}elseif(defined('CONFIG_UPLOAD_MAXSIZE') && CONFIG_UPLOAD_MAXSIZE && $upload->isSizeTooBig(CONFIG_UPLOAD_MAXSIZE))
{
$error = sprintf(ERROR_FILE_TOO_BID, transformFileSize(CONFIG_UPLOAD_MAXSIZE));
}else
{
include_once(CLASS_FILE);
$path = $upload->getFilePath();
$obj = new file($path);
$tem = $obj->getFileInfo();
if(sizeof($tem))
{
include_once(CLASS_MANAGER);
$manager = new manager($upload->getFilePath(), false);
$fileType = $manager->getFileType($upload->getFileName());
foreach($fileType as $k=>$v)
{
$tem[$k] = $v;
}
$tem['path'] = backslashToSlash($path);
$tem['type'] = "file";
$tem['size'] = transformFileSize($tem['size']);
$tem['ctime'] = date(DATE_TIME_FORMAT, $tem['ctime']);
$tem['mtime'] = date(DATE_TIME_FORMAT, $tem['mtime']);
$tem['short_name'] = shortenFileName($tem['name']);
$tem['flag'] = 'noFlag';
$obj->close();
foreach($tem as $k=>$v)
public function updateKontrak()
{
if (isset($_POST['update_kontrak'])) {
$kontrak = new Kontrak();
$kontrak->kd_kontrak = $_POST['kd_kontrak'];
$kontrak->no_kontrak = $_POST['nomor'];
$kontrak->kd_jurusan = $_POST['jur'];
$kontrak->tgl_kontrak = date('Y-m-d', strtotime($_POST['tanggal']));
$kontrak->thn_masuk_kontrak = $_POST['tahun_masuk'];
$kontrak->jml_pegawai_kontrak = $_POST['jml_peg'];
$kontrak->lama_semester_kontrak = $_POST['lama_semester'];
$kontrak->nilai_kontrak = str_replace(',', '', $_POST['nilai_kontrak']);
$kontrak->kontrak_lama = $_POST['kontrak_lama'];
$upload = new Upload();
$upload->init('fupload');
//var_dump($kontrak);
if ($upload->getFileName() != "") {
$upload->setDirTo('files/');
$nama = array($kontrak->no_kontrak, $kontrak->tgl_kontrak);
$upload->changeFileName($upload->getFileName(), $nama);
$file_baru = $upload->getFileTo();
$kontrak->file_kontrak = $file_baru;
} else {
$file_lama = $_POST['fupload_lama'];
$kontrak->file_kontrak = $file_lama;
}
if ($kontrak->isEmpty($kontrak) == false) {
//var_dump($kontrak);
$kontrak->update($kontrak);
if ($file_baru != "") {
$upload->uploadFile();
}
header('location:' . URL . 'kontrak/display');
} else {
$url = URL . 'kontrak/editKontrak/' . $kontrak->kd_kontrak;
header("refresh:1;url=" . $url);
echo "Isian form belum lengkap";
//header('location:' . URL . 'kontrak/editKontrak/');
}
} else {
header('location:' . URL . 'kontrak/display');
}
}
public function updateUangSkripsi()
{
if (isset($_POST['ubah_uskripsi'])) {
if (isset($_POST['js']) && $_POST['js'] == 1) {
header('location:' . URL . 'elemenBeasiswa/viewSkripsi');
}
if ($_POST['kd_el'] && $_POST['setuju'] != "" && $_POST['r_elem'] != "" && $_POST['kode_jur'] != "" && $_POST['tahun_masuk'] != "" && $_POST['biaya_skripsi'] != "" && $_POST['total_bayar'] != "") {
$elem = new ElemenBeasiswa();
$pb = $_POST['setuju'];
$jml_peg = count($pb);
$elem->set_kd_d($_POST['kd_el']);
$elem->set_jml_peg($jml_peg);
$elem->set_kd_r($_POST['r_elem']);
$elem->set_kd_jur($_POST['kode_jur']);
$elem->set_thn_masuk($_POST['tahun_masuk']);
$elem->set_biaya_per_peg(str_replace(',', '', $_POST['biaya_skripsi']));
$elem->set_total_bayar(str_replace(',', '', $_POST['total_bayar']));
$elem->set_no_sp2d($_POST['no_sp2d']);
$elem->set_tgl_sp2d(date('Y-m-d', strtotime($_POST['tgl_sp2d'])));
//var_dump($elem);
//echo $kd_elemen_beasiswa;
//exit();
//var_dump($elem);
$upload = new Upload();
$upload->init('fupload');
if ($upload->getFileName() != "") {
$upload->setDirTo("files/sp2d/");
$nama = array($elem->get_no_sp2d(), $elem->get_tgl_sp2d());
//$upload->uploadFile2("", $nama);
if ($upload->uploadFile2("", $nama) == false) {
$url = URL . 'elemenBeasiswa/editJadup/' . $elem->get_kd_d();
