<?
  // DMZS 03-2003
  // dmz@dmzs.com
  // nasty ugly hack for new user wizard
  // Create User Account
  // Purchase Selected Account type
  // 07-2003 Added paypal instant payment
  // 09-2003 Added BofA payment
  //         EUA & company info from database
  //         made payment gateway selectable and from database list
  // 02-2004 Added bofa in-process-http
  // 02-2004 Finished update_cc to save credit card info with pgp for offline processing of renewal
  // 09-2004 Changed hourly accounts to be expired in 1 hour, not # of seconds left

// need to confirm CC uses address for confirm
// need to add cc RC4 data password check
// need to add cc error codes....
// need to add state dropdown box

  include('admin/include/global.inc');
  include('admin/include/functions.inc');
  include('admin/adodb/adodb.inc.php');

  //$current_url = $_SERVER['PHP_SELF']; 

  $ADODB_FETCH_MODE = ADODB_FETCH_ASSOC;
  $db = ADONewConnection('mysql'); 
  $db->debug = false;
  $db->Connect($database_host, $database_user, $database_pass, $database_db);

  include('admin/include/bofa-inprocess.inc');

  if (isset($IOC_response_code)) {
    $invoice=$IOC_merchant_order_id;
    $query="select * from purchases where invoice='$invoice'";
    $dbpurchase = &$db->Execute($query);
    $nodemac=$dbpurchase->fields['nodemac'];
    $planid=$dbpurchase->fields['planid'];
    $expirebycalendar=$dbpurchase->fields['expirebycalendar'];
    $timeleft=$dbpurchase->fields['timeleft'];
    $totalday=$dbpurchase->fields['totalday'];
    $login=$dbpurchase->fields['login'];
    $password=$dbpurchase->fields['password'];
    $name=$dbpurchase->fields['name'];
    $lastname=$dbpurchase->fields['lastname'];
    $email=$dbpurchase->fields['email'];
    $address=$dbpurchase->fields['address'];
    $city=$dbpurchase->fields['city'];
    $state=$dbpurchase->fields['state'];
    $zip=$dbpurchase->fields['zip'];
    $url=$dbpurchase->fields['url'];
    $description=$dbpurchase->fields['description'];
    $redirect=$dbpurchase->fields['redirect']; 
    $mac=$dbpurchase->fields['mac']; 
    $token=$dbpurchase->fields['token']; 
    $gateway=$dbpurchase->fields['gateway']; 
    $gatewaymac=$dbpurchase->fields['gatewaymac']; 
    $timeout=$dbpurchase->fields['timeout']; 
  }

  // Load in all nocat variables
  $gateway=fromnodename();
  $gatewaymac=fromnodemac();
  if (!$mac) { $mac="b0:b0:b0:b0:b0:b0"; }
  if (!$token) { $token="OFFLINE"; }
  if (!$redirect) { $redirect="OFFLINE"; }
  if (!$timeout) { $timeout="OFFLINE"; }

  // Set initial variables
  if (!$mode) { $mode="newacct"; }
  $datetime = date("Y-m-d H:i:s");
  if (!$invoice) { $invoice=time(); }
  
  // need to add short name for company for use in this script
  $query="select name,url,useragreement from companyinfo";
  $dbcompany = &$db->Execute($query);
  $iwsp_company = $dbcompany->fields['name'];
  $iwsp_url = $dbcompany->fields['url'];
  $iwsp_eua = $dbcompany->fields['useragreement'];

  function loginok($login) {
    global $database_host,$database_user,$database_pass,$database_db;
    $ADODB_FETCH_MODE = ADODB_FETCH_ASSOC;
    $db = ADONewConnection('mysql'); # eg 'mysql' or 'postgres'
    $db->debug = false;
    $db->Connect($database_host, $database_user, $database_pass, $database_db);
    $loginok=1;
    $query = "select login from member where login='".$login."'";
    $dbresults = &$db->Execute($query);
    $loginquery=$dbresults->fields['login'];
    if ($loginquery != "") $loginok=0;
    return $loginok;
  }

  function numaccts() {
    global $database_host,$database_user,$database_pass,$database_db;
    $ADODB_FETCH_MODE = ADODB_FETCH_ASSOC;
    $db = ADONewConnection('mysql'); # eg 'mysql' or 'postgres'
    $db->debug = false;
    $db->Connect($database_host, $database_user, $database_pass, $database_db);
    $dbresults = &$db->Execute("select count(*) from member");
    return $dbresults->fields['count(*)'];
  }

  function validate_email($address) {
    global $database_host,$database_user,$database_pass,$database_db;
    $valid_email=1;
    $parts = explode("@", $address);
    $host= $parts[1] .".";
    if (getmxrr( $host, $mxhosts ) == FALSE && gethostbyname( $host ) == $host ) {
      $valid_email = 0;
    } else {
      $ADODB_FETCH_MODE = ADODB_FETCH_ASSOC;
      $db = ADONewConnection('mysql'); # eg 'mysql' or 'postgres'
      $db->debug = false;
      $db->Connect($database_host, $database_user, $database_pass, $database_db);
      $query="select id from member where email = '$address'";
      $dbresults = &$db->Execute($query);
      if ($dbresults->fields['id'] != "") {
        $valid_email = -1;
      }
    }
    return($valid_email);
  }

