public function index() { $db = MySQL::getInstance(); if (isset($this->data[0]) && $this->data[0] == 'save') { foreach ($this->post as $name => $value) { $db->query('UPDATE `config` SET `FieldValue` = ' . $db->escape($value) . ' WHERE `FieldName` = ' . $db->escape($name)); } foreach ($_FILES as $field => $file) { if ($fileName = File::upload('var/upload/', $field, true, true)) { $db->query("SELECT `FieldValue` FROM `config` WHERE `FieldName` = " . $db->escape($field)); if ($oldFile = $db->fetchField()) { File::delete($oldFile, 'var/upload/'); } $db->query('UPDATE `config` SET `FieldValue` = ' . $db->escape($fileName) . ' WHERE `FieldName` = ' . $db->escape($field)); if ($field == "Banner") { File::imageCrop($fileName, 'var/upload/', 699, 122); } } } redirect(BASE_PATH . 'admin/cp'); } $this->show->configData = array(); $db->query('SELECT FieldName, FieldValue, FieldDescription, FieldType FROM `config` ORDER BY SortOrder'); while (list($key, $value, $description, $type) = $db->fetchRow()) { $this->show->configData[] = array('Key' => $key, 'Value' => $value, 'Description' => $description, 'Type' => $type); } }
public function insert($imageList, $newsletterID) { $db = MySQL::getInstance(); $db->query("SELECT COUNT(*) FROM `newsletter_image` WHERE `NewsletterID` = " . $db->escape((int) $newsletterID)); $position = $row = $db->fetchField() ? $row : 0; foreach ($imageList as $key => $image) { $position++; $db->query("INSERT INTO newsletter_image (NewsletterID, `File`, `Position`) VALUES (\n\t\t\t\t" . $db->escape((int) $newsletterID) . ",\n\t\t\t\t" . $db->escape($image) . ",\n\t\t\t\t" . $db->escape((int) $position) . "\n\t\t\t)"); if (File::copy($image, 'thumb_' . $image, 'var/newsletter/gallery/')) { File::imageCrop('thumb_' . $image, 'var/newsletter/gallery/', 320, 240); } File::imageResize($image, 'var/newsletter/gallery/'); } }
public function insert($imageList, $galleryID, $data) { $db = MySQL::getInstance(); $db->query("SELECT COUNT(*) FROM `gallery_image` WHERE `GalleryID` = " . $db->escape((int) $galleryID)); $row = $db->fetchField(); $position = $row ? $row : 0; $position = $row = $db->fetchField() ? $row : 0; foreach ($imageList as $key => $image) { $position++; $db->query("INSERT INTO gallery_image (GalleryID, `File`, `Title`, `Description`, `Position`) VALUES (\n\t\t\t\t" . $db->escape((int) $galleryID) . ",\n\t\t\t\t" . $db->escape($image) . ",\n\t\t\t\t" . $db->escape($data['Title'][$key], 255) . ",\t\t\t\t\n\t\t\t\t" . $db->escape($data['Description'][$key]) . ",\t\t\t\t\n\t\t\t\t" . $db->escape((int) $position) . "\n\t\t\t)"); if (File::copy($image, 'thumb_' . $image, 'var/gallery/')) { File::imageCrop('thumb_' . $image, 'var/gallery/', 155, 110); } File::imageResize($image, 'var/gallery/'); } }
public function update($data, $brandID) { if ((int) $brandID == 0) { return $this->insert($data); } if (empty($data['Title'])) { throw new Exception(lang('data_empty', __CLASS__)); } $db = MySQL::getInstance(); $queryStr = ""; if ($imageName = File::upload('var/brand/')) { $this->deleteFile($brandID); File::imageCrop($imageName, 'var/brand/', 120, 120); $queryStr .= ', `Image` = ' . $db->escape($imageName); } $db->query("UPDATE `catalog_brand` SET\n\t\t\t\t`Title` = " . $db->escape($data['Title'], 255) . ",\n\t\t\t\t`Description` = " . $db->escape($data['Description'], 255) . ",\n\t\t\t\t`Content` = " . $db->escape($data['Content']) . "\n\t\t\t\t" . $queryStr . "\n\t\t\tWHERE `BrandID` = " . $db->escape((int) $brandID)); return true; }