echo '<script> alert("File gagal diupload.") </script>';
echo '<script language="JavaScript"> window.location.href ="' . $url . '" </script>';
exit;
}
$elem->set_file_sp2d($upload->getFileTo());
//echo $upload->getFileName();
if ($_POST['fupload_lama'] != "") {
$file = "files/sp2d/" . $_POST['fupload_lama'];
//echo $file;
if (file_exists($file)) {
unlink($file);
}
}
//echo $upload->getFileName();
} else {
if ($_POST['fupload_lama'] != "") {
$elem->set_file_sp2d($_POST['fupload_lama']);
//echo $_POST['fupload_lama'];
} else {
$elem->set_file_sp2d("");
}
}
$elem->update_elem($elem);
$penerima = new PenerimaElemenBeasiswa();
$penerima->delete($elem->get_kd_d());
foreach ($pb as $val) {
$penerima_elemen = new PenerimaElemenBeasiswa();
$penerima_elemen->kd_elemen_beasiswa = $elem->get_kd_d();
$penerima_elemen->kd_pb = $val;
$penerima_elemen->add($penerima_elemen);
}
ClassLog::write_log("elemen beasiswa", "ubah uang penelitian", "kd_el." . $elem->get_kd_d());
//$url = URL . 'elemenBeasiswa/editSkripsi/' . $elem->get_kd_d();
$url = URL . 'elemenBeasiswa/viewSkripsi';
echo '<script> alert("Data berhasil disimpan") </script>';
echo '<script language="JavaScript"> window.location.href ="' . $url . '" </script>';
} else {
header('location:' . URL . 'elemenBeasiswa/editSkripsi/' . $elem->get_kd_d());
}
} else {
header('location:' . URL . 'elemenBeasiswa/viewSkripsi');
}
}
function saveuser($uid, $name, $uname, $email, $femail, $url, $pass, $vpass, $bio, $user_avatar, $user_icq, $user_occ, $user_from, $user_intrest, $user_sig, $user_viewemail, $user_aim, $user_yim, $user_msnm, $attach, $usend_email, $uis_visible, $user_lnl, $C1, $C2, $C3, $C4, $C5, $C6, $C7, $C8, $M1, $M2, $T1, $T2, $B1, $MAX_FILE_SIZE, $raz_avatar)
{
global $NPDS_Prefix;
global $user, $userinfo, $system, $minpass;
$cookie = cookiedecode($user);
$check = $cookie[1];
$result = sql_query("SELECT uid, email FROM " . $NPDS_Prefix . "users WHERE uname='{$check}'");
list($vuid, $vemail) = sql_fetch_row($result);
if ($check == $uname and $uid == $vuid) {
if (isset($pass) && "{$pass}" != "{$vpass}") {
message_error("<i class=\"fa fa-exclamation\"></i> " . translate("Both passwords are different. They need to be identical.") . "<br /><br />", "");
} elseif ($pass != "" && strlen($pass) < $minpass) {
message_error("<i class=\"fa fa-exclamation\"></i> " . translate("Sorry, your password must be at least") . " <strong>{$minpass}</strong> " . translate("characters long") . "<br /><br />", "");
} else {
$stop = userCheck("edituser", $email);
if (!$stop) {
if ($bio) {
$bio = FixQuotes(strip_tags($bio));
}
if ($attach) {
$t = 1;
} else {
$t = 0;
}
if ($user_viewemail) {
$a = 1;
} else {
$a = 0;
}
if ($usend_email) {
$u = 1;
} else {
$u = 0;
}
if ($uis_visible) {
$v = 0;
} else {
$v = 1;
}
if ($user_lnl) {
$w = 1;
} else {
$w = 0;
}
if ($url != "") {
if (!substr_count($url, "http://")) {
$url = "http://" . $url;
}
if (trim($url) == "http://") {
$url = "";
}
}
include_once "modules/upload/upload.conf.php";
global $avatar_size;
if (!$avatar_size) {
$avatar_size = "80*100";
}
$avatar_limit = explode("*", $avatar_size);
if ($DOCUMENTROOT != "") {
$rep = $DOCUMENTROOT;
} else {
global $DOCUMENT_ROOT;
if ($DOCUMENT_ROOT) {
$rep = $DOCUMENT_ROOT;
} else {
$rep = $_SERVER['DOCUMENT_ROOT'];
}
}
if ($B1 != "none") {
global $language;
include_once "modules/upload/lang/upload.lang-{$language}.php";
include_once "modules/upload/clsUpload.php";
$upload = new Upload();
$upload->maxupload_size = $MAX_FILE_SIZE;
$field1_filename = trim($upload->getFileName("B1"));
