[insert_php]
global $wpdb;
$com = ‘T’;
if (empty($_POST[“subBTN”])) {
$subBTN = ”;
} else {
$subBTN = $_POST[“subBTN”];
}
if ($subBTN == ‘REGISTER’) {
/*using post as it will only come from a form page*/
if (empty($_POST[“Company”])) {
$Company = ”;
} else {
$Company = $_POST[“Company”];
}
if (empty($_POST[“FirstName”])) {
$FirstName = ”;
} else {
$FirstName = $_POST[“FirstName”];
}
if (empty($_POST[“LastName”])) {
$LastName = ”;
} else {
$LastName = $_POST[“LastName”];
}
if (empty($_POST[“Email”])) {
$Email = ”;
} else {
$Email = $_POST[“Email”];
}
if (empty($_POST[“Phone”])) {
$Phone = ”;
} else {
$Phone = $_POST[“Phone”];
}
if (empty($_POST[“DelAddress1″])) {
$DelAddress1 = ”;
} else {
$DelAddress1 = $_POST[“DelAddress1”];
}
if (empty($_POST[“DelAddress2″])) {
$DelAddress2 = ”;
} else {
$DelAddress2 = $_POST[“DelAddress2”];
}
if (empty($_POST[“DelCity”])) {
$DelCity = ”;
} else {
$DelCity = $_POST[“DelCity”];
}
if (empty($_POST[“DelState”])) {
$DelState = ”;
} else {
$DelState = $_POST[“DelState”];
}
if (empty($_POST[“DelZipcode”])) {
$DelZipcode = ”;
} else {
$DelZipcode = $_POST[“DelZipcode”];
}
if (empty($_POST[“BillAddress1″])) {
$BillAddress1 = ”;
} else {
$BillAddress1 = $_POST[“BillAddress1”];
}
if (empty($_POST[“BillAddress2″])) {
$BillAddress2 = ”;
} else {
$BillAddress2 = $_POST[“BillAddress2”];
}
if (empty($_POST[“BillCity”])) {
$BillCity = ”;
} else {
$BillCity = $_POST[“BillCity”];
}
if (empty($_POST[“BillState”])) {
$BillState = ”;
} else {
$BillState = $_POST[“BillState”];
}
if (empty($_POST[“BillZipcode”])) {
$BillZipcode = ”;
} else {
$BillZipcode = $_POST[“BillZipcode”];
}
if (empty($_POST[“UserID”])) {
$UserID = ”;
} else {
$UserID = $_POST[“UserID”];
}
if (empty($_POST[“Password”])) {
$Passw = ”;
} else {
$Passw = $_POST[“Password”];
}
if (empty($_POST[“ConfPassword”])) {
$ConfPassword = ”;
} else {
$ConfPassword = $_POST[“ConfPassword”];
}
$errorlist = ”;
if ($Company == ”) {
if ($LastName == ”) {
$errorlist = $errorlist . “A Company Name or First/Last Name is required
“;
$com = ‘F’;
}
}
if ($Email == ”) {
$errorlist = $errorlist . “An Email Address is required
“;
$com = ‘F’;
} else {
$sql = “SELECT `cus-id` FROM sc_customer where `cus-email` = ‘$Email’ and `cus-active` = ‘ACTIVE'”;
//$result = mysql_query($sql) or die(“emailcheck” . mysql_error());
$result = $wpdb->get_results($sql);
if ($result) {
$errorlist = $errorlist . “Email already exists in the system, cannot create another account for this address.