public function insert($imageList, $itemID, $data) { $db = MySQL::getInstance(); $db->query("SELECT COUNT(*) FROM `catalog_image` WHERE `ItemID` = " . $db->escape((int) $itemID)); $row = $db->fetchField(); $position = $row ? $row : 0; foreach ($imageList as $key => $image) { $position++; $db->query("INSERT INTO catalog_image (ItemID, `File`, `Title`, `Description`, `Position`) VALUES (\n\t\t\t\t" . $db->escape((int) $itemID) . ",\n\t\t\t\t" . $db->escape($image) . ",\n\t\t\t\t" . $db->escape($data['Title'][$key], 125) . ",\n\t\t\t\t" . $db->escape($data['Description'][$key], 255) . ",\n\t\t\t\t" . $db->escape((int) $position) . "\n\t\t\t)"); // if (File::copy($image, 'icon_' . $image, 'var/catalog/gallery/')) { // File::imageCrop('icon_' . $image, 'var/catalog/gallery/', 10, 10); // } if (File::copy($image, 'thumb_' . $image, 'var/catalog/gallery/')) { File::imageCrop('thumb_' . $image, 'var/catalog/gallery/', 150, 150); } // if (File::copy($image, 'main_' . $image, 'var/catalog/gallery/')) { // File::imageCrop('main_' . $image, 'var/catalog/gallery/', 10, 10); // } File::imageResize($image, 'var/catalog/gallery/', 373, 309); } }
public function update($data, $ID = 0) { if (empty($data['Title'])) { throw new Exception(lang('data_empty', __CLASS__)); } $db = MySQL::getInstance(); $queryStr = ""; if ($imageName = File::upload('var/projects/')) { $this->deleteFile($ID); if (File::copy($imageName, 'thumb_' . $imageName, 'var/projects/')) { File::imageCrop('thumb_' . $imageName, 'var/projects/', 300, 200); } File::imageCrop($imageName, 'var/projects/', 800, 600); $queryStr .= ', `Image` = ' . $db->escape($imageName); } $db->query('UPDATE `projects` SET Title = ' . $db->escape($data['Title'], 255) . ', Description = ' . $db->escape($data['Description']) . ', MetaTitle = ' . $db->escape($data['MetaTitle'], 255) . ', MetaKeywords = ' . $db->escape($data['MetaKeywords'], 255) . ', MetaDescription = ' . $db->escape($data['MetaDescription']) . ', Active = ' . $db->escape((int) $data['Active']) . ', Content = ' . $db->escape($data['Content']) . ' ' . $queryStr . ' WHERE ProjectID = ' . $db->escape((int) $ID)); if (($imageList = File::upload('var/projects/gallery/', 'Gallery', false)) !== false) { $oImage = new Projects_Image(); $oImage->insert($imageList, $ID); } return $ID; }
/** * @param $params array( * @param 'Content' (string) -- текст слайда * upload file - 'Image' * ) * * @return string -- errortext|'ok' */ public static function insert($params) { if (!File::extValidate(self::$ext_array, 'Image')) { return 'неверный тип файла'; } $file_name = File::upload(self::IMAGE_PATH, 'Image'); if (!$file_name) { return File::getError(); } if (!File::imageCrop($file_name, self::IMAGE_PATH, self::IMAGE_X, self::IMAGE_Y)) { File::delete($file_name, self::IMAGE_PATH); return 'Ошибка обработки'; } File::copy($file_name, self::TMB_PREFIX . $file_name, self::IMAGE_PATH); File::imageCrop(self::TMB_PREFIX . $file_name, self::IMAGE_PATH, self::T_IMAGE_X, self::T_IMAGE_Y); $new_id = ''; $db = MySQL::getInstance(); $query_str = 'INSERT INTO ' . self::TABLE_NAME . ' SET '; $query_str .= ' description = ' . $db->escape($params['Content']); $query_str .= ', file = ' . $db->escape($file_name); $db->query($query_str, $new_id); return $new_id ? 'ok' : 'Ошибка добавления'; }