$suffix = strtoLower(substr(strrchr($field1_filename, '.'), 1));
if ($suffix == "gif" or $suffix == "jpg" or $suffix == "png") {
$field1_filename = removeHack(preg_replace('#[/\\\\:\\*\\?"<>|]#i', '', rawurldecode($field1_filename)));
$field1_filename = preg_replace('#\\.{2}|config.php|/etc#i', '', $field1_filename);
if ($field1_filename) {
if ($autorise_upload_p) {
$user_dir = $racine . "/users_private/" . $uname . "/";
if (!is_dir($rep . $user_dir)) {
@umask("0000");
if (@mkdir($rep . $user_dir, 0777)) {
$fp = fopen($rep . $user_dir . "index.html", 'w');
fclose($fp);
} else {
$user_dir = $racine . "/users_private/";
}
}
} else {
$user_dir = $racine . "/users_private/";
}
if ($upload->saveAs($uname . "." . $suffix, $rep . $user_dir, "B1", true)) {
$old_user_avatar = $user_avatar;
$user_avatar = $user_dir . $uname . "." . $suffix;
$img_size = @getimagesize($rep . $user_avatar);
if ($img_size[0] > $avatar_limit[0] or $img_size[1] > $avatar_limit[1]) {
$raz_avatar = true;
}
if ($racine == "") {
$user_avatar = substr($user_avatar, 1);
}
}
}
}
}
if ($raz_avatar) {
if (strstr($user_avatar, "/users_private")) {
@unlink($rep . $user_avatar);
@unlink($rep . $old_user_avatar);
}
$user_avatar = "blank.gif";
}
if ($pass != '') {
cookiedecode($user);
if (!$system) {
$pass = crypt($pass, $pass);
}
sql_query("UPDATE " . $NPDS_Prefix . "users SET name='{$name}', email='{$email}', femail='" . removeHack($femail) . "', url='" . removeHack($url) . "', pass='******', bio='" . removeHack($bio) . "', user_avatar='{$user_avatar}', user_icq='" . removeHack($user_icq) . "', user_occ='" . removeHack($user_occ) . "', user_from='" . removeHack($user_from) . "', user_intrest='" . removeHack($user_intrest) . "', user_sig='" . removeHack($user_sig) . "', user_aim='" . removeHack($user_aim) . "', user_yim='" . removeHack($user_yim) . "', user_msnm='" . removeHack($user_msnm) . "', user_viewemail='{$a}', send_email='{$u}', is_visible='{$v}', user_lnl='{$w}' WHERE uid='{$uid}'");
$result = sql_query("SELECT uid, uname, pass, storynum, umode, uorder, thold, noscore, ublockon, theme FROM " . $NPDS_Prefix . "users WHERE uname='{$uname}' AND pass='******'");
if (sql_num_rows($result) == 1) {
$userinfo = sql_fetch_assoc($result);
docookie($userinfo['uid'], $userinfo['uname'], $userinfo['pass'], $userinfo['storynum'], $userinfo['umode'], $userinfo['uorder'], $userinfo['thold'], $userinfo['noscore'], $userinfo['ublockon'], $userinfo['theme'], $userinfo['commentmax'], "");
}
} else {
sql_query("UPDATE " . $NPDS_Prefix . "users SET name='{$name}', email='{$email}', femail='" . removeHack($femail) . "', url='" . removeHack($url) . "', bio='" . removeHack($bio) . "', user_avatar='{$user_avatar}', user_icq='" . removeHack($user_icq) . "', user_occ='" . removeHack($user_occ) . "', user_from='" . removeHack($user_from) . "', user_intrest='" . removeHack($user_intrest) . "', user_sig='" . removeHack($user_sig) . "', user_aim='" . removeHack($user_aim) . "', user_yim='" . removeHack($user_yim) . "', user_msnm='" . removeHack($user_msnm) . "', user_viewemail='{$a}', send_email='{$u}', is_visible='{$v}', user_lnl='{$w}' WHERE uid='{$uid}'");
}
sql_query("UPDATE " . $NPDS_Prefix . "users_status SET attachsig='{$t}' WHERE uid='{$uid}'");
$result = sql_query("SELECT uid FROM " . $NPDS_Prefix . "users_extend WHERE uid='{$uid}'");
if (sql_num_rows($result) == 1) {
