Index: /changelog =================================================================== --- /changelog (revision 7561) +++ /changelog (revision 7562) @@ -254,4 +254,5 @@ - Bugfix: unrabattierter Preis wird als "OldPrice" dargestellt und ÃŒberschreibt im Produkt-hinterlegten "alten Preis" - Bugfix: Gutscheinwert wird nicht mehr addiert, sondern vom Warenkorbwert abgezogen +- Bugfix: Probleme beim erstmaligen aktivieren in einem Multiblog behoben - Feature: KundenID in Kundenverwaltung sortierbar - Feature: Wertgutschein als GutscheinProdukt-Möglichkeit integrierbar Index: /controller/wpsg_ShopController.class.php =================================================================== --- /controller/wpsg_ShopController.class.php (revision 7561) +++ /controller/wpsg_ShopController.class.php (revision 7562) @@ -312,4 +312,9 @@ if ($this->get_option('wpsg_page_request') === false) $this->createPage(__('Anfrageliste', 'wpsg'), 'wpsg_page_request', '-1'); } + + if ($this->get_option('wpsg_multiblog_standalone', true) === false) $this->update_option('wpsg_multiblog_standalone', '1', true); + if ($this->get_option('wpsg_customer_start', true) === false) $this->update_option('wpsg_customer_start', '1', true); + if ($this->get_option('wpsg_order_start', true) === false) $this->update_option('wpsg_order_start', '1', true); + if ($this->get_option('wpsg_page_basket') === false) $this->createPage(__('Warenkorb', 'wpsg'), 'wpsg_page_basket', '-1'); if ($this->get_option('wpsg_currency') === false) $this->update_option('wpsg_currency', 'EUR'); Index: /lib/functions.inc.php =================================================================== --- /lib/functions.inc.php (revision 7561) +++ /lib/functions.inc.php (revision 7562) @@ -1699,5 +1699,5 @@ function wpsg_formNounce($controller, $action = '', $arParam = []) { - echo wp_nonce_field(wpsg_getNounce($controller, $action, $arParam)); + return wp_nonce_field(wpsg_getNounce($controller, $action, $arParam)); } Index: /mods/wpsg_mod_abo.class.php =================================================================== --- /mods/wpsg_mod_abo.class.php (revision 7561) +++ /mods/wpsg_mod_abo.class.php (revision 7562) @@ -5,6 +5,5 @@ * @author Daschmi */ - class wpsg_mod_abo extends wpsg_mod_basic - { + class wpsg_mod_abo extends wpsg_mod_basic { var $lizenz = 1; @@ -26,6 +25,5 @@ * Costructor */ - public function __construct() - { + public function __construct() { parent::__construct(); @@ -37,6 +35,5 @@ } // public function __construct() - public function init() - { + public function init() { // Option gab es frÃŒher nicht und wird hier auf den Default Wert korrigiert. @@ -184,6 +181,7 @@ * Übersicht ÃŒber die Kunden im Backend */ - private function be_indexAction() - { + private function be_indexAction() { + + if (isset($_REQUEST['submit-button'])) wpsg_checkNounce('Abo', 'index', ['search' => '1']); $nPerPage = $this->shop->get_option('wpsg_mod_abo_perpage'); @@ -283,6 +281,5 @@ } // private function be_indexAction() - public function dispatch() - { + public function dispatch() { $this->be_indexAction(); Index: /mods/wpsg_mod_kundenverwaltung.class.php =================================================================== --- /mods/wpsg_mod_kundenverwaltung.class.php (revision 7561) +++ /mods/wpsg_mod_kundenverwaltung.class.php (revision 7562) @@ -116,7 +116,5 @@ $this->shop->redirect(WPSG_URL_WP.'wp-admin/admin.php?page=wpsg-Admin&action=module&modul=wpsg_mod_kundenverwaltung'); - } - else if ($_REQUEST['be_ajax'] === 'su' && is_admin()) - { + } else if ($_REQUEST['be_ajax'] === 'su' && is_admin()) { unset($_SESSION['wpsg']); @@ -126,10 +124,10 @@ $this->shop->addBackendMessage(wpsg_translate(__('Sie sind jetzt im Frontend als #1# #2# angemeldet.', 'wpsg'), $kunde_data['vorname'], $kunde_data['name'])); - $this->shop->redirect(WPSG_URL_WP.'wp-admin/admin.php?page=wpsg-Customer&action=edit&edit_id='.$_REQUEST['k_id']); + $this->shop->redirect(wpsg_admin_url('Customer', 'edit', ['edit_id' => $_REQUEST['k_id']])); - } - else if ($_REQUEST['be_ajax'] === 'su_index' && is_admin()) - { - + } else if ($_REQUEST['be_ajax'] === 'su_index' && is_admin()) { + + wpsg_checkNounce('Admin', 'module', ['modul' => 'wpsg_mod_kundenverwaltung', 'be_ajax' => 'su_index', 'k_id' => $_REQUEST['k_id']]); + unset($_SESSION['wpsg']); @@ -322,14 +320,43 @@ } // public function load() - public function dispatch() - { - - if (wpsg_isSizedString($_REQUEST['action'], 'edit')) $this->be_editAction(); - else if (wpsg_isSizedString($_REQUEST['action'], 'add')) $this->be_addAction(); - else if (wpsg_isSizedString($_REQUEST['action'], 'export')) $this->be_exportAction(); - else if (wpsg_isSizedString($_REQUEST['action'], 'import')) $this->be_importAction(); - else if (wpsg_isSizedString($_REQUEST['action'], 