  if ($mode==paypalverify) {
    // do loops of refresh stuff...when valid then create..
    if (!$verifycounter) { $verifycounter=0; }
    $purchasesquery="select * from purchases where invoice='$invoice'";
    $dbpurchases = &$db->Execute($purchasesquery);
    $notdone = 1;
    if (($pendingstatus=$dbpurchases->fields['status']) != "Pending") { $notdone=0; }
    if ($verifycounter >= 12) { $notdone=0; }
    while ($notdone) {
      $refreshtimeleft=60-($verifycounter*5);
      if (ereg(".*MSIE.*",$HTTP_SERVER_VARS["HTTP_USER_AGENT"]))
      {
	$verifycounter++;
        # If IE use refresh
        die ("<HTML><head>
              <link REL=\"shortcut icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">
              <link REL=\"icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">
              <title>NoCat PayPal IPN Confirm</title></head>
              <body bgcolor=\"#FFFFFF\" text=\"#000000\" ONLOAD=\"setTimeout('top.hiddenform.submit()',5000)\">
              <FORM NAME=hiddenform ACTION=$PHP_SELF METHOD=post>
              <center><font FACE=\"Verdana\" SIZE=\"-2\">
              <p><a href=\"http://nocat.net\"><img src=\"/images/auth_logo.gif\" width=\"600\" height=\"60\" border=\"0\"></a></p>
              Please Wait<br>Processing PayPal Instant Payment Notification<br>$refreshtimeleft seconds remaining<br>Status: $pendingstatus<p><img src=/images/busy.gif>
              <p><p><p><font size=+1>DO NOT HIT STOP IN YOUR BROWSER WINDOW</font>
              <input type=hidden name=mode value=$mode>
              <input type=hidden name=planid value=$planid>
              <input type=hidden name=login value=$login>
              <input type=hidden name=password value=$password>
              <input type=hidden name=name value=$name>
              <input type=hidden name=lastname value=$lastname>
              <input type=hidden name=email value=$email>
              <input type=hidden name=address value=$address>
              <input type=hidden name=city value=$city>
              <input type=hidden name=state value=$state>
              <input type=hidden name=zip value=$zip>
              <input type=hidden name=url value=$url>
              <input type=hidden name=description value=$description>
              <input type=hidden name=invoice value=$invoice>
              <input type=hidden name=mac value=$mac>
              <input type=hidden name=token value=$token>
              <input type=hidden name=redirect value=$redirect>
              <input type=hidden name=gateway value=$gateway>
              <input type=hidden name=gatewaymac value=$gatewaymac>
              <input type=hidden name=timeout value=$timeout>
              <input type=hidden name=timeleft value=$timeleft>
              <input type=hidden name=expiredate value=$expiredate>
              <input type=hidden name=expirebycalendar value=$expirebycalendar>
              <input type=hidden name=totalday value=$totalday>
              <input type=hidden name=verifycounter value=$verifycounter>
              </FORM>
              </center></BODY></HTML>");
      }
      else
      {
        # if not IE use server push
        $mozilla_browser=1;
        $sep = "---DMZSPayPalWait---";
        if ($verifycounter==0) { 
          header("Content-Type: multipart/x-mixed-replace;boundary=$sep"); 
          print "$sep\n";
        }
        print "Content-Type: text/html\n\n";
        echo "<html><head>";
        echo "<link REL=\"shortcut icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">";
        echo "<link REL=\"icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">";
        echo "<title>NoCat PayPal IPN Confirm</title>";
        echo "</head>";
        echo "<body bgcolor=\"#FFFFFF\" text=\"#000000\">";
        echo "<center><font FACE=\"Verdana\" SIZE=\"-2\">";
        echo "<p><a href=\"http://nocat.net\"><img src=\"/images/auth_logo.gif\" width=\"600\" height=\"60\" border=\"0\"></a></p>";
        echo "Please Wait<br>Processing PayPal Instant Payment Notification<br>$refreshtimeleft seconds remaining<br>Status: $pendingstatus<p><img src=/images/busy.gif>";
	echo "<p><p><p><font size=+1>DO NOT HIT STOP IN YOUR BROWSER WINDOW</font>";
        echo "</center></font></body></html>";
        print "\n$sep\n";
        flush();
	sleep(5);
      }
      $dbpurchases = &$db->Execute($purchasesquery);
      $verifycounter++;
      if (($pendingstatus=$dbpurchases->fields['status']) != "Pending") { $notdone=0; }
      if ($verifycounter >= 12) { $notdone=0; }
    }
    if ($mozilla_browser) { print "Content-Type: text/html\n\n"; }

  }

  if (isset($IOC_response_code)) {
    if ($IOC_response_code==0) {
      //update payment with auth code (IOC_authorization_code, and IOC_authorization_amount)
      $query = "update purchases set payment_status='APPROVED',status='APPROVED',settle_amount='$IOC_authorization_amount',payment_type='CC',payer_email='$email',payer_id='$login',ccauth='$IOC_authorization_code' where invoice='$invoice'";
      $dbresults = &$db->Execute($query);
      $pendingstatus="Completed";
    } else { $mode= "choosepayment"; }
  }

  if ($pendingstatus == "Completed") {
      $query="insert into member (created,login,email,pass,name,lastname,url,timeleft,description,expiredate,expirebycalendar,totalday,active,address,city,state,zip,nodemac,purchasedat,planid,cclastauth) values('$datetime','$login','$email','$password','$name','$lastname','$url','$timeleft','$description','$expiredate','$expirebycalendar','$totalday','1','$address','$city','$state','$zip','$gatewaymac','$gatewaymac','$planid',now())";
      $dbresults = &$db->Execute($query);
      // Insert Group
      $query="insert into network (created,login,network) values('$datetime','$login','NoCat_Wireless_User')";
      $dbresults = &$db->Execute($query); 
      // update member id in purchases
      $query="select id from member where login='$login'";
      $dbresults= &$db->Execute($query);
      $memberid=$dbresults->fields['id'];
      $query = "update purchases set memberid='$memberid' where invoice='$invoice'";
      $dbresults= &$db->Execute($query);
      if ($automaticrenew=="Y") {
        update_cc($memberid,$ecom_payment_card_name,$ecom_payment_card_number,$ecom_payment_card_expdate_month,$ecom_payment_card_expdate_year,$ecom_payment_card_verification);
      } else {
        update_cc($memberid); // update with blank #
      }
      // redirect to logon page...
      // if new account from website, not AP
      if ($nodemac == "b0:b0:b0:b0:b0:b0") {
          die ("<html><head>
          <link REL=\"shortcut icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">
          <link REL=\"icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">
          <title>NoCat New Account Confirm</title>
          </head>
          <body bgcolor=\"#FFFFFF\" text=\"#000000\">
          <center><font FACE=\"Verdana\" SIZE=\"-2\">
          <p><a href=\"http://nocat.net\"><img src=\"/images/auth_logo.gif\" width=\"600\" height=\"60\" border=\"0\"></a></p>
	  Welcome to NoCat Wireless Network. Use your account at any NoCat <a href=\"http://www.nocat.net\">Location</a>
	  </center></body></html>");
       } else {
            die ("<HTML><HEAD>
                <TITLE>NoCat New Account Logon</TITLE>
                <LINK REL=\"shortcut icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">
                <LINK REL=\"icon\" HREF=/images/dmzs.ico TYPE=\"image/x-icon\">
		<noscript>
		<meta http-equiv=\"refresh\" content=\"5; $redirect\">
		</noscript>
		<script language=\"JavaScript\">
		<!--
		function doLoad()
		{
		  setTimeout(\"refresh()\", 5*1000 );
		}
		function refresh()
		{
    		window.location.href = \"$redirect\";
		}
		//-->
		</script>
		<script language=\"JavaScript1.1\">
		<!--
		function refresh()
		{
    		window.location.replace( \"$redirect\" );
		}
		//-->
		</script>
		</HEAD>
                <BODY bgcolor=\"#FFFFFF\" text=\"#000000\" onload=\"doLoad()\">
                <center><font FACE=\"Verdana\" SIZE=\"-2\">
                <p><a href=\"http://nocat.net\"><img src=\"/images/auth_logo.gif\" width=\"600\" height=\"60\" border=\"0\"></a></p>
                Your NoCat Account is now activated. Within 5 seconds you will now be taken back to logon page.<p>
		<p>If this does not work, <a href=\"$redirect\">Click Here</a> to logon
                </center></BODY></HTML>");
	}
    }

