function edit($table, $vyber, $sub, $id, $page = 1) { $error_msg = array(); if ($_POST[submit]) { $meno = sec_sql(sec_input($_POST["meno"])); $adresa = sec_sql(sec_input($_POST["adresa"])); $ico_icdph = sec_sql(sec_input($_POST["ico_icdph"])); $telefon = sec_sql(sec_input($_POST["telefon"])); $skupina = sec_sql(sec_input($_POST["skupina"])); $id_c_hladina = sec_sql(sec_input($_POST["id_c_hladina"])); $id_perm_uroven = sec_sql(sec_input($_POST["id_perm_uroven"])); $hodnota = sec_sql(sec_input($_POST["hodnota"])); $email = sec_sql(sec_input($_POST["email"])); $email2 = sec_sql(sec_input($_POST["email2"])); $old_password = sec_sql(sec_input($_POST["old_password"])); $password = sec_sql(sec_input($_POST["password"])); $password_confirm = sec_sql(sec_input($_POST["password_confirm"])); $id_material = sec_sql(sec_input($_POST["id_material"])); $id_vyrobca = sec_sql(sec_input($_POST["id_vyrobca"])); $stvorakov = sec_sql(sec_input($_POST["stvorakov"])); $stvorakov = str_replace(',', '.', $stvorakov); $hodnota_csv = sec_sql(sec_input($_POST["hodnota_csv"])); $id = sec_sql(sec_input($_POST["id"])); $zobraz_vo_formulari = intval(sec_sql(sec_input($_POST["zobraz_vo_formulari"]))); $skryt_zakaznikom = intval(sec_sql(sec_input($_POST["skryt_zakaznikom"]))); if (strlen($meno) > 30 or strlen($meno) < 1) { $error_msg[] = "Meno môže mať od 1 do 30 znakov"; } if ($table == "vyrobca") { if (strlen($hodnota) > 30 or strlen($hodnota) < 1) { $error_msg[] = "Hodnota môže mať od 1 do 30 znakov"; } } if ($table == "hrana") { //var_dump($zobraz_vo_formulari); if ($zobraz_vo_formulari < 0) { $error_msg[] = "Zobraz vo formulari ma nesprávnu hodnotu"; } if (strlen($hodnota_csv) > 5 or strlen($hodnota_csv) < 1) { $error_msg[] = "hodnota pre csv je povinný údaj a môže mať 5 znakov"; } } if ($table == "dekor") { if ($_FILES["subor"]["name"]) { $file_c = count($_FILES["subor"]["name"]); if (!empty($_FILES["subor"]["name"]) and strlen($_FILES["subor"]["name"]) > 4) { //echo "ok<br>"; $data[file_ext] = strtolower(end(explode(".", $_FILES["subor"]["name"]))); $data[file_name] = $id; $data[file_name_old] = $_FILES["subor"]["name"]; $data[file_tmp_name] = $_FILES["subor"]["tmp_name"]; $data[file_size] = $_FILES["subor"]["size"]; //echo "ok<br>"; } $form_data_file = array("file_name" => $data[file_name], "file_ext" => $data[file_ext], "file_size" => $data[file_size]); $file_validate = dekor_img_validate($form_data_file); } if (count($file_validate) > 0) { foreach ($file_validate as $message) { $error_msg[] = $message; } } } if ($table == "uzivatel") { //var_dump($skupina); if (!is_numeric($skupina) or empty($skupina)) { $error_msg[] = "skupina ma nesprávnu hodnotu"; } //if(!is_numeric($id_c_hladina) or empty($id_c_hladina)) $error_msg[] = "cenova hladina ma nesprávnu hodnotu"; if ($skupina == 2) { if (strlen($email) > 50 or strlen($email) < 8) { $error_msg[] = "email je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($adresa) > 40 or strlen($adresa) < 6) { $error_msg[] = "adresa je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($telefon) > 20 or strlen($telefon) < 5) { $error_msg[] = "telefon je povinný údaj a môže mať od 8 do 50 znakov"; } if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $error_msg[] = "email je v nesprávnom tvare"; } } if (!is_numeric($id) or empty($id)) { $error_msg[] = "ID ma nesprávnu hodnotu"; } if (!empty($password) and !empty($old_password) and !empty($password_confirm)) { $old_password_original = sql_query("SELECT heslo FROM {$table} WHERE id={$id} AND heslo=\"" . md5($old_password) . "\" LIMIT 1"); if (count($old_password_original) < 1) { $error_msg[] = "Staré heslo nie je správne"; } if (strlen($password) < 4 or strlen($password) > 30) { $error_msg[] = "Heslo môže mať od 5 do 30 znakov"; } if ($password != $password_confirm) { $error_msg[] = "Heslá nie sú identické"; } } } //var_dump($error_msg); if (empty($error_msg)) { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\"\n WHERE id = {$id}"; if ($table == "vyrobca") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\",\n skryt_zakaznikom=\"{$skryt_zakaznikom}\"\n WHERE id = {$id}"; } if ($table == "cp_abs_vyrobca") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\"\n WHERE id = {$id}"; } if ($table == "dekor") { if (empty($stvorakov) or $stvorakov <= 0) { $stvorakov = def_value("default_stvorak", "hodnota"); } $hodnota = rep_dia($hodnota, 1); $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\", id_vyrobca=\"{$id_vyrobca}\",\n stvorakov=\"{$stvorakov}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\"\n WHERE id = {$id}"; if ($data) { $directory = "assets/images/dekor/"; if (!file_exists($directory)) { mkdir($directory, 0777, true); } $filename = $data["file_tmp_name"]; $max_size = 250; // percentage of resize // Content type //header('Content-type: image/jpeg'); // Get new dimensions list($width, $height) = getimagesize($filename); if ($width > $height) { $percent = $max_size / $width; $new_width = $max_size; $new_height = $height * $percent; } else { $percent = $max_size / $height; $new_height = $max_size; $new_width = $width * $percent; } // Resample $image_p = imagecreatetruecolor($new_width, $new_height); $image = imagecreatefromjpeg($filename); imagecopyresampled($image_p, $image, 0, 0, 0, 0, $new_width, $new_height, $width, $height); // Output imagejpeg($image_p, $directory . "/" . $data["file_name"] . "." . $data["file_ext"], 100); move_uploaded_file($data["file_tmp_name"], $directory . "/orig_" . $data["file_name"] . "." . $data["file_ext"]); //exit(); } } if ($table == "hrana") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", hodnota_csv=\"{$hodnota_csv}\",\n zobraz_vo_formulari = \"{$zobraz_vo_formulari}\"\n WHERE id = {$id}"; } if ($table == "hrubka") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\"\n WHERE id = {$id}"; } if ($table == "uzivatel") { if (empty($password) or empty($old_password) or empty($password_confirm)) { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", adresa = \"{$adresa}\", ico_icdph = \"{$ico_icdph}\", \n email = \"{$email}\", email2 = \"{$email2}\", telefon = \"{$telefon}\", skupina = \"{$skupina}\",\n id_c_hladina = \"{$id_c_hladina}\", perm_uroven_id = \"{$id_perm_uroven}\"\n WHERE id = {$id}"; } else { $password = md5($password); $query = "UPDATE {$table}\n SET meno = \"{$meno}\", email = \"{$email}\", heslo = \"{$password}\"\n WHERE id = {$id}"; } } sql_update($query); //echo $id_perm_uroven; header("location: index.php?vyber=nastavenia&sub={$table}&page={$page}"); exit; } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select id, hodnota, meno from " . PREFIX . "{$table} WHERE id={$id}"; if ($table == "vyrobca") { $query = "Select id, id_material, hodnota, meno, skryt_zakaznikom from {$table} WHERE id={$id}"; } if ($table == "cp_abs_vyrobca") { $query = "Select id, meno from {$table} WHERE id={$id}"; } if ($table == "dekor") { $query = "Select id, id_material, id_vyrobca, hodnota, meno, stvorakov, skryt_zakaznikom from {$table} WHERE id={$id}"; } if ($table == "hrana") { $query = "Select id, hodnota, hodnota_csv, meno, zobraz_vo_formulari from {$table} WHERE id={$id}"; } if ($table == "hrubka") { $query = "Select id, hodnota, meno, id_material from {$table} WHERE id={$id}"; } if ($table == "uzivatel") { $query = "Select id, meno, adresa, ico_icdph, telefon, email, email2, skupina, id_c_hladina, perm_uroven_id from {$table} WHERE id={$id}"; } $value = sql_query($query); $value = $value[0]; echo "<form method=\"POST\" enctype=\"multipart/form-data\">"; hidden("id", $value[id]); echo textfield("meno", $value[meno], "Meno", 50, 30); if ($table != "uzivatel" and $table != "cp_abs_vyrobca") { echo textfield("hodnota", $value[hodnota], "Hodnota", 50, 30); //echo "hej"; } if ($table == "vyrobca" or $table == "hrubka") { echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); } if ($table == "vyrobca") { $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); } if ($table == "dekor") { echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); echo select("id_vyrobca", "Výrobca", "SELECT id, hodnota, meno FROM vyrobca WHERE vymaz=0", $value[id_vyrobca]); $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); echo textfield("stvorakov", $value[stvorakov], "stvorakov v tab.", 20, 10); file_upload("subor", "subor", "Príloha"); if (isset($_GET["rotate"])) { $rotate = sec_input($_GET["rotate"]); } if ($rotate == 1) { $rotateFilename = "assets/images/dekor/{$value[id]}.jpg"; // PATH if (file_exists($rotateFilename)) { $degrees = 90; //header('Content-type: image/jpeg'); $source = imagecreatefromjpeg($rotateFilename); // Rotate $rotate = imagerotate($source, $degrees, 0); imagejpeg($rotate, $rotateFilename, 100); imagedestroy($source); imagedestroy($rotate); //echo "ok"; } } if (file_exists("assets/images/dekor/{$value[id]}.jpg")) { echo "<img src=\"assets/images/dekor/{$value[id]}.jpg?rand=" . microtime() . "\">"; echo "<br><a href=\"?vyber={$vyber}&sub={$sub}&action=edit&id={$id}&page={$page}&rotate=1\">Otočiť obrázok o 90st doprava</a>"; } } if ($table == "hrana") { //var_dump($value); $zobraz_vo = array(1 => "zobraz", 0 => "nezobrazuj"); echo textfield("hodnota_csv", $value[hodnota_csv], "Hodnota pre CSV", 40, 20); echo select("zobraz_vo_formulari", "vo formulári", "", $value[zobraz_vo_formulari], "", "", "", "NO", $zobraz_vo); } if ($table == "uzivatel") { if ($id == 1) { echo "<strong>Nie je možné upravovať hlavného administrátora!</strong>"; die; } echo textfield("adresa", $value[adresa], "adresa", 40, 20); echo textfield("ico_icdph", $value[ico_icdph], "ičo / ičdph", 40, 20); echo textfield("telefon", $value[telefon], "telefón", 40, 20); echo textfield("email", $value[email], "email", 40, 20); echo textfield("email2", $value[email2], "email2", 40, 20); echo select("skupina", "Skupina", "SELECT id, meno FROM uzivatel_skupina WHERE vymaz=0", $value[skupina], "", "", "", "NO"); echo select("id_c_hladina", "Cen.hladina", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $value[id_c_hladina]); echo select("id_perm_uroven", "Úroveň zabezp.", "SELECT id, meno FROM perm_uroven WHERE vymaz=0", $value[perm_uroven_id]); echo textfield("old_password", $value[password], "Staré heslo", 40, 20); echo textfield("password", $value[password], "Nové heslo", 40, 20); echo textfield("password_confirm", "", "zopakujte heslo", 40, 20); } echo submit("submit", "Odoslať"); echo "<a href=\"?vyber={$vyber}&sub={$sub}\">Späť</a>"; echo "</form>"; }
