= 5.5){ require(DIR_WS_FUNCTIONS . 'database_v2.php'); } else{ require(DIR_WS_FUNCTIONS . 'database.php'); } // make a connection to the database... now tep_db_connect() or die('Unable to connect to database server!'); $database_php_is_loaded=true; $REQUEST_URI_raw = $_SERVER["REQUEST_URI"]; $REQUEST_URI_decode = urldecode($_SERVER["REQUEST_URI"]); function go_to_frontpage(){ $go_to_url = HTTP_SERVER . DIR_WS_CATALOG; header("HTTP/1.1 301 Moved Permanently"); header("Location: ". $go_to_url); tep_exit(); } function intval_GET_POST($valstr){ $accept_max_length = 16; if(strlen($_GET[$valstr])>$accept_max_length){ go_to_frontpage(); } if(strlen($_POST[$valstr])>$accept_max_length){ go_to_frontpage(); } if(strlen($_GET[$valstr])>0){ $_GET[$valstr] = intval($_GET[$valstr]); } if(strlen($_POST[$valstr])>0){ $_POST[$valstr] = intval($_POST[$valstr]); } } function max_lenght_GET_POST($valstr, $max_len){ if(strlen($_GET[$valstr])>$max_len){ //$_GET[$valstr] = substr($_GET[$valstr], 0, $max_len); go_to_frontpage(); } if(strlen($_POST[$valstr])>$max_len){ //$_POST[$valstr] = substr($_POST[$valstr], 0, $max_len); go_to_frontpage(); } } intval_GET_POST("page"); intval_GET_POST("inc_subcat"); intval_GET_POST("categories_id"); intval_GET_POST("manufacturers_id"); intval_GET_POST("x"); intval_GET_POST("y"); max_lenght_GET_POST("products_id", 20); //VIRKER IKKE MED intval() max_lenght_GET_POST("keywords", 40); max_lenght_GET_POST("sort", 8); max_lenght_GET_POST("osCsid", 50); max_lenght_GET_POST("pfrom", 16); max_lenght_GET_POST("pto", 16); max_lenght_GET_POST("dfrom", 24); max_lenght_GET_POST("dto", 24); max_lenght_GET_POST("language", 5); $HTTP_GET_VARS = $_GET; $HTTP_POST_VARS = $_POST; $ipadresse = $_SERVER["REMOTE_ADDR"]; //"213.32.244.214" = chh hjemme //"94.189.33.178" = discoworld //"94.189.33.174" = discoworld appserver 2021 if(($ipadresse == "213.32.244.214") || ($ipadresse == "94.189.33.178") || ($ipadresse == "94.189.33.174")){ $out = ""; foreach ($_SERVER as $key => $val) { $out = $out . "$key = $val\n"; } //mysql_query ("INSERT INTO _debug (debug_url, debug_lines, debug_lines_date_added) VALUES ('".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']."', '24-7 source:".$HTTP_GET_VARS['source']."', NOW())"); //mysql_query ("INSERT INTO _debug (debug_url, debug_lines, debug_lines_date_added) VALUES ('".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']."', '24-7 lenght:". count($_SERVER)."', NOW())"); //mysql_query ("INSERT INTO _debug (debug_url, debug_lines, debug_lines_date_added) VALUES ('".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']."', '24-7 echo:". $out."', NOW())"); //mysql_query ("INSERT INTO _debug (debug_url, debug_lines, debug_lines_date_added) VALUES ('".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']."', '24-7 REQ.URI.raw:".$REQUEST_URI_raw."', NOW())"); //mysql_query ("INSERT INTO _debug (debug_url, debug_lines, debug_lines_date_added) VALUES ('".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']."', '24-7 REQ.URI.dec:".$REQUEST_URI_decode."', NOW())"); } $is_ceo_url = false; //BEGIN: VI FINDER URL-HALEN MED UNIKKE OPLYSNINGER OM SPROG, FIL, pID og cID //DA tail ikke er en del af de variable fter ? sikrer vi at vi kun har _ før tail ikke også fx i 'manufacturers_id' derfor fjrnes variable i temp for at vi kan finde tail. $temp = $REQUEST_URI_decode; if(substr_count($temp, "?")