?>
<html>
<head>
<link REL="shortcut icon" HREF=/images/dmzs.ico TYPE="image/x-icon">
<link REL="icon" HREF=/images/dmzs.ico TYPE="image/x-icon">
<title>NoCat Service New Account Create</title>
<?  if ($mode!="newacct"): ?>
<SCRIPT LANGUAGE="JavaScript">
function placeFocus() {
  if (document.forms.length > 0) {
    var field = document.forms[0];
    for (i = 0; i < field.length; i++) {
      if ((field.elements[i].type == "text") || (field.elements[i].type == "textarea")) {
        document.forms[0].elements[i].focus();
        break;
      }
    }
  }
}
</SCRIPT>
<? endif; ?>
</head>
<?  
  if ($mode!="newacct") {
    echo "<body bgcolor=\"#FFFFFF\" text=\"#000000\" onload='placeFocus()'>";
  } else {
    echo "<body bgcolor=\"#FFFFFF\" text=\"#000000\">";
  }
?>
<center>
<font FACE="Verdana" SIZE="-2">
<p><a href="http://nocat.net"><img src="/images/auth_logo.gif" width="600" height="60" border="0"></a></p>
<?
  if ($mode==paypalverify):
    switch ($pendingstatus) {
      case "Pending":
        echo "<b>Payment Still Pending. Probably a problem with PayPal. Call NoCat</b><br>";
	$pendingreason=$dbpurchases->fields['paypalpendingreason'];
	$query="select description from paypalpendingreason where reason='$pendingreason'";
	$dbresultspending = &$db->Execute($query);
	echo "Reason from Paypal: ".$dbresultspending->fields['description']."<br>";
        //echo "<a href=\"https://www.nocat.net/newuser.php?mode=paypalverify&planid=$planid&expirebycalendar=$expirebycalendar&totalday=$totalday&timeleft=$timeleft&login=".urlencode($login)."&password=".urlencode($newpass)."&name=".urlencode($name)."&lastname=".urlencode($lastname)."&email=".urlencode($email)."&address=".urlencode($address)."&city=".urlencode($city)."&state=".urlencode($state)."&zip=".urlencode($zip)."&url=".urlencode($url)."&description=".urlencode($description)."&invoice=".urlencode($invoice)."&mac=".urlencode($mac)."&token=".urlencode($token)."&redirect=".urlencode($redirect)."&gateway=".urlencode($gateway)."&gatewaymac=".urlencode($gatewaymac)."&timeout=".urlencode($timeout)."\">Check IPN Status Again</a><p>\n";
        echo "<a href=\"".$PHP_SELF."?mode=paypalverify&planid=$planid&expirebycalendar=$expirebycalendar&totalday=$totalday&timeleft=$timeleft&login=".urlencode($login)."&password=".urlencode($newpass)."&name=".urlencode($name)."&lastname=".urlencode($lastname)."&email=".urlencode($email)."&address=".urlencode($address)."&city=".urlencode($city)."&state=".urlencode($state)."&zip=".urlencode($zip)."&url=".urlencode($url)."&description=".urlencode($description)."&invoice=".urlencode($invoice)."&mac=".urlencode($mac)."&token=".urlencode($token)."&redirect=".urlencode($redirect)."&gateway=".urlencode($gateway)."&gatewaymac=".urlencode($gatewaymac)."&timeout=".urlencode($timeout)."\">Check IPN Status Again</a><p>\n";
	break;
      case "Failed":
	echo "<b>Payment Failed. Please try another payment method</b><br>";
	break;
      case "Denied":
	echo "<b>Payment Denied. Please try another payment method</b><br>";
	break;
    }
    $mode="enterpaypal";
  endif;

  if ($IOC_reject_description) {
    echo "<b>".urldecode($IOC_reject_description)."</b>";
    $invoice=$IOC_merchant_order_id;
    echo "<br><b>Invoice: $invoice canceled</b>\n";
    // update invoice record status to CANCELED
    $query = "update purchases set status='CANCELED',rejdesc='$IOC_reject_description' where invoice='$invoice'";
    $dbcancelpurchase = &$db->Execute($query);
    unset($invoice);
    unset($IOC_reject_description);
    $mode="choosepayment";
  }

  if ($mode=="paypalcanceled" ):
    echo "<b>Invoice: $invoice canceled</b>\n";
    // update invoice record status to CANCELED
    $query = "update purchases set status='CANCELED' where invoice='$invoice'";
    $dbcancelpurchase = &$db->Execute($query);
    unset($invoice);
    $mode="newacct";
  endif;

  if ($mode=="newacctverify"):
    $mode="createuser";
    if (!$planid) { echo "<b><i>Choose a plan</i></b><br>"; $mode="newacct";}
    if ($agree!="on") { echo "<b><i>You need to aggre with Terms & Conditions".$agree."</i></b><br>"; $mode="newacct";}
    else echo "<br>";
  endif;

