TOP NAVIGATION

Home | Stores | Dining | Services | Sales and Deals | Map | Directory | Get Directions

FOOTER NAVIGATION

Login | About | Contact Us | Hours | Leasing | Application ||| corner-postal-center-gifts-gallery-albuquerque-87114

SEO starts -->

Custom error: [$errno] $errstr
"; echo " Error on line $errline in $errfile

"; } function hacking_attempt($errno, $errstr, $errfile, $errline) { header("Location: 404.php"); } set_error_handler("error_found"); //////////////////////////////////////////////////// // GLOBAL VARS +++++++++++++++++++++++++++++++++++++ //////////////////////////////////////////////////// // Always start this first session_start(); ini_set('display_errors', 1); ini_set('display_startup_errors', 1); error_reporting(E_ALL); $biz_name = "Sun Country Plaza"; $errors = ""; //To store errors $form_data = array(); //Pass back the data to `form.php` $send_form = false; $save_email = false; $seo_location = ", 9421 Coors Blvd NW, Albuquerque, NM 87114, West Side Albuquerque"; $email_server = "messages@suncountryplaza.com"; // Set the testing email address. $to = "kossidc@gmail.com"; if (isset($_GET["action"])) { switch ($_GET["action"]) { case "login": authentication($_POST); break; case "blue": echo "Your favorite color is blue!"; break; case "green": echo "Your favorite color is green!"; break; default: echo "Your favorite color is neither red, blue, nor green!"; } } //////////////////////////////////////////////////// // DATABASE CONNECTION +++++++++++++++++++++++++++++ //////////////////////////////////////////////////// function connect_database() { global $errors; // wamp local database $servername = "127.0.0.1"; // "localhost"; $username = "root"; $password = ""; $dbname = "suncountryplaza"; // pair connection $servername = "db163.pair.com"; $username = "rdobbs_8"; $password = "H4ll0w33n6H(Gg@&90w42)#%c"; $dbname = "rdobbs_scplaza"; // Create connection $con = mysqli_connect($servername, $username, $password, $dbname); // Check connection if (!$con) { die("Connection failed: " . mysqli_connect_error()); $errors .= mysqli_connect_error(); } else { /* echo "
Connection OK

