RE: Purchased cart being overwritten
This WebDNA talk-list message is from 1997
It keeps the original formatting.
numero = 13193
interpreted = N
texte = Rob ->On a store I am just completing, when the customer clicks purchase after>entering his credit card info a thankyou.tmpl page is returned and the cart>file is transferred to the Orders folder. A context on the top of the>thankyou.tmpl logs the order into an orders database from which the order>can then be managed.>After performing a purchase, I backed up in my browser, both IE and>Netscape to a shopping page. Admittedly my cart was empty but the same cart>number was in the url. I then continued shopping, and another cart file was>generated with the same number as the previous one (now residing in the>Orders folder). I then shopped around and concluded my purchase and this>new cart was then transferred to the orders folder and overwrote the>earlier one. This is a serious problem which could cause a serious loss if>someone did this. Can anyone point me to a solution for this?If you are worried about people backing up this far and reordering, you can just use some [showif] checks to present them with a message that this cart has already been submitted, and give them a $newcart link instead of allowing them to shop with that cart again. You could either use [showif] in conjunction with [listfiles] to check for the existence of that cart in the Orders folder, or, more conveniently (since you already have the orders database set up) you can do a [lookup] in your orders database to see if that cart number has already been ordered.Alternatively, you could make all links between pages form buttons using METHOD=POST; this wouldn't prevent them from backing up and using the same cart, but it would make it more difficult.I hope this helps,Marc EagleStarNine Technologieshttp://www.smithmicro.com/
Associated Messages, from the most recent to the oldest:
Rob ->On a store I am just completing, when the customer clicks purchase after>entering his credit card info a thankyou.tmpl page is returned and the cart>file is transferred to the Orders folder. A context on the top of the>thankyou.tmpl logs the order into an orders database from which the order>can then be managed.>After performing a purchase, I backed up in my browser, both IE and>Netscape to a shopping page. Admittedly my cart was empty but the same cart>number was in the url. I then continued shopping, and another cart file was>generated with the same number as the previous one (now residing in the>Orders folder). I then shopped around and concluded my purchase and this>new cart was then transferred to the orders folder and overwrote the>earlier one. This is a serious problem which could cause a serious loss if>someone did this. Can anyone point me to a solution for this?If you are worried about people backing up this far and reordering, you can just use some
[showif] checks to present them with a message that this cart has already been submitted, and give them a $newcart link instead of allowing them to shop with that cart again. You could either use
[showif] in conjunction with
[listfiles] to check for the existence of that cart in the Orders folder, or, more conveniently (since you already have the orders database set up) you can do a
[lookup] in your orders database to see if that cart number has already been ordered.Alternatively, you could make all links between pages form buttons using METHOD=POST; this wouldn't prevent them from backing up and using the same cart, but it would make it more difficult.I hope this helps,Marc EagleStarNine Technologieshttp://www.smithmicro.com/
Marc Eagle
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
BIG PROBLEMS with Checkboxes!!! (1998)
Follow-Up to: Removing [showif] makes a big difference in speed (1997)
[WebDNA] On click show hidden include (2009)
math on date? (1997)
refreshing IE with posted .tmpl (1997)
[WebDNA] error: Permission deny when updating a database (2016)
What folder??? (1999)
RE: Languages (1997)
Country & Ship-to address & other fields ? (1997)
OT: Sendmail (2005)
Help! Strange happenings... (1997)
[Announce]: Web server security and password protection (1997)
international time (1997)
WebCatalog2 Feature Feedback (1996)
simple answer? [hideif] (1997)
StoreBuilder help/question... (2000)
Question about Webcatalog and Webstar for Mac OS X (1998)
Who is doing sign-ups-got it (1998)
[ShowNext] (1997)
[WebDNA] 6.2 Monitor (2012)