  if ($mode=="newacct"):
?>
<form method=post action="<? echo $PHP_SELF; ?>">
<input type=hidden name="mode" value="newacctverify">
<table>
<tr>
<td colspan=2>
<font FACE="Verdana" SIZE="-2">NoCat Wireless Plans:&nbsp;
</font>
</td>
</tr>
<tr>
<td height="1" colspan="2"><hr noshade></td>
</tr>
<?
  $query="select id,description,timeframe,lengthtime,price from accounttype where hidden='0' order by timeframe,lengthtime";
  $dbpayments = &$db->Execute($query);
  $color=0;
  while (!$dbpayments->EOF) {
    if ($color % 2 == 0) {
      echo "<tr bgcolor=\"#ddeecc\">";
    } else {
      echo "<tr bgcolor=\"#ccddee\">";
    }
    echo "<td>";
    echo "<input type=\"radio\" name=\"planid\" value=\"".$dbpayments->fields['id']."\"";
    echo ($color==0)?" CHECKED":"";
    echo "></td>"; 
    echo "<td>";
    echo "<font FACE=\"Verdana\" SIZE=\"-2\">";
    echo "&nbsp;$".$dbpayments->fields['price'] . " ";
    switch ($dbpayments->fields['timeframe']) {
      case 0:
        echo "Unlimited";
	break;
      case 1:
	if ($dbpayments->fields['lengthtime'] > 1) {
	  echo $dbpayments->fields['lengthtime'] . " Hours";
	} else { echo "Hourly"; }
	break;
      case 2:
	if ($dbpayments->fields['lengthtime'] > 1) {
	  echo $dbpayments->fields['lengthtime'] . " Days";
	} else { echo "Daily"; }
	break;
      case 3:
	if ($dbpayments->fields['lengthtime'] > 1) {
	  echo $dbpayments->fields['lengthtime'] . " Weeks";
	} else { echo "Weekly"; }
	break;
      case 4:
	if ($dbpayments->fields['lengthtime'] > 1) {
	  echo $dbpayments->fields['lengthtime'] . " Months";
	} else { echo "Monthly"; }
	break;
      case 5:
	if ($dbpayments->fields['lengthtime'] > 1) {
	  echo $dbpayments->fields['lengthtime'] . " Quarters";
	} else { echo "Quarterly"; }
	break;
      case 6:
	if ($dbpayments->fields['lengthtime'] > 1) {
	  echo $dbpayments->fields['lengthtime'] . " Years";
	} else { echo "Yearly"; }
	break;
    }
    echo " NoCat Wireless Account";
    echo "</font>";
    echo "</td>";
    echo "</tr>";
    echo "<tr>";
    echo "<td></td>";
    echo "<td >";
    echo "<font FACE=\"Verdana\" SIZE=\"-2\">";
    echo $dbpayments->fields['description'];
    echo "</font>";
    //echo "<br><font size=-2>Paypal Surcharge: $".$dbpayments->fields['surcharge']."</font>";
    echo "</td>";
    echo "</tr>";
    $color++;
    $dbpayments->MoveNext();
  }
?>
<tr>
<td height="1" colspan="2"><hr noshade></td>
</tr>
<tr>
<td colspan="2"><font FACE="Verdana" SIZE="-2">Please read the terms and conditions and check the box before continuing.</font></td>
</tr>
<tr>
<td colspan="2">
<font FACE="Verdana" SIZE="-2">
<textarea rows="5" cols="70">
<? echo $iwsp_eua; ?>
</textarea>
</font>
</td>
</tr>
<tr>
<td colspan="2">
<font FACE="Verdana" SIZE="-2">
<input type="checkbox" name="agree">&nbsp;&nbsp;I agree with the Terms and Conditions.
</font>
</td>
</tr>
<tr>
<td height="1" colspan="2"><hr noshade></td>
</tr>
</table>
<b>Enter User/Payment Information</b>
<input type=submit value="Next">
<input type="hidden" name="invoice" value="<? echo $invoice; ?>">
<input type="hidden" name="mac" value="<? echo $mac; ?>">
<input type="hidden" name="token" value="<? echo $token; ?>">
<input type="hidden" name="redirect" value="<? echo $redirect; ?>">
<input type="hidden" name="gateway" value="<? echo $gateway; ?>">
<input type="hidden" name="gatewaymac" value="<? echo $gatewaymac; ?>">
<input type="hidden" name="timeout" value="<? echo $timeout; ?>">
</form>
</font>
<p><font FACE="Verdana" SIZE="-3"><a href="javascript:var w = window.open('privacy.html','popup','width=420,height=150')">NoCat Privacy Policy</font>
<?
  endif;
  if ($mode=="verifyuser"):
    // check if acct exists. if exists & not active confirm user/pass
    // if exists and no confirm, go back to createuser
    // set mode to checkcc
    //$mode="surepayenterpayment"; // if using surepay credit card
    //$mode="enterpaypal";
    $mode="choosepayment";
    if (!$login) { echo "<b><i>Enter Login ID</i></b><br>"; $mode="createuser";}
    if (strlen($login) < 3) { echo "<b><i>Login ID needs to be more than 3 characters</i></b><br>"; $mode="createuser"; }
    if (!loginok($login)) { echo "<b><i>Login ID Already in use, Please enter another</i></b><br>"; $mode="createuser";}
    if (!$password) { echo "<b><i>Enter Password</i></b><br>"; $mode="createuser";}
    if (strlen($password) < 3) { echo "<b><i>Password needs to be more than 3 characters</i></b><br>"; $mode="createuser"; }
    if (!$pwverify) { echo "<b><i>Enter Verify Password</i></b><br>"; $mode="createuser";}
    if ($password != $pwverify) { echo "<b><i>Entered Passwords do not match</i></b><br>"; $mode="createuser";}
    if (!$name) { echo "<b><i>Enter Your First Name</i></b><br>"; $mode="createuser";}
    if (!$lastname) { echo "<b><i>Enter Your Last Name</i></b><br>"; $mode="createuser";}
    if (!$email) { echo "<b><i>Enter Email Address</i></b><br>"; $mode="createuser";}
    if (!($email_stats=validate_email($email))) {echo "<b><i>Enter Valid Email Address</i></b><br>"; $mode="createuser"; }
    if ($email_stats == -1) {echo "<b><i>Email Address Already in use, choose another</i></b><br>"; $mode="createuser"; }
    if (!$address) { echo "<b><i>Enter Your Address</i></b><br>"; $mode="createuser";}
    if (!$city) { echo "<b><i>Enter City</i></b><br>"; $mode="createuser";}
    if (!$state) { echo "<b><i>Enter State</i></b><br>"; $mode="createuser";}
    if (!$zip) { echo "<b><i>Enter Zipcode</i></b><br>"; $mode="createuser";}
    if ($mode == "createuser") echo "<br>";
  endif;
  if ($mode=="createuser"):
?>
<form method=post action="<? echo $PHP_SELF; ?>">
<table>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>Login</b>:</font></td>
<td align=left><input type=text name=login size=20 maxlength=255 value="<?echo $login;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>Password</b>:</font></td>
<td align=left><input type=password name=password size=20 maxlength=255 value="<?echo $password;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>Password verify</b>:</font></td>
<td align=left><input type=password name=pwverify size=20 maxlength=255 value="<?echo $pwverify;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>First Name</b>:</font></td>
<td align=left><input type=text name=name size=20 maxlength=255 value="<?echo $name;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>Last Name</b>:</font></td>
<td align=left><input type=text name=lastname size=20 maxlength=255 value="<?echo $lastname;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>Email</b>:</font></td>
<td align=left><input type=text name=email size=20 maxlength=255 value="<?echo $email;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>Address</b>:</font></td>
<td align=left><input type=text name=address size=20 maxlength=255 value="<?echo $address;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>City</b>:</font></td>
<td align=left><input type=text name=city size=20 maxlength=255 value="<?echo $city;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>State</b>:</font></td>
<td align=left><input type=text name=state size=20 maxlength=255 value="<?echo $state;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2"><b>Zip</b>:</font></td>
<td align=left><input type=text name=zip size=20 maxlength=255 value="<?echo $zip;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">URL:</font></td>
<td align=left><input type=text name=url size=20 maxlength=255 value="<?echo $url;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Notes<br>(contact #, ...):</font></td>
<td align=left><textarea name=description cols=35 rows=5 wrap=virtual><?echo $description;?></textarea></td></tr>
</table>
<b>Enter Payment Information</b>
<input type=submit value="Next">
<input type="hidden" name="mode" value="verifyuser">
<input type="hidden" name="agree" value="on">
<input type="hidden" name="planid" value="<?echo $planid;?>">
<input type="hidden" name="invoice" value="<? echo $invoice; ?>">
<input type="hidden" name="mac" value="<? echo $mac; ?>">
<input type="hidden" name="token" value="<? echo $token; ?>">
<input type="hidden" name="redirect" value="<? echo $redirect; ?>">
<input type="hidden" name="gateway" value="<? echo $gateway; ?>">
<input type="hidden" name="gatewaymac" value="<? echo $gatewaymac; ?>">
<input type="hidden" name="timeout" value="<? echo $timeout; ?>">
</form>
<?
  endif;