'del')) $this->be_delAction(); - else if (wpsg_isSizedString($_REQUEST['action'], 'save')) $this->be_saveAction(); - else { + public function dispatch() { + + if (wpsg_isSizedString($_REQUEST['action'], 'edit')) { + + wpsg_checkNounce('Customer', 'edit', ['edit_id' => $_REQUEST['edit_id']]); + + $this->be_editAction(); + + } else if (wpsg_isSizedString($_REQUEST['action'], 'add')) { + + wpsg_checkNounce('Customer', 'add'); + + $this->be_addAction(); + + } else if (wpsg_isSizedString($_REQUEST['action'], 'export')) { + + wpsg_checkNounce('Customer', 'export'); + + $this->be_exportAction(); + + } else if (wpsg_isSizedString($_REQUEST['action'], 'import')) { + + wpsg_checkNounce('Customer', 'import'); + + $this->be_importAction(); + + } else if (wpsg_isSizedString($_REQUEST['action'], 'del')) { + + wpsg_checkNounce('Customer', 'del', ['edit_id' => $_REQUEST['edit_id']]); + + $this->be_delAction(); + + } else if (wpsg_isSizedString($_REQUEST['action'], 'save')) { + + wpsg_checkNounce('Customer', 'save'); + + $this->be_saveAction(); + + } else { if (isset($_REQUEST['submit-button'])) wpsg_checkNounce('Customer', 'search'); @@ -2092,5 +2119,5 @@ if (isset($_REQUEST['submit_index'])) $this->shop->redirect(WPSG_URL_WP.'wp-admin/admin.php?page=wpsg-Customer&action=index'); - else $this->shop->redirect(WPSG_URL_WP.'wp-admin/admin.php?page=wpsg-Customer&action=edit&edit_id='.$_REQUEST['edit_id']); + else $this->shop->redirect(wpsg_admin_url('Customer', 'edit', ['edit_id' => $_REQUEST['edit_id']])); } // private function be_saveAction() Index: /mods/wpsg_mod_versandarten.class.php =================================================================== --- /mods/wpsg_mod_versandarten.class.php (revision 7561) +++ /mods/wpsg_mod_versandarten.class.php (revision 7562) @@ -156,5 +156,5 @@ } else if ($_REQUEST['field'] == 'vz') { - if (wpsg_checkInput($_REQUEST['value'], WPSG_SANITIZE_INT)) { + if (wpsg_checkInput($_REQUEST['value'], WPSG_SANITIZE_INT, ['allow' => ['0']])) { $this->db->UpdateQuery(WPSG_TBL_VA, array( Index: /views/mods/mod_abo/index.phtml =================================================================== --- /views/mods/mod_abo/index.phtml (revision 7561) +++ /views/mods/mod_abo/index.phtml (revision 7562) @@ -28,5 +28,7 @@
- + + '1']); ?> + Index: /views/mods/mod_kundenverwaltung/edit.phtml =================================================================== --- /views/mods/mod_kundenverwaltung/edit.phtml (revision 7561) +++ /views/mods/mod_kundenverwaltung/edit.phtml (revision 7562) @@ -37,4 +37,6 @@ + +
@@ -116,5 +118,5 @@ 'password')); ?> 'password')); ?> -
+ - + Index: /views/mods/mod_kundenverwaltung/index.phtml =================================================================== --- /views/mods/mod_kundenverwaltung/index.phtml (revision 7561) +++ /views/mods/mod_kundenverwaltung/index.phtml (revision 7562) @@ -18,5 +18,11 @@ - + @@ -29,7 +35,15 @@
    - + view['arData'])) { ?> - +
@@ -160,13 +174,24 @@
- " href="wp-admin/admin.php?page=wpsg-Customer&action=edit&edit_id=id; ?>"> + " href=" $c->getId()]); + + ?>"> | - ')) return false;" title="" href="wp-admin/admin.php?page=wpsg-Customer&action=del&edit_id=id; ?>&noheader=1"> + ')) return false;" title="" href=" $c->id]); + + ?>&noheader=1"> | - - + status !== '-1') { ?> | - + Index: /views/mods/mod_versandarten/list.phtml =================================================================== --- /views/mods/mod_versandarten/list.phtml (revision 7561) +++ /views/mods/mod_versandarten/list.phtml (revision 7562) @@ -4,5 +4,7 @@ * Template fÃŒr die Liste der Versandarten */ - + + $arVzNamen = []; + ?> view['data']) || sizeof($this->view['data']) <= 0) { ?> @@ -88,11 +90,17 @@ - - 0) { ?> - view['arVZ'][$va['vz']]['name']); ?> - - - - + 0) { + + echo wpsg_hspc($this->view['arVZ'][$va['vz']]['name']); + + } else { + + echo __('Alle Versandzonen', 'wpsg'); + + } + + ?> Index: /views/produkttemplates/standard.phtml =================================================================== --- /views/produkttemplates/standard.phtml (revision 7561) +++ /views/produkttemplates/standard.phtml (revision 7562) @@ -323,23 +323,24 @@ jQuery.ajax( { url: 'getURL(wpsg_ShopController::URL_BASKET); ?>', - data: - { + data: { 'wpsg_form_data': jQuery('#wpsg_produktform_getTemplateIndex(); ?>').serialize(), 'wpsg[ajax]': '1', 'wpsg[submit]': '1' }, - success: function(data) - { + success: function(data) { wpsg_refreshBasketWidget(); - + get_option('wpsg_afterinsert') == '2') { ?> - tb_show('', 'getURL(wpsg_ShopController::URL_BASKET_AJAX); ?>&height=500'); + + tb_show('', 'getURL(wpsg_ShopController::URL_BASKET_AJAX); ?>&height=500'); + + jQuery('body').append(data); + + + wpsg_unblockProductTemplate(getTemplateIndex(); ?>); - jQuery('body').append(data); - - }