mattkenefick

I'm looking for a cart that is focused on like.. tickets and donations. I don't need a full featured OSCommerce / PinnacleCart kind of thing. It'll only be handling like 5 types of tickets to events and the ability to accept donations.. Does anyone know of a miniature kind of cart utility like this exists already? Or classes for such a thing?

I have a table setup in MySQL to contain different copy versions of this page. It's collation is "utf8_general_ci" and the type is "text". Will this be able to store Chinese Simplified/Traditional, Arabic, etc characters? Not necessarily for Americans to view, but for their own country's viewing. So if I was in China, wrote on the Chinese keyboard and stored it.. Then refreshed my screen, I'd be able to see it? or would the Collation mess it all up? Thanks a ton! And this is very very urgent. Sorry

Well.. I know about Client Review and everything. This isn't freelance work or anything, it's a legitimate business that really puts out for high end clients. But the issue is that my bosses ( like almost everyones ) don't really understand the work that me and my team does. They know its programming, but to get into detail would be a waste of breath so they don't understand threats. The client is like.. Beverly Hills middle aged men with extra cash to spare and a ripped-off idea. They wouldn't know what to look for if I put their face in it. I know that we can say "You approved".. But I don't want to just see this site fall to the hands of hackers or whatnot especially since I built the whole thing myself. You know? I might have a run on here perhaps.

I have certainly tested it and the entire operation works. I wouldn't build something that didn't work. I've spent a long time on it and its practically my baby. One of the problems is that the boss undershot the price on this by a mile, the client kept adding and we shouldn't have accepted their requests, now they are getting eager for it and want it released. The issue is that if I hand it over to them to have them beta test, then they might just skip it and release it. But we can't hold this in our court much longer since we have already gone over on what we should have done. The entire thing works and everything I can think of is sealed up.. but if it were like that, nothing would ever get hacked or have errors.. And this is gonna take more than 1 or 2 people to test, which is all we have available here. I'm certainly not releasing a faulty product.

Cooldude makes a good point. We could hire , and "hire", some people to try to take it down then charge the company. I don't think that we have any agreement about testing it. I mean, of course I've tested it as I've been going pretty thoroughly but there's always something. Cause even though I've done the on site tests like injection, session hijacking and such.. I didn't do any like, raw data posts to it.. or ddos attacks or anything like that. I feel bad giving it to them because I've grown so attached to the project but *sigh* it's all grown up now.

I recently just finished a big project for my company and our client is in a hurry to rush it to release. I'm pretty sure that I've covered most of my bases in terms of entry points, injection vulnerability, HTTPS, and such.. but there's always something. This is my least favorite part of any project is that 99% point cause you're always wondering what's left even though there might not be anything, but at the same time, there's always something. This site is pretty extensive and there's a lot of things to test. I don't think my company can afford to do it and I also don't know how good an idea it'd be for me to do it since I've been working on it for so long. I know what to do and what not to do. Should we tell these guys to hire some beta testers to thoroughly test and document it or what do you think? Have you ever hired beta testers? And when I say it's a big site, I don't mean like a forum is big.. It's like extensive like a community site mixed with e-bay would be.. so there are a lot of bases to cover (one of the reasons I don't want to do it.) Thanks!

This isn't a paypal specific question. it's just about e-commerce in general. Like.. 2CheckOut or whoever offers those kinds of APIs that you authenticate with.

I think I used to but I gave it up cause there was never anyone answering anything on it. Latest posted would be like 2 weeks old with no replies or anything.

If I use PayPal Payflow Pro or something like that.. Does my server need to be secure.. or when I use cURL and send to their HTTPS , is that all that matters??

this forum really sucks

For example.. lets saying you were making a community site.. Can be pretty complex.. So you have things to handle like a messaging system, user database, maybe some kind of e-commerce to handle membership fees, different user types / permissions , admin back-end, news, faq, forum, etc... How much time do you normally spend on each section? And what order do you normally do it in? Do you break it into more steps? - Wireframing - Cutting images, setting up template pages - Determining what fields / tables / etc to use for database structure - Programming templates together - Securing login / sessions - E-commerce - Applications - Final Touches I'm doing a larger scale app (not a community site) and was wondering what road you all take? I started out with a few days of wireframes which I found to be REAL helpful. We wireframed out almost every page, then fleshed most of them out in Photoshop. Then I went through and cut out all the images I'd need. Started building a page in HTML all in one file (css, html, anything else) then started dividing out the CSS / Scripts / HTML sections into Smarty or respective places. I have most of the style names and image names the same except for a prefix so all I have to do is change one word and have a new looking page (diff images etc). Once I'm set on the templates, I think I'll be starting the login system and linking the pages together. Then once I can nav through it logged in and out, I think I'll start building the inner applications of it. I kind of think of it like building house. Put up the walls and make the outside look nice, so you have your structure you can nav through. Then once all your rooms are created, start putting up the interior design and polishing it off (applications etc).. then fix up the yard at the end (server). How does everyone else go about it? :-X

I never had to use SSL or certificates before because the job just never called for it but now it is. I run WAMP 5 right now, which is what I'm testing on. Both this and our real linux server have OpenSSL enabled. I just don't know how to create a certificate or anything like that. What I need to do is pass a POST data securely so people monitoring the network can't see the plain text of it. That's all and apparently it has to be really involved and stuff I really need help here.. It's extremely important if someone doesn't mind helpin out . ???