“;
$com = ‘F’;
$Email = ”;
}
}
if ($Phone == ”) {
$errorlist = $errorlist . “A Phone Number is required
“;
$com = ‘F’;
}
if (strlen($Phone) < 10) {
$errorlist = $errorlist . "A Valid Phone xxx-xxx-xxxx is required
";
$com = 'F';
}
if ($DelAddress1 == '') {
$errorlist = $errorlist . "A Delivery Address is required
";
$com = 'F';
}
if ($DelCity == '') {
$errorlist = $errorlist . "A Delivery City is required
";
$com = 'F';
}
if ($DelState == '') {
$errorlist = $errorlist . "A Delivery State is required
";
$com = 'F';
}
if ($DelZipcode == '') {
$errorlist = $errorlist . "A Delivery Zip Code is required
";
$com = 'F';
}
if ($BillAddress1 == '') {
$errorlist = $errorlist . "A Billing Address is required
";
$com = 'F';
}
if ($BillCity == '') {
$errorlist = $errorlist . "A Billing City is required
";
$com = 'F';
}
if ($BillState == '') {
$errorlist = $errorlist . "A Billing State is required
";
$com = 'F';
}
if ($BillZipcode == '') {
$errorlist = $errorlist . "A Billing Zip Code is required
";
$com = 'F';
}
if ($UserID == '') {
$errorlist = $errorlist . "A User ID is required
";
$com = 'F';
} else if (strpos($UserID, " ") != 0) {
$errorlist = $errorlist . "No spaces allowed in User ID
“;
$com = ‘F’;
} else {
$sql = “SELECT `cus-username` FROM sc_customer where `cus-username` = ‘$UserID’ and `cus-active` = ‘ACTIVE'”;
//$result = mysql_query($sql);
$result = $wpdb->get_results($sql);
if ($result) {
$errorlist = $errorlist . “User ID already exists in the system, please choose another.
“;
$com = ‘F’;
$UserID = ”;
}
}
if ($Passw == ”) {
$errorlist = $errorlist . “A Password is required
“;
$com = ‘F’;
}
if ($Passw != $ConfPassword) {
$errorlist = $errorlist . “The Password and Confirm Password Do Not Match
“;
$com = ‘F’;
}
$hashpass = md5($Passw);
if ($com == ‘T’) {
$sql = “INSERT INTO sc_customer (`cus-company`, `cus-firstname`, `cus-lastname`, `cus-active`, `cus-email`, `cus-phone`, `cus-del-address1`, `cus-del-address2`, `cus-del-city`, `cus-del-state`, `cus-del-zip`, `cus-bill-address1`, `cus-bill-address2`, `cus-bill-city`, `cus-bill-state`, `cus-bill-zip`,`cus-username`, `cus-password`) VALUES (‘$Company’, ‘$FirstName’, ‘$LastName’, ‘NEW’, ‘$Email’, ‘$Phone’, ‘$DelAddress1’, ‘$DelAddress2’, ‘$DelCity’, ‘$DelState’, ‘$DelZipcode’, ‘$BillAddress1’, ‘$BillAddress2’, ‘$BillCity’, ‘$BillState’, ‘$BillZipcode’, ‘$UserID’, ‘$hashpass’)”;
//$result = mysql_query($sql) or die(“addcust” . mysql_error());
$result = $wpdb->query($sql);
$subBTN = ‘COMPLETE’;
$subject = ‘Notification of New Customer Registration’;
$body = ‘New Customer ‘ . $Company . ‘ has registered for access to the online ordering portion of the website. Please see the admin tools for more details’;
$to = ”;
//$result6 = mysql_query(“SELECT `adm-email` FROM wp_sc_admin “);
$result6 = $wpdb->get_results(“SELECT `adm-email` FROM wp_sc_admin”, ARRAY_A);
foreach ($result6 as $row6) {
if ($to == ”) {
$to = $row6[‘adm-email’];
} else {
$to = $to . ‘, ‘ . $row6[‘adm-email’];
}
}
wp_mail($to, $subject, $body);
} else if ($com == ‘F’) {
$subBTN = ”;
}
}
if ($subBTN == ”) {
echo “Welcome to M. Saunders Wholesale Fruit and Produce Online Ordering.
“;
echo “You must be a registered user to access. Your registration will be reviewed and you will receive an email with your status. Please allow 2 business days for site access e-mail to be received. If you do not receive your site access e-mail in 2 business days, please call us at: (603) 692-0005.
“;
if ($errorlist != ”) {
echo “REGISTRATION IS NOT COMPLETE!
The following errors must be fixed:
” . $errorlist;
}
//echo “