function edit($table, $vyber, $sub, $id, $page = 1) { $error_msg = array(); if ($_POST[submit]) { //var_dump($_POST); //exit(); $meno = sec_sql(sec_input($_POST["meno"])); $adresa = sec_sql(sec_input($_POST["adresa"])); $mesto = sec_sql(sec_input($_POST["mesto"])); $psc = sec_sql(sec_input($_POST["psc"])); $ico = sec_sql(sec_input($_POST["ico"])); $dic = sec_sql(sec_input($_POST["dic"])); $doruc_meno = sec_sql(sec_input($_POST["doruc_meno"])); $doruc_adresa = sec_sql(sec_input($_POST["doruc_adresa"])); $doruc_mesto = sec_sql(sec_input($_POST["doruc_mesto"])); $doruc_psc = sec_sql(sec_input($_POST["doruc_psc"])); $doruc_telefon = sec_sql(sec_input($_POST["doruc_telefon"])); $telefon = sec_sql(sec_input($_POST["telefon"])); $skupina = sec_sql(sec_input($_POST["skupina"])); $id_perm_uroven = sec_sql(sec_input($_POST["id_perm_uroven"])); $email = sec_sql(sec_input($_POST["email"])); $email2 = sec_sql(sec_input($_POST["email2"])); $old_password = sec_sql(sec_input($_POST["old_password"])); $password = sec_sql(sec_input($_POST["password"])); $password_confirm = sec_sql(sec_input($_POST["password_confirm"])); $id_product_type = sec_sql(sec_input($_POST["product_type"])); $id_product = sec_sql(sec_input($_POST["product"])); $montazny_balik = sec_sql(sec_input($_POST["montazny_balik"])); $ean = sec_sql(sec_input($_POST["ean"])); $id_product_atribute = sec_sql(sec_input($_POST["product_atribute"])); $c_hladina = sec_sql(sec_input($_POST["c_hladina"])); if (isset($_POST["product_types"])) { foreach ($_POST["product_types"] as $product_t) { $product_types[] = sec_sql(sec_input($product_t)); } } if (isset($_POST["product_packages"])) { foreach ($_POST["product_packages"] as $product_p) { $product_packages[] = sec_sql(sec_input($product_p)); } } $id = sec_sql(sec_input($_POST["id"])); $zobraz_vo_formulari = intval(sec_sql(sec_input($_POST["zobraz_vo_formulari"]))); $skryt_zakaznikom = intval(sec_sql(sec_input($_POST["skryt_zakaznikom"]))); $skryt_prihlasenym = intval(sec_sql(sec_input($_POST["skryt_prihlasenym"]))); $def = intval(sec_sql(sec_input($_POST["def"]))); $skryt_atributy = intval(sec_sql(sec_input($_POST["skryt_atributy"]))); //var_dump($_POST); //exit(); if ($table != "ean") { if (strlen($meno) > 30 or strlen($meno) < 1) { $error_msg[] = "Meno môže mať od 1 do 30 znakov"; } } if ($table == "ean") { if (strlen($ean) > 13 or strlen($ean) < 13) { $error_msg[] = "EAN kód môže mať iba 13 znakov"; } $code = "2-" . $id_product . "-" . $id_product_atribute; $before = sql_query("SELECT code from {$table} WHERE id=" . $id)[0]["code"]; $exist = 0; if ($code == $before) { $exist = 0; } else { $exists = sql_query("SELECT id from {$table} WHERE code=\"{$code}\""); if (count($exists) > 0) { $exist = 1; } } //dd($exists); if ($exist == 1) { $error_msg[] = "Tento produkt sa už nachádza v databáze"; } } if ($table == "hrana") { //var_dump($zobraz_vo_formulari); if ($zobraz_vo_formulari < 0) { $error_msg[] = "Zobraz vo formulari ma nesprávnu hodnotu"; } if (strlen($hodnota_csv) > 5 or strlen($hodnota_csv) < 1) { $error_msg[] = "hodnota pre csv je povinný údaj a môže mať 5 znakov"; } } if ($table == "dekor") { if ($_FILES["subor"]["name"]) { $file_c = count($_FILES["subor"]["name"]); if (!empty($_FILES["subor"]["name"]) and strlen($_FILES["subor"]["name"]) > 4) { //echo "ok<br>"; $data[file_ext] = strtolower(end(explode(".", $_FILES["subor"]["name"]))); $data[file_name] = $id; $data[file_name_old] = $_FILES["subor"]["name"]; $data[file_tmp_name] = $_FILES["subor"]["tmp_name"]; $data[file_size] = $_FILES["subor"]["size"]; //echo "ok<br>"; } $form_data_file = array("file_name" => $data[file_name], "file_ext" => $data[file_ext], "file_size" => $data[file_size]); $file_validate = dekor_img_validate($form_data_file); } if (count($file_validate) > 0) { foreach ($file_validate as $message) { $error_msg[] = $message; } } } if ($table == "uzivatel") { //var_dump($skupina); if (!is_numeric($skupina) or empty($skupina)) { $error_msg[] = "skupina ma nesprávnu hodnotu"; } //if(!is_numeric($id_c_hladina) or empty($id_c_hladina)) $error_msg[] = "cenova hladina ma nesprávnu hodnotu"; if ($skupina == 2) { if (strlen($email) > 50 or strlen($email) < 8) { $error_msg[] = "email je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($adresa) > 40 or strlen($adresa) < 6) { $error_msg[] = "adresa je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($telefon) > 20 or strlen($telefon) < 5) { $error_msg[] = "telefon je povinný údaj a môže mať od 8 do 50 znakov"; } if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $error_msg[] = "email je v nesprávnom tvare"; } } if (!is_numeric($id) or empty($id)) { $error_msg[] = "ID ma nesprávnu hodnotu"; } if (!empty($password) and !empty($old_password) and !empty($password_confirm)) { $old_password_original = sql_query("SELECT heslo FROM {$table} WHERE id={$id} AND heslo=\"" . md5($old_password) . "\" LIMIT 1"); if (count($old_password_original) < 1) { $error_msg[] = "Staré heslo nie je správne"; } if (strlen($password) < 4 or strlen($password) > 30) { $error_msg[] = "Heslo môže mať od 5 do 30 znakov"; } if ($password != $password_confirm) { $error_msg[] = "Heslá nie sú identické"; } } } //var_dump($error_msg); if (empty($error_msg)) { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\" \r\n WHERE id = {$id}"; if ($table == "product_type") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "product") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", id_product_type=\"{$id_product_type}\", montazny_balik = \"{$montazny_balik}\",\r\n skryt_zakaznikom=\"{$skryt_zakaznikom}\", skryt_prihlasenym=\"{$skryt_prihlasenym}\", skryt_atributy = \"{$skryt_atributy}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "product_delivery") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "product_atribute") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "ean") { $query = "UPDATE {$table}\r\n SET code = \"{$code}\", ean=\"{$ean}\"\r\n WHERE id = {$id}"; } if ($table == "product_atribute_option") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", id_product_atribute=\"{$id_product_atribute}\",\r\n id_c_hladina = \"{$c_hladina}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "cp_abs_vyrobca") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\"\r\n WHERE id = {$id}"; } if ($table == "dekor") { if (empty($stvorakov) or $stvorakov <= 0) { $stvorakov = def_value("default_stvorak", "hodnota"); } $hodnota = rep_dia($hodnota, 1); $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\", id_vyrobca=\"{$id_vyrobca}\",\r\n stvorakov=\"{$stvorakov}\", kubikov=\"{$kubikov}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\"\r\n WHERE id = {$id}"; if ($data) { $directory = "assets/images/dekor/"; if (!file_exists($directory)) { mkdir($directory, 0777, true); } $filename = $data["file_tmp_name"]; $max_size = 250; // percentage of resize // Content type //header('Content-type: image/jpeg'); // Get new dimensions list($width, $height) = getimagesize($filename); if ($width > $height) { $percent = $max_size / $width; $new_width = $max_size; $new_height = $height * $percent; } else { $percent = $max_size / $height; $new_height = $max_size; $new_width = $width * $percent; } // Resample $image_p = imagecreatetruecolor($new_width, $new_height); $image = imagecreatefromjpeg($filename); imagecopyresampled($image_p, $image, 0, 0, 0, 0, $new_width, $new_height, $width, $height); // Output imagejpeg($image_p, $directory . "/" . $data["file_name"] . "." . $data["file_ext"], 100); move_uploaded_file($data["file_tmp_name"], $directory . "/orig_" . $data["file_name"] . "." . $data["file_ext"]); //exit(); } } if ($table == "uzivatel") { if (empty($password) or empty($old_password) or empty($password_confirm)) { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", adresa = \"{$adresa}\", mesto = \"{$mesto}\", ico = \"{$ico}\", \r\n psc = \"{$psc}\", dic = \"{$dic}\", doruc_meno = \"{$doruc_meno}\", \r\n doruc_adresa = \"{$doruc_adresa}\", doruc_mesto = \"{$doruc_mesto}\",\r\n doruc_psc = \"{$doruc_psc}\", doruc_telefon = \"{$doruc_telefon}\",\r\n email = \"{$email}\", email2 = \"{$email2}\", telefon = \"{$telefon}\", skupina = \"{$skupina}\",\r\n perm_uroven_id = \"{$id_perm_uroven}\"\r\n WHERE id = {$id}"; } else { $password = md5($password); $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", adresa = \"{$adresa}\", mesto = \"{$mesto}\", ico = \"{$ico}\", \r\n psc = \"{$psc}\", dic = \"{$dic}\", doruc_meno = \"{$doruc_meno}\", \r\n doruc_adresa = \"{$doruc_adresa}\", doruc_mesto = \"{$doruc_mesto}\",\r\n doruc_psc = \"{$doruc_psc}\", doruc_telefon = \"{$doruc_telefon}\",\r\n email = \"{$email}\", email2 = \"{$email2}\", telefon = \"{$telefon}\", skupina = \"{$skupina}\",\r\n perm_uroven_id = \"{$id_perm_uroven}\" heslo = \"{$password}\"\r\n WHERE id = {$id}"; } } sql_update($query); if ($table == "product_atribute") { $exists = sql_delete("DELETE from product_atribute_product_types\r\n WHERE id_product_atribute = {$id} \r\n "); foreach ($product_types as $product_type) { sql_insert("INSERT INTO product_atribute_product_types \r\n (id_product_atribute, id_product_type)\r\n VALUES\r\n ({$id}, {$product_type})\r\n "); } } if ($table == "product_delivery") { $exists = sql_delete("DELETE from product_delivery_product_types\r\n WHERE id_product_delivery = {$id} \r\n "); foreach ($product_types as $product_type) { sql_insert("INSERT INTO product_delivery_product_types \r\n (id_product_delivery, id_product_type)\r\n VALUES\r\n ({$id}, {$product_type})\r\n "); } } if ($table == "product") { $exists = sql_delete("DELETE from product_packages\r\n WHERE id_product = {$id} \r\n "); foreach ($product_packages as $package) { sql_insert("INSERT INTO product_packages \r\n (id_product, meno)\r\n VALUES\r\n ({$id}, \"{$package}\")\r\n "); } } //echo $id_perm_uroven; header("location: index.php?vyber=nastavenia&sub={$table}&page={$page}"); exit; } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select id, meno from " . PREFIX . "{$table} WHERE id={$id}"; if ($table == "product_type") { $query = "Select id, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "product") { $query = "Select id, id_product_type, meno, montazny_balik, skryt_zakaznikom, skryt_prihlasenym, skryt_atributy, def from {$table} WHERE id={$id}"; } if ($table == "ean") { $query = "Select id, code, ean from {$table} WHERE id={$id}"; } if ($table == "product_delivery") { $query = "Select id, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "product_atribute") { $query = "Select id, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "product_atribute_option") { $query = "Select id, id_product_atribute, id_c_hladina, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "cp_abs_vyrobca") { $query = "Select id, meno from {$table} WHERE id={$id}"; } if ($table == "dekor") { $query = "Select id, id_material, id_vyrobca, hodnota, meno, stvorakov, kubikov, skryt_zakaznikom from {$table} WHERE id={$id}"; } if ($table == "hrana") { $query = "Select id, hodnota, hodnota_csv, meno, zobraz_vo_formulari