  // Set timeleft, totalday, expiredate & expirebycalendar for new accts -- by planid
  // -- expirebycalendar values:
  //    -99 never expire
  //    0 expire on time left
  //    1 expire on expiredate specified
  //    2 expire after # days specified
  //    3 expire by # days, but convered to expiredate specified
  //    4 expire by # hours
  //    5 expire by # hours, but converted to expiredate specified
  // -- timeframe values:
  //    0 unlimited
  //    1 hour
  //    2 day
  //    3 week
  //    4 month
  //    5 quarter
  //    6 year
  // need to fix so it goes by calendar days from date of purchase...not this hack
  if (($mode == "surepayverifycredit") || ($mode == "verifypaypal") || ($mode == "enterpaypal") || ($mode == "choosepayment")) {
    $query = "select timeframe,lengthtime from accounttype where id='$planid'";
    $dbpayment = &$db->Execute($query);
    switch ($dbpayment->fields['timeframe']) {
      case 0:
 	$expirebycalendar = -99;
        break;
      case 1:
 	$expirebycalendar = 4;
	$timeleft = $dbpayment->fields['lengthtime'];
        break;
      case 2:
 	$expirebycalendar = 2;
	$totalday = $dbpayment->fields['lengthtime'];
        break;
      case 3:
 	$expirebycalendar = 2;
	$totalday = 7 * $dbpayment->fields['lengthtime'];
        break;
      case 4:
 	$expirebycalendar = 2;
	$totalday = 30 * $dbpayment->fields['lengthtime'];
        break;
      case 5:
 	$expirebycalendar = 2;
	$totalday = 90 * $dbpayment->fields['lengthtime'];
        break;
      case 6:
 	$expirebycalendar = 2;
	$totalday = 365 * $dbpayment->fields['lengthtime'];
        break;
    }
  }

  if ($mode=="choosepayment"):
?>
<form method=post action="<? echo $PHP_SELF; ?>">
<table>
<tr>
<td colspan=2>
<font FACE="Verdana" SIZE="-2">NoCat Wireless Payment Options:&nbsp;
</font>
</td>
</tr>
<tr>
<td height="1" colspan="2"><hr noshade></td>
</tr>
<?
    $query="select id,description,surcharge,surcharge_percent from paymenttype where hidden='0' order by name";
    $paymentgateway = &$db->Execute($query);
    $query = "select timeframe,lengthtime,description,price from accounttype where id='$planid'";
    $dbpayments = &$db->Execute($query);
    $color=0;
    while (!$paymentgateway->EOF) {
      if ($color % 2 == 0) {
        echo "<tr bgcolor=\"#ddeecc\">";
      } else {
        echo "<tr bgcolor=\"#ccddee\">";
      }
      echo "<td>";
      echo "<input type=\"radio\" name=\"paymentid\" value=\"".$paymentgateway->fields['id']."\"";
      echo ($color==0)?" CHECKED":"";
      echo "></td>"; 
      echo "<td>";
      echo "<font FACE=\"Verdana\" SIZE=\"-2\">";
      echo "&nbsp;".$paymentgateway->fields['description'] . " ";
      echo "| Surcharges: " . $paymentgateway->fields['surcharge_percent'] . '% + ' . $paymentgateway->fields['surcharge'];
      echo "</font>";
      echo "</td></tr>";
      echo "<tr><td>&nbsp;</td><td>";
      echo "<font FACE=\"Verdana\" SIZE=\"-2\">";
      $totalprice=sprintf("%01.2f",((($paymentgateway->fields['surcharge_percent']/100)+1) * $dbpayments->fields['price']) + $paymentgateway->fields['surcharge']);
      echo $dbpayments->fields['description'] . "<br> ($" . $dbpayments->fields['price'] ." * ".$paymentgateway->fields['surcharge_percent']."% ) + ".$paymentgateway->fields['surcharge']." = $".$totalprice;
      echo "</font></td></tr>";
      $color++;
      $paymentgateway->MoveNext();
    }
?>
<tr>
<td height="1" colspan="2"><hr noshade></td>
</tr>
</table>
<b>Pay Invoice:</b>
<input type=submit value="Next">
<input type="hidden" name="mode" value="payinvoice">
<input type="hidden" name="planid" value="<?echo $planid;?>">
<input type="hidden" name="agree" value="on">
<input type="hidden" name="invoice" value="<? echo $invoice; ?>">
<input type="hidden" name="expirebycalendar" value="<?echo $expirebycalendar;?>">
<input type="hidden" name="timeleft" value="<?echo $timeleft;?>">
<input type="hidden" name="totalday" value="<?echo $totalday;?>">
<input type="hidden" name="login" value="<?echo $login;?>">
<input type="hidden" name="password" value="<?echo $password;?>">
<input type="hidden" name="name" value="<?echo $name;?>">
<input type="hidden" name="lastname" value="<?echo $lastname;?>">
<input type="hidden" name="email" value="<?echo $email;?>">
<input type="hidden" name="address" value="<?echo $address;?>">
<input type="hidden" name="city" value="<?echo $city;?>">
<input type="hidden" name="state" value="<?echo $state;?>">
<input type="hidden" name="zip" value="<?echo $zip;?>">
<input type="hidden" name="url" value="<?echo $url;?>">
<input type="hidden" name="description" value="<?echo $description;?>">
<input type="hidden" name="mac" value="<? echo $mac; ?>">
<input type="hidden" name="token" value="<? echo $token; ?>">
<input type="hidden" name="redirect" value="<? echo $redirect; ?>">
<input type="hidden" name="gateway" value="<? echo $gateway; ?>">
<input type="hidden" name="gatewaymac" value="<? echo $gatewaymac; ?>">
<input type="hidden" name="timeout" value="<? echo $timeout; ?>">
</form>
</font>
 </table>
<?
  endif;