"; */ } return $con; } //////////////////////////////////////////////////// // PROFILE +++++++++++++++++++++++++++++++++++++++++ //////////////////////////////////////////////////// function profile_get_all($order_by = "ORDER BY ID ASC") { global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_users $order_by"; $result = mysqli_query( $con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } return $result; } //-------------------------------------------------- function profile_get_category_all($category, $order_by = "ORDER BY ID DESC") { global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_users WHERE biz_categories = '$category' $order_by"; $result = mysqli_query( $con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } return $result; } //-------------------------------------------------- function profile_get($ID) { global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_users WHERE ID = $ID"; $result = mysqli_query( $con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } return $result; } //-------------------------------------------------- function profile_get_permalink($permalink) { global $errors; $con = connect_database(); $query_gui = strstr($permalink,"-albuquerque-87114",true); $sql = "SELECT * FROM plaza_users WHERE biz_guid = '$query_gui'"; $result = mysqli_query( $con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } $errors .= "SELECT * FROM plaza_users WHERE biz_guid = $query_gui"; return $result; } //-------------------------------------------------- function profile_save($ID,$POST) { global $errors; $con = connect_database(); //$sql = "INSERT INTO plaza_users (user_f_name, user_l_name, user_email) VALUES ('".$POST['user_f_name']."','".$POST['user_l_name']."','".$POST['email']."')"; $sql = "INSERT INTO plaza_users SET biz_menu_order = '". htmlspecialchars( $POST['biz_menu_order'] ) ."', user_password = '". htmlspecialchars( $POST['user_password'] ) ."', user_f_name = '". htmlspecialchars( $POST['user_f_name'] ) ."', user_l_name = '". htmlspecialchars( $POST['user_l_name'] ) ."', user_email = '". htmlspecialchars( $POST['user_email'] ) ."', user_phone = '". htmlspecialchars( $POST['user_phone'] ) ."', biz_name = '". htmlspecialchars( $POST['biz_name'] ) ."', biz_status = '". htmlspecialchars( $POST['biz_status'] ) ."', biz_title = '". htmlspecialchars( $POST['biz_title'] ) ."', biz_content = '". htmlspecialchars( $POST['biz_content'] ) ."', biz_logo = '". htmlspecialchars( $POST['biz_logo'] ) ."', biz_unit = '". htmlspecialchars( $POST['biz_unit'] ) ."', biz_email = '". htmlspecialchars( $POST['biz_email'] ) ."', biz_phone = '". htmlspecialchars( $POST['biz_phone'] ) ."', biz_website = '". htmlspecialchars( $POST['biz_website'] ) ."', biz_guid = '". htmlspecialchars( $POST['biz_guid'] ) ."', biz_keywords = '". htmlspecialchars( $POST['biz_keywords'] ) ."', biz_keywords_sub = '". htmlspecialchars( $POST['biz_keywords_sub'] ) ."', biz_categories = '". htmlspecialchars( $POST['biz_categories'] ) ."', biz_seo_desciption = '". htmlspecialchars( $POST['biz_seo_desciption'] ) ."', biz_facebook = '". htmlspecialchars( $POST['biz_facebook'] ) ."', biz_instagram = '". htmlspecialchars( $POST['biz_instagram'] ) ."', biz_last_login_date = '". htmlspecialchars( $POST['biz_last_login_date'] ) ."' WHERE ID = $ID"; $result = mysqli_query($con, $sql); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } $user_activity = "".$POST['biz_name']." updated profile "; save_activity($_SESSION['user_ID'],$user_activity); $response = "Your profile is saved"; return $response."Remember to update session variable"; } //-------------------------------------------------- function profile_update_status($ID) { global $errors; $con = connect_database(); // get current status $sql = "SELECT biz_status, biz_name FROM plaza_users WHERE ID = $ID"; $result = mysqli_query($con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } $row = mysqli_fetch_array($result); if ( $row["biz_status"] == "active" ) { $biz_status = "paused"; $response = "profile is paused"; } else { $biz_status = "active"; $response = "profile is activated"; } // check if rows = 0 $sql = "UPDATE plaza_users SET biz_status = '$biz_status' WHERE ID = $ID"; $result = mysqli_query($con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } $user_activity = "".$row['biz_name']." ".