from {$table} WHERE id={$id}"; } if ($table == "hrubka") { $query = "Select id, hodnota, meno, id_material from {$table} WHERE id={$id}"; } if ($table == "uzivatel") { $query = "Select id, meno, adresa, mesto, psc, ico, dic, telefon, email, email2,\r\n doruc_meno, doruc_adresa, doruc_mesto, doruc_psc, doruc_telefon, skupina, perm_uroven_id \r\n FROM {$table} WHERE id={$id}"; } $value = sql_query($query); $value = $value[0]; echo "<form method=\"POST\" enctype=\"multipart/form-data\" class=\"nastavenia_form\">"; echo hidden("id", $value[id]); if ($table != "ean") { echo textfield("meno", $value[meno], "Meno", 50, 30); } if ($table == "product_type") { $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákazníkom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); } if ($table == "ean") { $arr = explode("-", $value["code"]); echo select("product", "Produkt", "SELECT id, meno FROM product WHERE vymaz=0 AND id_product_type=2 ORDER BY meno ASC", $arr[1], "-vyberte si-", "", "", "NO"); echo select("product_atribute", "rozmer", "SELECT id, meno FROM product_atribute_option WHERE id_product_atribute=2 AND vymaz=0 ORDER BY def DESC, meno ASC", $arr[2], "-vyberte si-", "", "", "NO"); echo textfield("ean", $value["ean"], "EAN *", 13, 16); } if ($table == "product") { echo select("product_type", "Typ produktu", "SELECT id, meno FROM product_type WHERE vymaz=0", $value[id_product_type]); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); } if ($table == "product") { $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákazníkom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); echo select("skryt_prihlasenym", "zobraz prihláseným", "", $value[skryt_prihlasenym], "", "", "", "NO", $zobraz_vo); echo select("skryt_atributy", "zobraz atribúty", "", $value[skryt_atributy], "", "", "", "NO", $zobraz_vo); echo textfield("montazny_balik", $value[montazny_balik], "Mont. balík", 20, 15); $product_packages = sql_query("SELECT id, meno FROM product_packages WHERE id_product={$id}"); echo '<div class="input_fields_wrap">'; $count = 1; //var_dump($product_packages); if (count($product_packages) > 0) { foreach ($product_packages as $package) { echo "<div><label>Balenie</label><input type=\"text\" name=\"product_packages[]\" size=15 maxlength=25 value=\"{$package["meno"]}\"><a href=\"#\" class=\"remove_field\">X</a></div>"; $count = $count + 1; } } else { echo '<div><label>Balenie</label><input type="text" name="product_packages[]" size=15 maxlength=25><a href="#" class="remove_field">X</a></div>'; } echo "</div>"; echo '<button class="add_field_button">Vlož ďalšie balenie</button>'; } if ($table == "product_atribute") { //echo select("product_type", "Typ produktu", "SELECT id, meno FROM product_type WHERE vymaz=0", $value[id_product_type]); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); $selected = sql_query("SELECT id_product_type from product_atribute_product_types\r\n WHERE id_product_atribute = {$id}\r\n "); foreach ($selected as $select) { $sel[] = $select[id_product_type]; } $product_types = sql_query("SELECT id, meno FROM product_type WHERE vymaz=0"); foreach ($product_types as $product_type) { $checked = in_array($product_type["id"], $sel) ? "checked" : ""; echo "<input type=\"checkbox\" name=\"product_types[]\" value=\"{$product_type["id"]}\" {$checked}>{$product_type["meno"]}<br>"; } } if ($table == "product_delivery") { //echo select("product_type", "Typ produktu", "SELECT id, meno FROM product_type WHERE vymaz=0", $value[id_product_type]); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); $selected = sql_query("SELECT id_product_type from product_delivery_product_types\r\n WHERE id_product_delivery = {$id}\r\n "); foreach ($selected as $select) { $sel[] = $select[id_product_type]; } $product_types = sql_query("SELECT id, meno FROM product_type WHERE vymaz=0"); foreach ($product_types as $product_type) { $checked = in_array($product_type["id"], $sel) ? "checked" : ""; echo "<input type=\"checkbox\" name=\"product_types[]\" value=\"{$product_type["id"]}\" {$checked}>{$product_type["meno"]}<br>"; } } if ($table == "product_atribute_option") { echo select("product_atribute", "Filtruj Atribút", "SELECT a.id as id, a.meno as meno \r\n FROM product_atribute as a \r\n WHERE a.vymaz=0 ORDER BY a.meno", $value[id_product_atribute]); echo select("c_hladina", "Cen. hladina", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $value[id_c_hladina], "", "", "", "NO"); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); } if ($table == "vyrobca") { $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); } if ($table == "dekor") { echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); echo select("vyrobca", "Výrobca", "SELECT id, hodnota, meno FROM vyrobca WHERE vymaz=0", $value[id_vyrobca]); $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); file_upload("subor", "subor", "Príloha"); if (isset($_GET["rotate"])) { $rotate = sec_input($_GET["rotate"]); } if ($rotate == 1) { $rotateFilename = "assets/images/dekor/{$value[id]}.jpg"; // PATH if (file_exists($rotateFilename)) { $degrees = 90; //header('Content-type: image/jpeg'); $source = imagecreatefromjpeg($rotateFilename); // Rotate $rotate = imagerotate($source, $degrees, 0); imagejpeg($rotate, $rotateFilename, 100); imagedestroy($source); imagedestroy($rotate); //echo "ok"; } } if (file_exists("assets/images/dekor/{$value[id]}.jpg")) { echo "<img src=\"assets/images/dekor/{$value[id]}.jpg?rand=" . microtime() . "\">"; echo "<br><a href=\"?vyber={$vyber}&sub={$sub}&action=edit&id={$id}&page={$page}&rotate=1\">Otočiť obrázok o 90st doprava</a>"; } } if ($table == "uzivatel") { if ($id == 1) { echo "<strong>Nie je možné upravovať hlavného administrátora!</strong>"; die; } echo textfield("adresa", $value[adresa], "adresa", 40, 20); echo textfield("mesto", $value[mesto], "Mesto", 50, 20); echo textfield("psc", $value[psc], "PSČ", 50, 20); echo textfield("ico", $value[ico], "IČO", 15, 20); echo textfield("dic", $value[dic], "DIČ", 15, 20); echo textfield("doruc_meno", $value[doruc_meno], "Meno doručenia", 40, 20); echo textfield("doruc_adresa", $value[doruc_adresa], "Adresa doručenia", 50, 20); echo textfield("doruc_mesto", $value[doruc_mesto], "Mesto doručenia", 50, 20); echo textfield("doruc_psc", $value[doruc_psc], "PSČ doručenia", 50, 20); echo textfield("doruc_telefon", $value[doruc_telefon], "Telefon doručenia", 50, 20); echo textfield("telefon", $value[telefon], "telefón", 40, 20); echo textfield("email", $value[email], "email", 40, 20); echo textfield("email2", $value[email2], "email2", 40, 20); echo select("skupina", "Skupina", "SELECT id, meno FROM uzivatel_skupina WHERE vymaz=0", $value[skupina], "", "", "", "NO"); echo select("id_perm_uroven", "Úroveň zabezp.", "SELECT id, meno FROM perm_uroven WHERE vymaz=0", $value[perm_uroven_id]); echo textfield("old_password", $value[password], "Staré heslo", 40, 20); echo textfield("password", $value[password], "Nové heslo", 40, 20); echo textfield("password_confirm", "", "zopakujte heslo", 40, 20); } echo submit("submit", "Odoslať"); echo "<a href=\"?vyber={$vyber}&sub={$sub}\">Späť</a>"; echo "</form>"; }