Comments on: Protect Your ClickBank "Thank You" Page http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/ Imagine What you Could Do... ..If You Could Do What You Imagine Thu, 15 Sep 2011 19:31:23 +0000 hourly 1 http://wordpress.org/?v=3.3 By: of mesothelioma http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-494 of mesothelioma Tue, 03 Aug 2010 01:51:17 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-494 Thanks for writing this article - I've as of yet heard very little about Windows Mobile 6, so it was nice to read about it. Thanks for writing this article – I've as of yet heard very little about Windows Mobile 6, so it was nice to read about it.

]]> By: steve http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-492 steve Tue, 02 Mar 2010 06:22:21 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-492 here is what makes it work.<br>change line 4 from<br>$xxpop=sha1("$key|$rcpt|$time|$item");<br>to<br>$xxpop=sha1($key|$rcpt|$time|$item);<br><br>then change line 20 from <br><br>header ("Location: <a href="http://www.blabla.com/blabla.php%22%29;" rel="nofollow">http://www.blabla.com/blabla.php");</a><br>to<br>header ('Location: <a href="http://www.blabla.com/blabla.php%27%29;" rel="nofollow">http://www.blabla.com/blabla.php');</a><br><br>its symple syntax error<br><br>i also got rid of <br><br>exit;<br><br>on line 21 and changed to to <br><br>else<br>header ('Location: <a href="http://www.blabla.com/blabla.php%27%29;" rel="nofollow">http://www.blabla.com/blabla.php');</a><br><br>here is the full code<br><br><?php // thankyou.php <br>function cbValid($rcpt, $time, $item, $cbpop){<br>$key=’key’;<br>$xxpop=sha1($key|$rcpt|$time|$item);<br>$xxpop=strtoupper(substr($xxpop,0,8));<br>if ($cbpop==$xxpop){<br>return 1;<br>} else {<br>return 0;<br>}<br>}<br>// ===== Sanitize the input (only allow GET for security) =====<br>$rcpt = trim(addslashes($_GET['cbreceipt']));<br>$time = trim(addslashes($_GET['time']));<br>$item = trim(addslashes($_GET['item']));<br>$cbpop = trim(addslashes($_GET['cbpop']));<br>// ===== Redirect if invalid and exit =====<br>if (!cbValid($rcpt, $time, $item, $cbpop)) {<br>// redirect<br>header ('Location: <a href="http://www.blabla.com/blabla.php%27%29;" rel="nofollow">http://www.blabla.com/blabla.php');</a><br>else<br>header ('Location: <a href="http://www.blablacom/blabla.php%27%29;" rel="nofollow">http://www.blablacom/blabla.php');</a><br>} <br>// no need to do an ELSE because the exit will terminate further processing <br>// if a valid transaction is not confirmed <br>// now have the thank you page html <br>?> here is what makes it work.
change line 4 from
$xxpop=sha1(“$key|$rcpt|$time|$item”);
to
$xxpop=sha1($key|$rcpt|$time|$item);

then change line 20 from

header (“Location: http://www.blabla.com/blabla.php“);
to
header ('Location: http://www.blabla.com/blabla.php&#39 ;) ;

its symple syntax error

i also got rid of

exit;

on line 21 and changed to to

else
header ('Location: http://www.blabla.com/blabla.php&#39 ;) ;

here is the full code

<?php // thankyou.php
function cbValid($rcpt, $time, $item, $cbpop){
$key=’key’;
$xxpop=sha1($key|$rcpt|$time|$item);
$xxpop=strtoupper(substr($xxpop,0,8));
if ($cbpop==$xxpop){
return 1;
} else {
return 0;
}
}
// ===== Sanitize the input (only allow GET for security) =====
$rcpt = trim(addslashes($_GET['cbreceipt']));
$time = trim(addslashes($_GET['time']));
$item = trim(addslashes($_GET['item']));
$cbpop = trim(addslashes($_GET['cbpop']));
// ===== Redirect if invalid and exit =====
if (!cbValid($rcpt, $time, $item, $cbpop)) {
// redirect
header ('Location: http://www.blabla.com/blabla.php&#39 ;) ;
else
header ('Location: http://www.blablacom/blabla.php&#39 ;) ;
}
// no need to do an ELSE because the exit will terminate further processing
// if a valid transaction is not confirmed
// now have the thank you page html
?>

]]> By: pill http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-475 pill Wed, 16 Sep 2009 20:32:01 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-475 There is an parse error on the script when i tried to paste it in the thank you page.. hope fully someone can help me. This is the exact error I've encountered. Parse error: syntax error, unexpected T_VARIABLE in /home/****/public_html/**********/*******443isdbxksncyromwgdx/index.php on line 4 (I replaced my domain folders to asterisk for security purposes) Thanks! There is an parse error on the script when i tried to paste it in the thank you page.. hope fully someone can help me.