'HTTP_REFERER' The address of the page (if any) which referred the user agent to the current page. This is set by the user agent. Not all user agents will set this, and some provide the ability to modify HTTP_REFERER as a feature. In short, it cannot really be trusted.

If I'm posting a form on http://example_1.com/test.html that sends the POST Data to http://mywebsite.com/reader.php, how can the reader.php determine where the results came from? I know that HTTP_REFERER works but I read on PHP.net that HTTP_REFERER isn't always gaurunteed for every server or something? Is there a way to be 100% sure of it, no faking the referer, etc..? http://www.php.net/manual/en/reserved.variables.php

whats the actual code

I was thinking of using PayPal. This is an application that handles transactions from Person 1 to Person 2. When someone makes a transaction, I need money to go into an escrow type account for a few days. Then after a few days when both parties agree it should be transferred, the application takes out 5% then distributes the money from Party 1 to Party 2. Anyone know how to do this?

Nobody?

I've done the practices and I only miss maybe 1 out of 20 questions, if that.. but the questions can certainly be pretty dumb.. They are important but just more picky than you'd expect I guess. But thats good.

2 Part Payments and taking a commission out of it? I was told this is possible by one person and that it's not by another. I'm not sure what the real answer is so hopefully someone can help me out. This is what I need: Person 2 buys something from Person 1 Person 1 transfers money that day and money is held in escrow instead of being sent to Person 2 When Person 2 receives it, Person 2 says "Finish Money Transfer" Money goes to Person 1 and 5% charge is taken out for use of this "Service" website they used to meet each other Can that be done? The biggest thing is that the money has to be held for several days in the air until they both agree the service went through okay. If the 5% charge isn't possible, I could still do math on the amount and just do 2 transactions, couldn't I? A built in feature would always be nicer though. -Matt

Easy? Tough? Anyone?

I'm building an interaction site that works similar to like Match.com (maybe?). I've never been there but I think it'd work where a bunch of people sign up, people post a profile, and you can't directly contact them but you can, through the system, create an interaction. It's not a social website, its for selling things between users but keeping conversation out of it so that you use the service. Anyway, it's a little off-regular so a standard CMS isn't really going to plug-in. I'm looking for something that will handle things like User Management, Session Handling, and all the security aspects of a User Registration / Login / Usability. The core functionality of E-Commerce and bidding and such I can handle. Also, I don't know if a template system would work well for this? Because there's a lot of variables like, loading data, and processes like Bidding on an Item, and such.. A similar site is http://www.uship.com . The point of that site is people sign up that want to send things, shipping companies sign up to bid on jobs. The customer posts something they need shipped and the companies bid on their job. Thats basically exactly what I need to do. So I need to have something that'll handle the security and whatnot of User sign-up, but it has to function like the UShip site and I don't know that templates are capable of that? Kind of not sure what way to go here. I understand the usage of templates for things like blogs, news sites, or sites with downloads and image galleries. But this site isn't really any of those.

I'm using some scripts and they're executing from .007 - .010 It defines many files, imports several files (total of maybe 20), encrypts 2 strings several times base64 IN flash, WWW-Authenticating to a PHP file, PHP grabs a MySQL Query, returns it, traces it. That happens all in .007 seconds roughly. How long is too long until you should find a new script. If a script runs with a time of .05, is that the general limit or is that fast?

That seemed like a lot more that it reads, it takes a while to type them lol. They're so specific that it's easy to make a mistake. I'll add more soon.

Search Multiple Words if( preg_match( "/\s+((word1)|(word2))\s+/" , $str ) ) { print "Found: " . $str; } Find word variations if( preg_match( "/Joh?n(athan)? Johnson/" , $str ) ) { print "Found: " . $str; } Find Similar Words ( finds bat,cat,mat,rat ) if( preg_match( "/\b[bcmr]at\b/" , $str ) ) { print "Found: " . $str; } Find lines that begin with... if( preg_match( "/^Word\b/" , $str ) ) { print "Found: " . $str; } Lines that END with... if( preg_match( "/\bword$/" , $str ) ) { print "Found: " . $str; } Escape Quotes $str = $_POST['value']; return preg_replace( '/(^|(?<!\\\))\"/', '\\\"', $str ); Drop Lines in file $str = $_POST['value']; return ereg_replace( ',[[:space:]]*', ',<br />', $str); Extract Queries from URLs if ( ereg( '^[^?]*\?(.*)$', $str, $matches) ) { echo "Found: $matches[1]"; } Format US Date $date = $_POST['date']; $newDate = preg_replace( "/^(\d{1,2})[-\/.]?(\d{1,2})[-\/.]?((?:\d{2}|\d{4}))$/", "$1-$2-$3", $date); print $newDate; Validate Social Security Numbers $socialNumber = $_POST['value']; if (preg_match( "/^00[1-9]|0[1-9]\d|[1-5]\d{2}|6[0-5]\d|66[0-5]|66[7-9]|6[7-8]\d|690|7[0-2]\d|73[0-3]|750|76[4-9]|77[0-2])-(?!00)\d{2}-(?!0000)\d{4}$/", $socialNumber) ) return "Its real"; If you have any requests, let me know!

I'm making a Search Suggestor that every time someone searches something, it adds it to a database. If its already in there, it increments the value by 1. I'm building it in Flash using AMFPHP to connect to the database so its normal PHP Queries and results etc.. How should I go about handling the database queries if there were say 5,000+ people using it at once? I'm going to have it query per second rather than per keystroke (only if the input has changed from one second to the next so its not querying the same thing over and over). Is there a more efficient way to do this?