COWOA (for ZC v1.5.x)

**davewest** · 9 Apr 2016, 11:04 PM

Originally Posted by delia

Well, it's certainly not what I want to do, believe me. We had a big wrangle about it.

Can't remember where it came from, but I already have a switch for COWOA only site... Basically turns off all and any login/logoff fields and checkout is pushed through as COWOA only. I use it at times for testing things and just kept it in the code.

Originally Posted by davewest

I agree that the order status code can use better sanitizing and protection... will work on that.

OK... so looking at mine and the 2.6 order status pages, I had a bit of difference between them. So what I did was updated both to more consistent code with other ZC files. Changes to both template and header file was allot so fully replace for ZC 1.5.4 and 1.5.5.. I don't have anything less then 1.5.4 installed so not tested below that point.

What's new!
Spam and bot code testing by honey pot, not sure spam bot testing is really needed, but can't heart.
Delay for rapid hit abuse, change the delay time in the header define.
I think better sanitizing of the input fields.
Off switches for display of product, shipping, and payment fields.. defines are in the template, could code into the config, but not sure why!
Testing for customer that are logged in already, redirects them to the order history page instead of order status.
tests for non-existent email address's.
Added 'number' and 'email' to input fields for mobile tech... remove if this drives you nuts...

No changes in display was done, tables show up as responsive for me so left them alone. attaching zip