I am a PHP/mySQL developer without enough time to complete everything I need for my new website. Your job is to create a **PHP/mySQL** based ordering system leveraging **PayPal** (and if your skilled enough Google Checkout (you will get bonus for having both)) to process payments to order my services. User Registration System for repeat customers. I will allow the awarded worker to **leverage an underlying open-source platform** like Drupal, WordPress, etc. to simplify that process--however if you do use an underlying platform core modifications are not allowed. **All customizations must be made via plugins/modules**. **Note your platform in the notes** when you bid if you wish to go that route.**
**
## Deliverables
You MUST have working knowledge of Web Application Security (such as OWASP), examples of things you MUST know about--**I WILL NOT ACCEPT INSECURE CODE**.
Injection:
* How to sanitise user input
* Make data safe to enter the database
* Not allow any detrimental transactions to the database
CSRF, XSS, etc. If writing from scratch and not using a platform: Use includes / functions when possible - I will be wrapping a design around your code. If you do a good job you will have more work extending this system further in the future (such as adding a points reward system for repeat customers to get free services). I want someone to prove their worth with this initial bit before we move onto a larger system. **Need** to capture at least this data via user registration: (I say at least because the platform you may choose to use might capture even more)
* Name (**required**)
* E-Mail (**required**)
* Username (**required**)
* Password (**required**)
* Country (**required**) - drop box
* State (optional)
* Mobile Phone (optional) - Note that this WILL be used for Notifications via TXT--data and service fees from their carrier may apply. Do not enter a mobile phone unless you are accepting this risk.
Validate the email to ensure it's valid. Validate the registration information with an automatic email where they need to confirm receipt to activate their account. ** **
After a user is registered they can order--these are the items we need to capture on the order form:
* Start Time - should be a calendar picker w/ time as well (figure out their local time and convert to UTC)
* End Time - should be a calendar picker w/ time as well (figure out their local time and convert to UTC)
* Type
* Needs to generate based on rows in gs_serv_types table (described to awarded worker), should be a dropbox
<!-- -->
* Admin Password - text box
* Connect Password - text box
* Level - dropbox
* Needs to generate based on the type selected (use the gs_maps table described to awarded worker)
* FTP Password - text box
Based on Start & End Time calculate the cost to charge them (I will provide formula to awarded worker)
You will need to put all of that information into a table (gs_orders, described to awarded worker) as well as the uid (should map to a users table in the platform you chose or if creating from scratch then the table you create to hold user information). Passwords will not be stored in plain-text, I will share my requirement for the password storage with the awarded bidder (I will supply a PHP function to meet my requirements). After that you will then do a POST against a URL (where your system will hand off to my system) with the order ID. (force redirect at the completion of their order).