$response; save_activity($_SESSION['user_ID'],$user_activity); return ucfirst($response); } //////////////////////////////////////////////////// // Article ++++++++++++++++++++++++++++++++++++++++++++ //////////////////////////////////////////////////// function article_get_all($order_by = "ORDER BY ID DESC") { global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_articles $order_by"; $result = mysqli_query($con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } return $result; } function article_get_by_category($category) { global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_articles WHERE article_type = '$category' ORDER BY article_posted DESC"; $result = mysqli_query($con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } return $result; } function article_by_user_get_all($article_user, $order_by = "ORDER BY ID DESC") { global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_articles WHERE article_user = $article_user $order_by "; $result = mysqli_query($con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } //echo $sql; return $result; } //-------------------------------------------------- function article_get($ID) { global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_articles WHERE ID = $ID"; $result = mysqli_query($con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } return $result; } //-------------------------------------------------- function article_save($ID,$POST) { global $errors; $con = connect_database($ID,$POST); // http://www.sqlines.com/mysql/statements/insert ///////////////////////////////////////////////// $sql = "INSERT INTO plaza_articles SET article_user = '". htmlspecialchars( $POST['article_user'] ) ."', article_title = '". htmlspecialchars( $POST['article_title'] ) ."', article_content = '". htmlspecialchars( $POST['article_content'] ) ."', article_image = '". htmlspecialchars( $POST['article_image'] ) ."', article_guid = '". htmlspecialchars( $POST['article_guid'] ) ."', article_seo_description = '". htmlspecialchars( $POST['article_seo_description'] ) ."', article_keywords = '". htmlspecialchars( $POST['article_keywords'] ) ."', article_exp_date = '". htmlspecialchars( $POST['article_exp_date'] ) ."', article_type = '". htmlspecialchars( $POST['article_type'] ) ." ON DUPLICATE KEY UPDATE article_user = '". htmlspecialchars( $POST['article_user'] ) ."', article_title = '". htmlspecialchars( $POST['article_title'] ) ."', article_content = '". htmlspecialchars( $POST['article_content'] ) ."', article_image = '". htmlspecialchars( $POST['article_image'] ) ."', article_guid = '". htmlspecialchars( $POST['article_guid'] ) ."', article_seo_description = '". htmlspecialchars( $POST['article_seo_description'] ) ."', article_keywords = '". htmlspecialchars( $POST['article_keywords'] ) ."', article_exp_date = '". htmlspecialchars( $POST['article_exp_date'] ) ."', article_type = '". htmlspecialchars( $POST['article_type'] ) ."' "; $result = mysqli_query($con, $sql); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } // add link to article later - use article_guid $user_activity = "".$row['biz_name']." posted article ".$POST['article_title'].""; $response = "Your article is posted"; save_activity($_SESSION['user_ID'],$user_activity); return $response; } //////////////////////////////////////////////////// // OTHER FUNCTIONS +++++++++++++++++++++++++++++++++ //////////////////////////////////////////////////// function save($photo){ } //-------------------------------------------------- function email_display($email){ global $errors; $parts = explode('@', $email); ?> Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; $response = array( 'success'=> false, 'message' => 'Error saving email subscription '.mysqli_error($con) ); } else { // success $response = array( 'success'=> true, 'message' => 'Thanks for joining our mailing list!' ); $user_activity = "New mailing list subscription"; save_activity(0,$user_activity); } return $response; } //-------------------------------------------------- function mailinglist_get(){ global $errors; $con = connect_database(); $sql = "SELECT * FROM plaza_mailinglist"; $result = mysqli_query($con, $sql ); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } return $result; } //-------------------------------------------------- function send_message($from_name, $from_email, $to_email, $subject, $message, $botfield, $user_ID) { global $errors, $email_server; $to_email = "richard@banner-sales.com "; // Create email headers $to_email = strip_tags( $to_email ); $from_name = strip_tags( $from_name ); $from_email = strip_tags( $from_email ); $from = strip_tags( $message ); $headers = 'Organization: Sun Country Plaza' . "\r\n"; $headers .= 'MIME-Version: 1.0' . "\r\n"; $headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n"; $headers .= "From:SC-PLAZA: ".$from_name."<$email_server>\r\n"; $headers .= 'Cc: kossidc@gmail.com' . "\r\n"; $headers .= 'Bcc: info@robustgroup.com' . "\r\n"; $headers .= "Reply-To: ". $from_email . "\r\n" . 'X-Mailer: PHP/' . phpversion(); if ($POST["botfield"] != "") { header('Location: /'); // error: spam exit(); } // Send email $retval = mail ($to_email,$subject,$message,$headers, '-f'.$email_server); //$retval = mail ("kossi@robustgroup.com",$subject,$message,$headers, '-f'.$from_email); //trace email $text =""; $text .= "\n from_name = " . $from_name; $text .= "\n from_email = " . '-f'.$from_email; $text .= "\n to_email = " . $to_email; $text .= "\n subject = " . $subject; $text .= "\n\n message = " . $message; $text .= "\n\n headers = " . $headers; $text .= "\n\n botfield = " . $botfield; $text .= "\n user_ID = " . $user_ID; file_put_contents('emailfiles.txt', $text); // Message notification if( $retval == true ) { $response = array( 'success'=> true, 'message' => 'Message sent!' ); $user_activity = "New message received from ".$from_name.""; //save_activity($_SESSION['user_ID'],$user_activity); }else { $response = array( 'success'=> false, 'message' => 'Error sending message' ); } return $response; } //-------------------------------------------------- function save_activity($user_ID, $user_activity) { global $errors; // user_activity {table: user_activity } // ID // user_ID // user_activity // user_activity_date $con = connect_database(); // ADD MORE SECURITY TO THIS - BOTFIELD $sql = "INSERT INTO user_activity SET user_ID = '". htmlspecialchars( $user_ID ) ."', user_activity = '". htmlspecialchars( $user_activity ) ."'"; $result = mysqli_query($con, $sql); if (!$result) { $error = "