  if ($mode=="surepayverifycredit"):
  $quantity='1';
  $tax='0.00';
  $mode="logon";
  if (!$ccnumber) { echo "<b><i>Enter Credit Card #</i></b><br>"; $mode="surepayenterpayment";}
  if (!$expiremonth) { echo "<b><i>Enter Expiration Month</i></b><br>"; $mode="surepayenterpayment";}
  if (!$expireyear) { echo "<b><i>Enter Expiration Year</i></b><br>"; $mode="surepayenterpayment";}
  ini_set('max_execution_time','120');
  include('admin/include/sausurepay.php');
  //$ssp = new sausp(false,'19796','dmz5ccp455');
  $ssp = new sausp(false,'1001','password');
  if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  $ordernum = numaccts()+1;
  $auth = $ssp->add_auth(
    array(
      'ordernumber'   => $ordernum,
      'ecommerce'	=> 'true',
      'ecommercecode'	=> '07',
      'ipaddress'	=> $REMOTE_ADDR,
      'shippingcost'	=> '0.00USD',
      'taxamount'	=> '0.00USD',
      'referringurl'	=> $HTTP_REFERER,
      'browsertype'	=> $HTTP_USER_AGENT
    )
  );
  if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  $ssp->add_shipping_address(
     $auth,
     array(
       'fullname' => $name,
       'address1' => $address,
       'address2' => 'NO',
       'city'     => $city,
       'state'    => $state,
       'zip'      => $zip,
       'country'  => 'NO',
       'phone'    => 'NO',
       'email'    => $email
     )
  );
  if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  $ccmonstr=$expiremonth."/".$expireyear;
  $creditcard = $ssp->add_creditcard(
     $auth,
     $ccnumber,
     $ccmonstr,
     $cvv2code,
     '0' 
  );
  if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  $ssp->add_billing_address(
     $creditcard,
     array(
       'fullname' => $name,
       'address1' => $address,
       'address2' => 'NO',
       'city'     => $city,
       'state'    => $state,
       'zip'      => $zip,
       'country'  => 'NO',
       'phone'    => 'NO',
       'email'    => $email
     )
  );
  if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  $item = $ssp->add_lineitem (
     $auth,
     $quantity,
     $sku,
     $descr,
     $cost,
     $tax
   );
  if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  // TODO add cafe user at
  //$ssp->add_option($item,'purchasedat',$cafe);
  //if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  $ssp->prepare_request();
  if ($ssp->err) { echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  $ssp->submit_request();
  if ($ssp->err) {  echo "<b><i>".$ssp->err."</i></b><br>";  $mode="surepayenterpayment";}
  $responsecount = $ssp->parse_response();
  if ($ssp->err) {  echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  if (!$responsecount) { echo "<b><i>CC Verification Error</i></b><br>"; $mode="surepayenterpayment";}
  $auths = $ssp->auths();
  if ($ssp->err) {  echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  //list($key,$order)=each($auths[0]);
  while (list($key,$order)=each($auths)) {
  //echo "<p>Response $key - Ordernumber <b>$order</b><br>\n";
  //echo "Transaction id: <b>".($ssp->auth_trans_id($order))."</b><BR>\n";
  //echo "Authorization status: <b>" . $ssp->auth_status($order) . " </b> --> ";
  //if ($ssp->auth_status($order) == 'AUTH') echo 'Successfull authorized';
  //elseif ($ssp->auth_status($order) == 'DCL') echo 'Declined';
  //elseif ($ssp->auth_status($order) == 'REF') echo 'Refered (NOT authorized!)';
  //elseif ($ssp->auth_status($order) == 'ERR') echo 'An error occured while processing';
  //else echo 'Unknown or no status type (probably failure)';
  //echo "<br>\n";
  //echo "Authcode: <b>" . $ssp->auth_authcode($order) . "</b><br>\n";
  //echo "cvv2result: <b>" . $ssp->auth_cvv2result($order) . "</b><br>\n";
  //echo "avs: <b>" . $ssp->auth_avs($order) . " </b><br>\n";
  //echo "failure: <b>" . $ssp->auth_failure($order) . "</b><br>\n";
  //echo "error text: <b>" . $ssp->auth_text($order) . "</b></p>\n";
  if ($ssp->auth_failure($order)) { echo "<b><i>".$ssp->auth_text($order)."</b></i><br>"; $mode="surepayenterpayment";}
  //if ($ssp->err) {  echo "<b><i>".$ssp->err."</i></b><br>"; $mode="surepayenterpayment";}
  }
  unset($ssp);

  if ($mode == "surepayenterpayment") echo "<br>";
  else {
    // store CC encrypted in db and create account information (clean input)
    // TODO have access code....
    $newpass = nocat_crypt($password);
    $query="insert into member (created,login,email,pass,name,lastname,url,description,expiredate,expirebycalendar,totalday,redirect,nodemac,purchasedat) values('$datetime','$login','$email','$newpass','$name','$lastname','$url','$timeleft','$description','$expiredate','$expirebycalendar','$totalday','$redirect','$gatewaymac','$gatewaymac')";
    //$dbresults = &$db->Execute($query);
    // Insert Group
    $query="insert into network (created,login,network) values('$datetime','$login','Nocat_Wireless_User')";
    //$dbresults = &$db->Execute($query); 
  }
  endif;

  if ($mode=="surepayenterpayment"):
?>
<form method=post action="<? echo $PHP_SELF; ?>">
<input type=hidden name="mode" value="surepayverifycredit">
<input type=hidden name="agree" value="on">
<input type=hidden name="planid" value="<?echo $planid;?>">
<input type=hidden name="expirebycalendar" value="<?echo $expirebycalendar;?>">
<input type=hidden name="timeleft" value="<?echo $timeleft;?>">
<input type=hidden name="totalday" value="<?echo $totalday;?>">
<input type=hidden name="login" value="<?echo $login;?>">
<input type=hidden name="password" value="<?echo $password;?>">
<input type=hidden name="name" value="<?echo $name;?>">
<input type=hidden name="lastname" value="<?echo $lastname;?>">
<input type=hidden name="email" value="<?echo $email;?>">
<input type=hidden name="address" value="<?echo $address;?>">
<input type=hidden name="city" value="<?echo $city;?>">
<input type=hidden name="state" value="<?echo $state;?>">
<input type=hidden name="zip" value="<?echo $zip;?>">
<input type=hidden name="url" value="<?echo $url;?>">
<input type=hidden name="description" value="<?echo $description;?>">
<table>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Credit Card Type:</font></td>
<td align=left><select name=cctype><option value=5 SELECTED>Master Card</option><option value=10>Visa</option></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">CC Number:</font></td>
<td align=left><input type=text name=ccnumber size=20 maxlength=255 value="<?echo $ccnumber;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Expire Month:</font></td>
<td align=left><input type=text name=expiremonth size=20 maxlength=255 value="<?echo $expiremonth;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Expire Year:</font></td>
<td align=left><input type=text name=expireyear size=20 maxlength=255 value="<?echo $expireyear;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">CC Back Panel Code:</font></td>
<td align=left><input type=text name=cvv2code size=20 maxlength=255 value="<?echo $cvv2code;?>"></td></tr>
</table>
<b>Purchase Account</b>
<input type=submit value="Purchase">
<input type="hidden" name="invoice" value="<? echo $invoice; ?>">
<input type="hidden" name="mac" value="<? echo $mac; ?>">
<input type="hidden" name="token" value="<? echo $token; ?>">
<input type="hidden" name="redirect" value="<? echo $redirect; ?>">
<input type="hidden" name="gateway" value="<? echo $gateway; ?>">
<input type="hidden" name="gatewaymac" value="<? echo $gatewaymac; ?>">
<input type="hidden" name="timeout" value="<? echo $timeout; ?>">
</form>
<?
  endif;

