function updateUserImage($path, $file, $tmpfile, $max, $id) { $id = secureInput($id); if (empty($file)) { return 1; } if (!getimagesize($tmpfile)) { return false; } if (checkImageSize($tmpfile, $max)) { return 2; } if (checkAllowedExt($file)) { return 3; } //look up old image path then remove the file before preceding with the new image upload $sql = "SELECT thumb_path,img_path FROM users WHERE id = '" . $id . "'"; $res = mysql_query($sql); $row = mysql_fetch_assoc($res); $del = $row["thumb_path"]; $delg = $row["img_path"]; if (!empty($del)) { $dir = pathinfo($del, PATHINFO_DIRNAME); $ext = pathinfo($del, PATHINFO_EXTENSION); $base = pathinfo($del, PATHINFO_FILENAME); $base_path = "{$dir}/{$base}"; unlink("{$del}"); unlink("{$base_path}" . "_thumb" . "." . "{$ext}"); } if (!empty($delg)) { $dirg = pathinfo($delg, PATHINFO_DIRNAME); $extg = pathinfo($delg, PATHINFO_EXTENSION); $baseg = pathinfo($delg, PATHINFO_FILENAME); $gbase_path = "{$dirg}/{$baseg}"; unlink("{$delg}"); unlink("{$gbase_path}" . "." . "{$extg}"); } $save_path = moveUploadImage($path, $file, $tmpfile, $max, $id); if (!empty($save_path)) { $ext = pathinfo($save_path, PATHINFO_EXTENSION); $base = pathinfo($save_path, PATHINFO_FILENAME); $dir = pathinfo($save_path, PATHINFO_DIRNAME); $base_path = "{$dir}/{$base}"; $save_thumb_path = "{$base_path}" . "_thumb" . "." . "{$ext}"; $sql = "UPDATE users SET thumb_path = '" . $save_thumb_path . "', img_path = '" . $save_path . "' WHERE id = '" . $id . "'"; $res = mysql_query($sql) or die(mysql_error()); } if ($res) { return 99; } return 4; }
header("Location: /404.html"); } } //end insertDataOfUser() /* Data from the input field of HTML */ $email = $_POST["email"]; $confirm_email = $_POST["confirm_email"]; $pass = $_POST["pass"]; $confirm_pass = $_POST["confirm_pass"]; /* Data on the loaded image */ $path = $_FILES["photo"]["tmp_name"]; $size = $_FILES["photo"]["size"]; $nameImage = $_FILES["photo"]["name"]; /* Check data */ $valClass = new Validation(); $valClass->emptyFields($_POST); $valClass->clean($_POST); $valClass->validationEmail($email); $valClass->validationPassword($pass); $valClass->confirmFields($email, $confirm_email); $valClass->confirmFields($pass, $confirm_pass); checkImageSize($size); saveImageAndRename($path, $email, $nameImage); insertDataOfUser($email, $pass); header("Location: http://localhost/public/html/index.html");