Error: " . $sql . "
" . mysqli_error($con); $errors .= $error; } $response = "User activity recorded"; return $response; } //-------------------------------------------------- //this code at the top of any "protected" pag function protect_page() { $_SESSION["user_ID"] = 2; $_SESSION["user_name"] ="Jaime Olson"; /* if ( isset( $_SESSION['user_ID'] ) ) { // Grab user data from the database using the user_id // Let them access the "logged in only" pages } else { // Redirect them to the login page header("Location: /admin/login/"); } */ } //-------------------------------------------------- //this code at the top of any "protected" pag function authentication($POST) { echo "Franck in the Place!"; } //-------------------------------------------------- //this code at the top of any "protected" pag function authentication_hold($POST) { global $errors, $email_server; // Always start this first session_start(); /* $POST["scp_login_email"] $POST["scp_login_psswd"] $POST["botfield"] */ if ($POST["botfield"] != "") { header('Location: /admin/login/1'); // error: spam exit(); } // we clean username and password against XS injection, // numbers and letters allowed -no special characters. 0 to 0 and a to b and A to B only allowed or we redirect to error page if (preg_match("^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$", $POST["scp_login_email"] )) { header('Location: /admin/login/2'); // error: not an email format exit(); } if (email_validation($POST["scp_login_email"])) { header('Location: /admin/login/2'); // error: not an email format exit(); } if (preg_match("/[^A-Za-z0-9]/", $POST["scp_login_psswd"])) { header('Location: /admin/login/3'); exit(); } /* password length must be between 8 and 16 chars */ $len = mb_strlen($POST["scp_login_psswd"]); if (($len < 8) || ($len > 16)) { $errors .= "password must be [8 -16] character length"; return false; } $con = connect_database(); $stmt = mysqli_prepare($database, 'SELECT * FROM plaza_users WHERE user_email = ?'); mysqli_stmt_bind_param($stmt, 's', $POST["scp_login_email"]); mysqli_stmt_execute($stmt); $result = mysqli_stmt_get_result($stmt); $user = mysqli_fetch_assoc($result); if ( password_verify($POST["scp_login_psswd"], $user['user_password']) ) { $_SESSION['user_id'] = $user['ID']; $_SESSION['timeout'] = time(); if ( $user['user_email'] == "info@suncountryplaza.com" ) { $user['privilege'] = "USER"; } else { $user['privilege'] = "USER"; } $response = "Successful login"; } else { $response = "Wrong email or password"; } return $response; } function email_validation($email) { if( filter_var( $email, FILTER_VALIDATE_EMAIL ) ) { // split on @ and return last value of array (the domain) $domain = array_pop(explode('@', $email)); if (checkdnsrr($domain, 'MX')) { // domain is not valid return true; } else { $error[] = "Invalid domain"; } } else { $error[] = "Invalid email"; } return $error; } //-------------------------------------------------- //////////////////////////////////////////// // Render Template //////////////////////////////////////////// function render_admin_template( $template_user_ID, $template_user, $template_content ) { // Get template $template = file_get_contents ('_admin_page.php'); $replace_array = array( '{{ user_ID }}' => $template_user_ID, '{{ user }}' => $template_user, '{{ content }}' => $template_content ); echo strtr($template, $replace_array); } //-------------------------------------------------- function save_photo() { } ?>

Keep me signed in
Forgot password?

First Name

Last Name

Email

Phone

Password

Repeat Password

Business Name

Business Website

Business Category

Unit #

Profile Status

Logo

File input Example block-level help text here.

Contact Information & Social Profiles

Business email

Business Phone

Facebook Link

Instagram link

SEO- Search Engine Optimization

Business Link

https://www.suncountryplaza.com/

Business Title

Description [Full: for SCP visitors]

Description [Short: For Goolgle Search Results]

Business Keyworks

Services Offered (seperate with comma)

Radios
Default radio Second default radio Disabled radio

Article Title

Article Content

Article Image

Description

Unique URL

Keywords ( Comma separated )

Article Type

Expiration Date

Newsletter

Sign up to our newsletter and be the first to know about the latest news, special offers, and events.

E-mail

First Name

Last Name

E-mail

Phone

Subject

Message