  //if ($mode=="enterpaypal"):
  if ($mode=="payinvoice"):
     // Create inactive account/payment, display 'invoice' with paypal buynow button.
     // success will activate account in background and send to newuser page that will test/refresh/test/.. until acct activated 
     //   then redirect to logon page (prepopulated...refresh & authed..)
     // failure will send to newuser page that will confirm user acct is inactive & go to 'new account' page

     $newpass = nocat_crypt($password);

     $query = "select timeframe,lengthtime,description,price from accounttype where id='$planid'";
     $dbpayments = &$db->Execute($query);

     $query="select name,description,account,surcharge,surcharge_percent,notify,return_ok,return_cancel from paymenttype where id='$paymentid'";
     $paymentgateway = &$db->Execute($query);

     $query="select id from purchases where invoice='$invoice'";
     $dbprepurchase = &$db->Execute($query);
     if ($dbprepurchase->fields['id']) {
       $query="update purchases set name='$login',nodemac='$gatewaymac',status='Pending' where invoice='$invoice'";
     } else {
       $query="insert into purchases (invoice,nodemac,planid, expirebycalendar,timeleft,totalday,login,password,name,lastname,email,address,city,state,zip,url,description,redirect,mac,token,gateway,gatewaymac,timeout) values('$invoice','$gatewaymac','$planid','$expirebycalendar','$timeleft','$totalday','$login','$newpass','$name','$lastname','$email','$address','$city','$state','$zip','$url','$description','$redirect','$mac','$token','$gateway','$gatewaymac','$timeout')";
     }
     $dbpurchases = &$db->Execute($query);

     echo "<font FACE=\"Verdana\" SIZE=\"4\"><b>Invoice: ".$invoice."</b></font>";

     echo "<table width=500 border=1>";
     echo "<tr><td width=80% colspan=2><font FACE=\"Verdana\" SIZE=\"2\">";
     echo "<b>Account:</b> " . $login . "<br>\n";
     echo "<b>Email:</b> " . $email . "<br>\n";
     echo "<b>Address:</b> " . $address . "<br>\n";
     echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b> " . $city . ", ".$state."&nbsp;&nbsp;".$zip."<br>\n";
     if ($url) {echo "<b>URL:</b> " . $url . "<br>\n"; }
     if ($description) {echo "<b>Notes:</b> " . $description . "<br>\n"; }
     echo "</font></td></tr>";
     echo "<tr><td width=80%><font FACE=\"Verdana\" SIZE=\"2\"><b>";
     switch ($dbpayments->fields['timeframe']) {
       case 0:
         echo "Unlimited";
	 $paymenttype="UNLIMITED";
	 break;
       case 1:
	 if ($dbpayments->fields['lengthtime'] > 1) {
	   echo $dbpayments->fields['lengthtime'] . " Hours";
	 } else { echo "Hourly"; }
	 $paymenttype="HOURLY";
	 break;
       case 2:
	 if ($dbpayments->fields['lengthtime'] > 1) {
	   echo $dbpayments->fields['lengthtime'] . " Days";
	 } else { echo "Daily"; }
	 $paymenttype="DAILY";
	 break;
       case 3:
	 if ($dbpayments->fields['lengthtime'] > 1) {
	   echo $dbpayments->fields['lengthtime'] . " Weeks";
	 } else { echo "Weekly"; }
	 $paymenttype="WEEKLY";
	 break;
       case 4:
	 if ($dbpayments->fields['lengthtime'] > 1) {
	   echo $dbpayments->fields['lengthtime'] . " Months";
	 } else { echo "Monthly"; }
	 $paymenttype="MONTHLY";
	 break;
       case 5:
	 if ($dbpayments->fields['lengthtime'] > 1) {
	  echo $dbpayments->fields['lengthtime'] . " Quarters";
	 } else { echo "Quarterly"; }
	 $paymenttype="QUARTERLY";
	 break;
       case 6:
	 if ($dbpayments->fields['lengthtime'] > 1) {
	   echo $dbpayments->fields['lengthtime'] . " Years";
	 } else { echo "Yearly"; }
	 $paymenttype="YEARLY";
	 break;
      }
     $surcharge=sprintf("%01.2f",(($paymentgateway->fields['surcharge_percent']/100) * $dbpayments->fields['price']) + $paymentgateway->fields['surcharge']);
     $price=sprintf("%01.2f",$dbpayments->fields['price']);
     $total=sprintf("%01.2f",$price+$surcharge);

     echo " NoCat Wireless Account</b></font>";
     echo "<br><font FACE=\"Verdana\" SIZE=\"1\">".$dbpayments->fields['description'];
     echo "</font></td>";
     echo "<td><font FACE=\"Verdana\" SIZE=\"2\">$".$price . "</font></td></tr>\n";
     echo "<tr><td width=80%><font FACE=\"Verdana\" SIZE=\"2\">".$paymentgateway->fields['description']." Surcharge</font></td><td><font FACE=\"Verdana\" SIZE=\"2\">$".$surcharge."</font></td></tr>\n";
     echo "<tr><td align=right width=80%><font FACE=\"Verdana\" SIZE=\"2\">Total</font></td><td><font FACE=\"Verdana\" SIZE=\"2\">$".$total."</font></td></tr>";
     echo "</table>\n";