>0){ $z = strpos($temp, "?"); $temp = substr($temp, 0, $z); } $pos_tail_start = strpos(strrev($temp), "_"); $REQUEST_URI_decode_tail = substr($temp, strlen($temp)-($pos_tail_start+1)); //END if(strlen($REQUEST_URI_decode_tail)>5) { $pID_check = false; $cID_check = false; $HTTP_GET_VARS['tail_pID'] = ""; $HTTP_GET_VARS['tail_cID'] = ""; for($n=3; $n0){ $is_ceo_url = true; $HTTP_GET_VARS['language']= "en"; $HTTP_GET_VARS['lan_code']= "end"; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_DEFAULT; $PHP_SELF = FILENAME_DEFAULT; include($HTTP_SERVER_VARS['PHP_SELF']); } if(!$is_ceo_url && substr_count($REQUEST_URI_decode_tail, '_enp')>0){ $is_ceo_url = true; $HTTP_GET_VARS['language']= "en"; $HTTP_GET_VARS['lan_code']= "enp"; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_PRODUCT_INFO; $PHP_SELF = FILENAME_PRODUCT_INFO; include($HTTP_SERVER_VARS['PHP_SELF']); } if(!$is_ceo_url && substr_count($REQUEST_URI_decode_tail, '_dad')>0){ $is_ceo_url = true; $HTTP_GET_VARS['language']= "da"; $HTTP_GET_VARS['lan_code']= "dad"; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_DEFAULT; $PHP_SELF = FILENAME_DEFAULT; include($HTTP_SERVER_VARS['PHP_SELF']); } if(!$is_ceo_url && substr_count($REQUEST_URI_decode_tail, '_dap')>0){ $is_ceo_url = true; $HTTP_GET_VARS['language']= "da"; $HTTP_GET_VARS['lan_code']= "dap"; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_PRODUCT_INFO; $PHP_SELF = FILENAME_PRODUCT_INFO; include($HTTP_SERVER_VARS['PHP_SELF']); } //BEGIN: Check seo_url_manual if(!$is_ceo_url){ //Vi tjekker om vi har en manuel seo url $seo_url = $REQUEST_URI_decode; while(substr($seo_url, 0, 1)=="/"){ $seo_url = substr($seo_url, 1); } for($s=0; $s0){ if(substr_count($REQUEST_URI_decode, '.htm')>0){ $check_this_url = true; } if(substr($check_this_seo_url, strlen($check_this_seo_url)-1, 1)=="/"){ //HVIS MANUAEL SEO URL ENDER PÅ SKRÅSTREG FX ....discoworld.dk/scene/ $check_this_url = true; } } if($check_this_url){ $SQL_SELECT = "SELECT url, seo_url FROM ".TABLE_SEO_URL_MANUAL." WHERE seo_url='".$check_this_seo_url."'"; $rows = tep_db_query($SQL_SELECT); //------------------------------------------------------------------- //NÅR EN SEU URL INDEHOLDER SPECIALLE TEGN UDEN FOR ASCII TEGNSÆT, SÅ KAN VI FÅ FLERE NÆSTENS ENS SEU URL UD. //FX //hagstrom-mora-ii-dreadnought-ce.html = product_info.php?language=en&products_id=154340 //hagström-mora-ii-dreadnought-ce.html = product_info.php?language=se&products_id=154340 //MySQL = kender ikke forskel på o og ö, så vi bruger PHP til at se hvornår vi har den helt rigtige SEO url vi søger. // while($row = tep_db_fetch_array($rows)){ $url = $row[url]; $this_seo_url = $row[seo_url]; if($this_seo_url==$check_this_seo_url){ parse_str(str_replace("?", "&", $url), $output); $HTTP_GET_VARS['language'] = $output['language']; if(substr_count($url, FILENAME_DEFAULT)>0){ $is_ceo_url_manual = true; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_DEFAULT; $PHP_SELF = FILENAME_DEFAULT; include($HTTP_SERVER_VARS['PHP_SELF']); } if(substr_count($url, FILENAME_PRODUCT_INFO)>0){ $is_ceo_url_manual = true; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_PRODUCT_INFO; $PHP_SELF = FILENAME_PRODUCT_INFO; include($HTTP_SERVER_VARS['PHP_SELF']); } } } //--------------------------------------------------------------------- if(!(strlen($url)>0)){ $SQL_SELECT = "SELECT url, seo_url FROM ".TABLE_SEO_URL." WHERE seo_url='".