. // Redirect user to PayPal system require_once("../inc/util.inc"); db_init(); $logged_in_user = get_logged_in_user(false); $amount = post_str("inV"); $item_id = post_int("item_id", true); if ($item_id == null) { $item_id = 1; } $currency = post_str("currency"); if ((post_int("anonymous", true) == 1) || ($logged_in_user == null)) { $userid = 0; } else { $userid = $logged_in_user->id; } $order_time = time(); // Write user id to paypal table, so the return script knows it's expecting this payment _mysql_query("INSERT INTO donation_paypal SET order_time = '".$order_time."', userid = '$userid', item_number=".$item_id.", order_amount = '".boinc_real_escape_string($amount)."'"); $payment_id = _mysql_insert_id(); $URL = "www.paypal.com/cgi-bin/webscr"; $fields = ("cmd=_xclick&lc=US&business=".PAYPAL_ADDRESS."&quantity=1&item_name=Donation&item_number=".$payment_id."_".$order_time."&amount=".$amount."&no_shipping=1&return=".url_base()."donated.php?st=Completed&rm=2&cancel_return=".url_base()."/donated.php&no_note=1¤cy_code=".$currency."&bn=PP-BuyNowBF"); header("Location: https://$URL?$fields"); exit; ?>