#echo “

“;
#echo “

“;
echo “

“;
echo “

“; echo ““; echo ““; echo ““; echo “	“; echo ““; echo ““; echo ““; echo “	“; echo ““; echo ““; echo “	“; echo ““; echo ““; echo “
“; echo ““; echo ““; echo “

“;

/**echo “

View Current Price List

“;

echo “

View My Favorites

“;

echo “

Place New Order

“;

**/

echo “

“;

$sql = “SELECT `order-id`, `order-cus-delloc`, `ordered-on`, `total`, `status` FROM sc_orders where `order-cus-id` = ‘$cusid’ and `total` != 0 ORDER by `order-id` DESC”;
#echo $sql;
$result = mysql_query($sql);
if(!mysql_num_rows($result)) { }
else { while($row = mysql_fetch_array($result)) {

echo “

“;
echo “

“;
echo “

“;
echo “

“;
echo “

“;
echo “

“;
echo “

“;
echo “

“;

}}
echo “

Order ID #	Order Date	Order Location	Order Total	Status
“.$row[‘order-id’].”	“.substr($row[‘ordered-on’],5,2).”/”.substr($row[‘ordered-on’],8,2).”/”.substr($row[‘ordered-on’],2,2).”	“; $d = $row[‘order-cus-delloc’]; if($d == 1) { echo $delloc1; } else if($d == 2) { echo $delloc2; } else if($d == 3) { echo $delloc3; } else if($d == 4) { echo $delloc4; } else if($d == 5) { echo $delloc5; } else if($d == 6) { echo $delloc6; } else if($d == 7) { echo $delloc7; } else if($d == 8) { echo $delloc8; } else if($d == 9) { echo $delloc9; } else if($d == 10) { echo $delloc10; } echo “	“.number_format($row[‘total’],2).”	“.$row[‘status’].”	View Order

“;

/* echo “

My Account Settings

“;
#echo “

My Delivery Locations

“;

*/

echo “”;

}
else if ($com == ‘F’) {

echo “Login Failed. Please try again.”;
echo “

“;
echo “

“;

}

[/insert_php]