$check_this_seo_url."'"; $rows = tep_db_query($SQL_SELECT); //------------------------------------------------------------------- //NÅR EN SEU URL INDEHOLDER SPECIALLE TEGN UDEN FOR ASCII TEGNSÆT, SÅ KAN VI FÅ FLERE NÆSTENS ENS SEU URL UD. //FX //hagstrom-mora-ii-dreadnought-ce.html = product_info.php?language=en&products_id=154340 //hagström-mora-ii-dreadnought-ce.html = product_info.php?language=se&products_id=154340 //MySQL = kender ikke forskel på o og ö, så vi bruger PHP til at se hvornår vi har den helt rigtige SEO url vi søger. // while($row = tep_db_fetch_array($rows)){ $url = $row[url]; $this_seo_url = $row[seo_url]; if($this_seo_url==$check_this_seo_url){ parse_str(str_replace("?", "&", $url), $output); $HTTP_GET_VARS['language'] = $output['language']; if(substr_count($url, FILENAME_DEFAULT)>0){ $is_ceo_url_archives = true; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_DEFAULT; $PHP_SELF = FILENAME_DEFAULT; include($HTTP_SERVER_VARS['PHP_SELF']); } if(substr_count($url, FILENAME_PRODUCT_INFO)>0){ $is_ceo_url_archives = true; $HTTP_GET_VARS['lan_code']= "d"; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_PRODUCT_INFO; $PHP_SELF = FILENAME_PRODUCT_INFO; include($HTTP_SERVER_VARS['PHP_SELF']); } } } //--------------------------------------------------------------------- } if(!(strlen($url)>0)){ $SQL_SELECT = "SELECT url, seo_url FROM ".TABLE_SEO_URL_ARCHIVES." WHERE seo_url='".$check_this_seo_url."'"; $rows = tep_db_query($SQL_SELECT); //------------------------------------------------------------------- //NÅR EN SEU URL INDEHOLDER SPECIALLE TEGN UDEN FOR ASCII TEGNSÆT, SÅ KAN VI FÅ FLERE NÆSTENS ENS SEU URL UD. //FX //hagstrom-mora-ii-dreadnought-ce.html = product_info.php?language=en&products_id=154340 //hagström-mora-ii-dreadnought-ce.html = product_info.php?language=se&products_id=154340 //MySQL = kender ikke forskel på o og ö, så vi bruger PHP til at se hvornår vi har den helt rigtige SEO url vi søger. // while($row = tep_db_fetch_array($rows)){ $url = $row[url]; $this_seo_url = $row[seo_url]; if($this_seo_url==$check_this_seo_url){ parse_str(str_replace("?", "&", $url), $output); $HTTP_GET_VARS['language'] = $output['language']; if(substr_count($url, FILENAME_DEFAULT)>0){ $is_ceo_url_archives = true; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_DEFAULT; $PHP_SELF = FILENAME_DEFAULT; include($HTTP_SERVER_VARS['PHP_SELF']); } if(substr_count($url, FILENAME_PRODUCT_INFO)>0){ $is_ceo_url_archives = true; $HTTP_GET_VARS['lan_code']= "d"; $HTTP_SERVER_VARS['PHP_SELF'] = FILENAME_PRODUCT_INFO; $PHP_SELF = FILENAME_PRODUCT_INFO; include($HTTP_SERVER_VARS['PHP_SELF']); } } } //--------------------------------------------------------------------- } } //HVIS INTET TYDER PÅ EN CEO URL VI KENDER, SÅ GÅR VI TIL FORSIDEN UDEN YDERLIGERE TJEK. if(!$is_ceo_url && !$is_ceo_url_manual && !$is_ceo_url_archives){ if(!strlen($HTTP_GET_VARS['source'])>0){ $HTTP_GET_VARS['source'] = "default.php"; } $HTTP_SERVER_VARS['PHP_SELF'] = $HTTP_GET_VARS['source']; $PHP_SELF = $HTTP_GET_VARS['source']; if(file_exists($HTTP_SERVER_VARS['PHP_SELF'])){ include($HTTP_SERVER_VARS['PHP_SELF']); } else{ $go_to_url = HTTP_SERVER . DIR_WS_CATALOG; header("HTTP/1.1 301 Moved Permanently"); header("Location: ". $go_to_url); tep_exit(); } //include($HTTP_SERVER_VARS['PHP_SELF']); } //END: Check seo_url_manual ?>