     switch ($paymentgateway->fields['name']) {
       case "paypal":
         echo "<form action=\"https://www.paypal.com/cgi-bin/webscr\" method=\"post\">\n";
         echo "<input type=\"hidden\" name=\"cmd\" value=\"_xclick\">\n";
         echo "<input type=\"hidden\" name=\"business\" value=\"".$paymentgateway->fields['account']."\">\n";
         echo "<input type=\"hidden\" name=\"invoice\" value=\"".$invoice."\">\n";
         echo "<input type=\"hidden\" name=\"item_name\" value=\"NoCat-".$dbpayments->fields['lengthtime'].$paymenttype."-ACCT\">\n";
         echo "<input type=\"hidden\" name=\"item_number\" value=\"".$planid."\">\n";
         echo "<input type=\"hidden\" name=\"amount\" value=\"".$total."\">\n";
         echo "<input type=\"hidden\" name=\"no_shipping\" value=\"1\">\n";
         echo "<input type=\"hidden\" name=\"notify_url\" value=\"".$paymentgateway->fields['notify']."\">\n";
         echo "<input type=\"hidden\" name=\"return\" value=\"".$paymentgateway->fields['return_ok']."&planid=$planid&expirebycalendar=$expirebycalendar&totalday=$totalday&timeleft=$timeleft&login=".urlencode($login)."&password=".urlencode($newpass)."&name=".urlencode($name)."&lastname=".urlencode($lastname)."&email=".urlencode($email)."&address=".urlencode($address)."&city=".urlencode($city)."&state=".urlencode($state)."&zip=".urlencode($zip)."&url=".urlencode($url)."&description=".urlencode($description)."&invoice=".urlencode($invoice)."&mac=".urlencode($mac)."&token=".urlencode($token)."&redirect=".urlencode($redirect)."&gateway=".urlencode($gateway)."&gatewaymac=".urlencode($gatewaymac)."&timeout=".urlencode($timeout)."\">\n";
         echo "<input type=\"hidden\" name=\"cancel_return\" value=\"".$paymentgateway->fields['return_cancel']."&invoice=".urlencode($invoice)."&mac=".urlencode($mac)."&token=".urlencode($token)."&redirect=".urlencode($redirect)."&gateway=".urlencode($gateway)."&gatewaymac=".urlencode($gatewaymac)."&timeout=".urlencode($timeout)."\">\n";
         echo "<input type=\"hidden\" name=\"no_note\" value=\"1\">\n";
         echo "<input type=\"hidden\" name=\"currency_code\" value=\"USD\">\n";
         echo "<table><tr><td><input type=\"hidden\" name=\"on0\" value=\"memberid\"><font FACE=\"Verdana\" SIZE=\"2\">PayPal memberid</font></td><td><input type=\"text\" name=\"os0\" maxlength=\"200\"></td></tr></table><input type=\"image\" src=\"https://www.paypal.com/images/x-click-but01.gif\" border=\"0\" name=\"submit\" alt=\"Make payments with PayPal - it's fast, free and secure!\">\n";
         echo "<font color=red size=-2>Press only one time!</font>\n";
        break;
       case "bofa":
         // Use the next line if you are using http redirect w/bofa and not using useradmin (purchase) + newuser with same company, or want to just test
         //echo "<form name=\"PaymentInfo\" action=\"https://cart.bamart.com/payment.mart\" method=\"post\">\n";
         //echo "<form name=\"PaymentInfo\" action=\"https://cart.bamart.com/debug/payment.mart\" method=\"post\">\n";

         // use next 2 lines if using http-in-process w/bofa
         echo "<form name=\"PaymentInfo\" action=\""."https://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']."\" method=\"post\">\n";
         echo "<input type=\"hidden\" name=\"mode\" value=\"bofainprocesshttp\">\n";
         echo "<input type=\"hidden\" name=\"ioc_merchant_id\" value=\"NoCat\">\n";
         echo "<input type=\"hidden\" name=\"ioc_merchant_shopper_id\" value=\"".urlencode($login)."\">\n";
         echo "<input type=\"hidden\" name=\"ioc_merchant_order_id\" value=\"".$invoice."\">\n";
         echo "<input type=\"hidden\" name=\"ioc_order_description\" value=\"".$dbpayments->fields['description']."\">\n";
         echo "<input type=\"hidden\" name=\"ioc_order_price_amount\" value=\"".$price."\">\n";
         echo "<input type=\"hidden\" name=\"ioc_order_other_amount\" value=\"".$surcharge."\">\n";
         echo "<input type=\"hidden\" name=\"ioc_order_total_amount\" value=\"".$total."\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_postal_name_first\" value=\"".$name."\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_postal_name_last\" value=\"".$lastname."\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_postal_street_line1\" value=\"".$address."\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_postal_city\" value=\"".$city."\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_postal_stateprov\" value=\"".$state."\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_postal_postalcode\" value=\"".$zip."\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_postal_countrycode\" value=\"US\">\n";
         echo "<input type=\"hidden\" name=\"ecom_billto_online_email\" value=\"".$email."\">\n";
?>
<table>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Name on Card:</font></td>
<td align=left><input type=text name=ecom_payment_card_name size=20 maxlength=255 value="<?echo $ecom_payment_card_name;?>"></td></tr>
<? /*
<tr><td align=right><font FACE="Verdana" SIZE="-2">Credit Card Type:</font></td>
<td align=left><select name=ecom_payment_card_type><option value="MasterCard" SELECTED>Master Card</option><option value="Visa">Visa</option></select></td></tr>
*/ ?>
<tr><td align=right><font FACE="Verdana" SIZE="-2">CC Number:</font></td>
<td align=left><input type=text name=ecom_payment_card_number size=20 maxlength=255 value="<?echo $ecom_payment_card_number;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Expire Month:</font></td>
<td align=left><select name=ecom_payment_card_expdate_month>
<option value="01" SELECTED>1 - January</option>
<option value="02">2 - February</option>
<option value="03">3 - March</option>
<option value="04">4 - April</option>
<option value="05">5 - May</option>
<option value="06">6 - June</option>
<option value="07">7 - July</option>
<option value="08">8 - August</option>
<option value="09">9 - September</option>
<option value="10">10 - October</option>
<option value="11">11 - November</option>
<option value="12">12 - December</option>
</select>
</td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Expire Year:</font></td>
<td align=left><select name=ecom_payment_card_expdate_year>
<option value="2003" SELECTED>2003</option>
<option value="2004">2004</option>
<option value="2005">2005</option>
<option value="2006">2006</option>
<option value="2007">2007</option>
<option value="2008">2008</option>
<option value="2009">2009</option>
<option value="2010">2010</option>
<option value="2011">2011</option>
<option value="2012">2012</option>
<option value="2013">2013</option>
<option value="2014">2014</option>
<option value="2015">2015</option>
</select>
</td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">CVV/CID Back Panel Code:</font></td>
<td align=left><input type=text name=ecom_payment_card_verification size=20 maxlength=255 value="<?echo $ecom_payment_card_verification;?>"></td></tr>
<tr><td align=right><font FACE="Verdana" SIZE="-2">Automatic Renewal at for same amount at end of term:</font></td>
<td align=left><input type=checkbox name=automaticrenew value="Y" CHECKED></td></tr>
</table>
<?
         //echo "<input type=\"hidden\" name=\"ioc_cvv_indicator\" value=\"0\">\n";
         echo "<input type=\"hidden\" name=\"ioc_auto_settle_flag\" value=\"Y\">\n";
         echo "<input type=submit value=\"Process Credit Card\">";
         echo "<font color=red size=-2>Press only one time!</font>\n";
         break;
    } 
    echo "</form>\n";
  endif;
?>
</center>
</body>
</html>