public function update($data, $newsletterID = 0) { if (empty($data['Title']) || empty($data['Date'])) { throw new Exception(lang('data_empty', __CLASS__)); } $db = MySQL::getInstance(); $db->query("SELECT `Date`, `StaticPath` FROM `newsletter` WHERE NewsletterID = " . $db->escape((int) $newsletterID)); if ($row = $db->fetchRow()) { if ($row['Date'] != strtotime($data['Date'])) { $this->setStaticPath($data); } else { $data['StaticPath'] = $row['StaticPath']; } } $queryStr = ""; if ($imageName = File::upload('var/newsletter/')) { $this->deleteFile($newsletterID); if (File::copy($imageName, 'thumb_' . $imageName, 'var/newsletter/')) { File::imageCrop('thumb_' . $imageName, 'var/newsletter/', 300, 200); } File::imageCrop($imageName, 'var/newsletter/', 800, 600); $queryStr .= ', `Image` = ' . $db->escape($imageName); } $db->query('UPDATE `newsletter` SET Date = ' . $db->escape(strtotime($data['Date'])) . ', StaticPath = ' . $db->escape($data['StaticPath']) . ', Title = ' . $db->escape($data['Title'], 255) . ', PageID = ' . $db->escape((int) $data['PageID']) . ', Description = ' . $db->escape($data['Description']) . ', MetaTitle = ' . $db->escape($data['MetaTitle'], 255) . ', MetaKeywords = ' . $db->escape($data['MetaKeywords'], 255) . ', MetaDescription = ' . $db->escape($data['MetaDescription']) . ', Active = ' . $db->escape((int) $data['Active']) . ', Content = ' . $db->escape($data['Content']) . ' ' . $queryStr . ' WHERE NewsletterID = ' . $db->escape((int) $newsletterID)); if (($imageList = File::upload('var/newsletter/gallery/', 'Gallery', false)) !== false) { $oImage = new Newsletter_Image(); $oImage->insert($imageList, $newsletterID); } return $newsletterID; }
public function update() { if (empty($this->Title) || empty($this->StaticPath)) { throw new Exception(lang('data_empty', __CLASS__)); } else { if ($this->Type == 2 && !in_array($this->Link, Router::getModuleList())) { throw new Exception(lang('module_incorrect', __CLASS__)); } else { if ($this->Type != 0 && (int) $this->ParentID < 1) { throw new Exception(lang('select_parent', __CLASS__)); } } } $this->_prepareContentBeforeSave(); $db = MySQL::getInstance(); $query = "UPDATE `page` SET\n\t\t\t`Title` = " . $db->escape($this->Title, 255) . ",\n\t\t\t`Description` = " . $db->escape($this->Description) . ",\n\t\t\t`Content` = " . $db->escape($this->Content) . ",\n\t\t\t`ParentID` = " . $db->escape((int) $this->ParentID) . ",\n\t\t\t`MetaTitle` = " . $db->escape($this->MetaTitle, 255) . ",\n\t\t\t`MetaDescription` = " . $db->escape($this->MetaDescription) . ",\n\t\t\t`MetaKeywords` = " . $db->escape($this->MetaKeywords) . ",\n\t\t\t`StaticPath` = " . $db->escape(slugify($this->StaticPath)) . ",\n\t\t\t`Link` = " . $db->escape($this->Link, 255) . ",\n\t\t\t`Active` = " . $db->escape((int) $this->Active) . ","; if (!empty($this->ImageDelete)) { $db->query("SELECT `Image` FROM `page` WHERE PageID = " . $db->escape((int) $this->PageID)); $oldImageFile = $db->fetchField(); if ($oldImageFile) { File::delete($oldImageFile); File::delete('thumb_' . $oldImageFile); $db->query("UPDATE `page` SET `Image` = NULL WHERE PageID = " . $db->escape((int) $this->PageID)); } } if (($imageName = File::upload()) !== false) { if (File::copy($imageName, 'thumb_' . $imageName)) { File::imageCrop('thumb_' . $imageName, false, 150, 150); } File::imageCrop($imageName, false, 500, 500); $db->query("SELECT `Image` FROM `page` WHERE `PageID` = " . $db->escape((int) $this->PageID)); if ($oldImageFile = $db->fetchField()) { File::delete($oldImageFile); File::delete('thumb_' . $oldImageFile); } $query .= "`Image` = " . $db->escape($imageName) . ","; } $query .= "`Modified` = " . $db->escape((int) time()) . "\n\t\t\tWHERE `PageID` = " . $db->escape((int) $this->PageID); $db->query($query); if ($this->ParentID != $this->CurrentParentID) { return $this->moveTo(); } return true; }