This is the exact error I’ve encountered.

Parse error: syntax error, unexpected T_VARIABLE in /home/****/public_html/**********/*******443isdbxksncyromwgdx/index.php on line 4

(I replaced my domain folders to asterisk for security purposes)

Thanks!

]]> By: admin http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-471 admin Fri, 28 Aug 2009 02:16:00 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-471 No, because the page with the key on it is never visible nor displayed... it's just called from initial page. I would never say never, I guess anything is possible, but it's not as easy as you might think... and it's certainly more secure than using nothing at all. No, because the page with the key on it is never visible nor displayed… it’s just called from initial page.

I would never say never, I guess anything is possible, but it’s not as easy as you might think… and it’s certainly more secure than using nothing at all.

]]> By: lol http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-463 lol Sun, 02 Aug 2009 19:59:53 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-463 Clearly you do not understand PHP proper seo service PHP is server-side. HTML is client-side. This code is PHP, which means - it is -not- displayed to the user. Clearly you do not understand PHP proper seo service

PHP is server-side.
HTML is client-side.

This code is PHP, which means – it is -not- displayed to the user.

]]> By: proper seo service http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-462 proper seo service Fri, 05 Jun 2009 23:41:51 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-462 Guys, don't u think someone could view the source code and copy your secret key if this code is used? Guys, don’t u think someone could view the source code and copy your secret key if this code is used?

]]> By: admin http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-444 admin Wed, 21 Jan 2009 02:48:36 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-444 @Vincent DErrico, send me the pages you have, and I'll take a look at them... you can send them to chris@teamrees.com @Vincent DErrico, send me the pages you have, and I’ll take a look at them… you can send them to chris@teamrees.com

]]> By: Vincent DErrico http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-443 Vincent DErrico Tue, 20 Jan 2009 22:31:37 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-443 I copied the script and pasted it into my thankyou page and gave the page a .php extension. I changed ABCDE to my key and sendthemsomewhere.com to wiseh2o.com/error.html. The script did not work and I keep getting a Parse error. Any help would be appreciated. I copied the script and pasted it into my thankyou page and gave the page a .php extension. I changed ABCDE to my key and sendthemsomewhere.com to wiseh2o.com/error.html. The script did not work and I keep getting a Parse error. Any help would be appreciated.

]]> By: Simon http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-435 Simon Fri, 09 Jan 2009 10:18:16 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-435 I decided to try out ClickBank yesterday to leverage their affiliate network for a digital product. Instead of relying on the thank you page for anything, I'm using their "instant notification" option. When a sale is made, the clickbank system notifies a url on the seller's site with details of the purchase. You can then setup a script to validate the incoming data (see clickbank documentation for php example), and perform any actions needed - in my case, the creation of a new upgraded user on the site, and sending an email with their login details. With this approach, because all validation and actions are done at the notification url stage, when the user gets to the thank you page you don't need to expose your product or any other sensitive data on that page. You can still show the user any data you want on the thank you page however, by saving the receipt string during the notification process, and then using the $_GET value given in the thank you url to select the information from your database again. I decided to try out ClickBank yesterday to leverage their affiliate network for a digital product. Instead of relying on the thank you page for anything, I’m using their “instant notification” option.

When a sale is made, the clickbank system notifies a url on the seller’s site with details of the purchase. You can then setup a script to validate the incoming data (see clickbank documentation for php example), and perform any actions needed – in my case, the creation of a new upgraded user on the site, and sending an email with their login details.

With this approach, because all validation and actions are done at the notification url stage, when the user gets to the thank you page you don’t need to expose your product or any other sensitive data on that page.

You can still show the user any data you want on the thank you page however, by saving the receipt string during the notification process, and then using the $_GET value given in the thank you url to select the information from your database again.

]]> By: Christopher Rees http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/comment-page-1/#comment-491 Christopher Rees Tue, 21 Oct 2008 18:35:02 +0000 http://www.teamrees.com/2008/04/11/protect-your-clickbank-thank-you-page/#comment-491 Hi Karen, thanks for the comment and glad I was able to help out! -Chris Hi Karen, thanks for the comment and glad I was able to help out! -Chris

]]>