public static function InsertToDB($request, $lang_vers = 'rus', $glob_id = 0) { global $db_connection; global $link_to_text_part_images; $link_id = $db_connection->real_escape_string($request->link_id); $author_id = $db_connection->real_escape_string($request->author_id); $name = $db_connection->real_escape_string($request->name); $priority = $db_connection->real_escape_string($request->priority); $role = $db_connection->real_escape_string($request->role); $insert_table = TextPart::$table; if ($lang_vers !== 'rus') { $insert_table .= '_' . $lang_vers; } $max_id = self::GetMaximalID() + 1; $insert_id = -1; if ($glob_id !== 0) { $insert_id = $glob_id; } else { $insert_id = $max_id; } $res = $db_connection->query("INSERT INTO `" . $insert_table . "` (`id`, `link_id`, `author_id`, `name`, `priority`, `role`, `text_block`, `creating_date`) VALUES ('" . $insert_id . "', '" . $link_id . "', '" . $author_id . "', '" . $name . "', '" . $priority . "', '" . $role . "', '', CURRENT_TIMESTAMP)"); if (!$res) { echo $db_connection->error; return false; } $id = $db_connection->insert_id; if ($glob_id === 0) { $request->text_block = preg_replace('/tmp_(\\d+)\\//', $id . '/', $request->text_block); } $text_block = $db_connection->real_escape_string($request->text_block); $res = $db_connection->query("UPDATE `" . $insert_table . "` SET `text_block`=\"" . $text_block . "\" WHERE `id`=" . $id); if (!$res) { echo $db_connection->error; $db_connection->query("DELETE FROM `" . $insert_table . "` WHERE `id` = " . $id); return false; } $request->id = $id; if ($glob_id === 0) { recurse_copy($link_to_text_part_images . 'tmp_' . User::GetIDByLogin(GetUserLogin()), $link_to_text_part_images . $id); } return true; }
$content .= '</script>'; $content .= '<div class="row">'; $content .= DialogInputsYesNo('edit', $_REQUEST['type'], $dir_id, Language::Word('save'), Language::Word('cancel')); $content .= '</div>'; $content .= '</form>'; $title = Language::Word('direction editing'); $header = $title; } else { if (isset($_REQUEST['add_lang'])) { $direction = Direction::FetchByID($_REQUEST['id']); $dir_langs = $direction->FetchLanguages(); $free_languages = array_diff($languages, $dir_langs); if (count($free_languages) === 0) { $content = AlertMessage('alert-danger', Language::Word('all languages of this direction is implemented')); } else { $id = User::GetIDByLogin($_SESSION['user_login']); clear_tmp_images_dir(Direction::$type, $id); global $link_to_utility_sql_worker; global $link_to_img_upload; global $link_to_img_browse; global $languages; $content .= '<form method="post" action="' . $link_to_utility_sql_worker . '" enctype="multipart/form-data">'; $content .= PairLabelAndInput(4, 5, Language::Word('header'), 'name', Language::Word('insert header')) . '<br>'; $content .= PairLabelAndInputFile(4, 5, Language::Word('cover'), 'cover'); $content .= PairLabelAndSelect(4, 5, Language::Word('language'), 'language', $free_languages, array(key($free_languages), current($free_languages))); $content .= WrapToHiddenInputs(array('type' => Direction::$type, 'yes' => '', 'id' => $id, 'glob_id' => $direction->id)); $content .= '<div class="row"><h3>' . Language::Word('text') . '</h3></div>'; $content .= '<div class="row">'; $content .= '<div class="' . ColAllTypes(8) . ' ' . ColOffsetAllTypes(2) . '" align="center">'; $content .= '<textarea id="text_block" name="text_block"></textarea>'; $content .= '</div>';
public static function InsertToDB($request, $lang_vers = 'rus', $glob_id = 0) { global $db_connection; global $link_to_article_images; global $languages; $author_id = $db_connection->real_escape_string($request->author_id); $name = $db_connection->real_escape_string($request->name); $annotation = $db_connection->real_escape_string($request->annotation); $insert_table = self::$table; if ($lang_vers !== 'rus') { $insert_table .= '_' . $lang_vers; } $max_id = self::GetMaximalID() + 1; $insert_id = -1; if ($glob_id !== 0) { $insert_id = $glob_id; } else { $insert_id = $max_id; } $res = $db_connection->query("INSERT INTO `" . $insert_table . "` (`id`, `author_id`, `name`, `annotation`, `text_block`, `creating_date`) VALUES ('" . $insert_id . "', '" . $author_id . "', '" . $name . "', '" . $annotation . "', '', CURRENT_TIMESTAMP)"); if (!$res) { return false; } $id = $db_connection->insert_id; if ($glob_id === 0) { $request->SetTextBlock(preg_replace('/tmp_(\\d+)\\//', $id . '/', $request->text_block)); } $text_block = $db_connection->real_escape_string($request->text_block); $res = $db_connection->query("UPDATE `" . $insert_table . "` SET `text_block`=\"" . $text_block . "\" WHERE `id`=" . $id); if (!$res) { echo $db_connection->error; $db_connection->query("DELETE FROM `" . $insert_table . "` WHERE `id` = " . $id); return false; } $request->SetID($id); $upload_path = ''; if ($glob_id === 0) { recurse_copy($link_to_article_images . 'tmp_' . User::GetIDByLogin(GetUserLogin()), $link_to_article_images . $id); } if (is_uploaded_file($_FILES['cover']['tmp_name'])) { $img_name = 'cover'; if ($lang_vers !== 'rus') { $img_name .= '_' . $lang_vers; } $sepext = explode('.', strtolower($_FILES['cover']['name'])); $type = end($sepext); $img_name .= '.' . $type; $upload_path = $link_to_article_images . $id . '/' . $img_name; if (move_uploaded_file($_FILES['cover']['tmp_name'], $upload_path)) { $request->SetPathToImage($upload_path); } } $request->RemoveFromCache(); self::RemoveFromCacheMeta(); return true; }