sql_query("UPDATE " . $NPDS_Prefix . "users_extend SET C1='" . removeHack($C1) . "', C2='" . removeHack($C2) . "', C3='" . removeHack($C3) . "', C4='" . removeHack($C4) . "', C5='" . removeHack($C5) . "', C6='" . removeHack($C6) . "', C7='" . removeHack($C7) . "', C8='" . removeHack($C8) . "', M1='" . removeHack($M1) . "', M2='" . removeHack($M2) . "', T1='" . removeHack($T1) . "', T2='" . removeHack($T2) . "', B1='{$B1}' WHERE uid='{$uid}'");
} else {
$result = sql_query("INSERT INTO " . $NPDS_Prefix . "users_extend VALUES ('{$uid}','" . removeHack($C1) . "', '" . removeHack($C2) . "', '" . removeHack($C3) . "', '" . removeHack($C4) . "', '" . removeHack($C5) . "', '" . removeHack($C6) . "', '" . removeHack($C7) . "', '" . removeHack($C8) . "', '" . removeHack($M1) . "', '" . removeHack($M2) . "', '" . removeHack($T1) . "', '" . removeHack($T2) . "', '{$B1}')");
}
if ($pass != "") {
logout();
} else {
header("location: user.php?op=edituser");
}
} else {
message_error($stop, "");
}
}
} else {
Header("Location: index.php");
}
}
$param_picid = isset($_GET['p']) ? $_GET['p'] : '';
$param_page = isset($_GET['start']) ? $_GET['start'] : '';
/********************************************************
* Post d'un fichier
*/
if ($op == "upload") {
/*** verification securite ***/
//verif_admin_general($s_joueur);
if ($grade['a'] != 'a' && $grade['b'] != 'b' && $grade['q'] != 'q') {
js_goto($PHP_SELF);
}
include_once "include/class.upload.php";
$uploadc = new Upload();
$uploadc->maxupload_size = $config['gallery_max_filesize'];
$destination = $config['gallery_path'] . "/{$param_galid}/";
$field_filename = trim($uploadc->getFileName("userfile"));
if ($field_filename && (eregi(".jpg\$", $field_filename) || eregi(".png\$", $field_filename) || eregi(".gif\$", $field_filename))) {
if ($uploadc->save($destination, "userfile", true)) {
is_picture($field_filename, $param_galid);
js_goto("?page=galerie&g={$param_galid}");
} else {
show_warning($uploadc->errors);
}
} else {
show_warning("{$strFichierInvalide} : {$field_filename}");
}
} elseif ($op == 'delete') {
/*** verification securite ***/
//verif_admin_general($s_joueur);
if ($grade['a'] != 'a' && $grade['b'] != 'q' && $grade['c'] != 'q') {
js_goto($PHP_SELF);
if (substr(@php_uname(), 0, 7) == "Windows") {
$log_dir = str_replace($basedir_fma, '', $base);
} else {
$log_dir = str_replace("\\", "/", str_replace($basedir_fma, "", $base));
}
include_once "modules/upload/upload.conf.php";
settype($op, 'string');
switch ($op) {
case "upload":
if ($ficcmd_fma[0]) {
if ($userfile != "none") {
global $language;
include_once "modules/upload/lang/upload.lang-{$language}.php";
include_once "modules/upload/clsUpload.php";
$upload = new Upload();
$filename = trim($upload->getFileName("userfile"));
if ($filename) {
$upload->maxupload_size = $max_size;
$auto = fma_filter('f', $filename, $obj->Extension);
if ($auto[0]) {
if (!$upload->saveAs($auto[2], $base . '/', 'userfile', true)) {
$Err = $upload->errors;
} else {
Ecr_Log("security", "Upload File", $log_dir . "/" . $filename . " IP=>" . getip());
}
} else {
$Err = $auto[1];
}
}
}
}
function AddImgs($imgscat, $newcard1, $newdesc1, $newcard2, $newdesc2, $newcard3, $newdesc3, $newcard4, $newdesc4, $newcard5, $newdesc5)
{
global $language, $MaxSizeImg, $MaxSizeThumb, $ModPath, $ModStart, $NPDS_Prefix;
include_once "modules/upload/lang/upload.lang-{$language}.php";
include_once "modules/upload/clsUpload.php";
$year = date("Y");
$month = date("m");
$day = date("d");
$hour = date("H");
$min = date("i");
$sec = date("s");
$i = 1;
while ($i <= 5) {
$img = "newcard{$i}";
$tit = "newdesc{$i}";
if (!empty(${$img})) {
$newimg = stripslashes(removeHack(${$img}));
if (!empty(${$tit})) {
$newtit = addslashes(removeHack(${$tit}));
} else {
$newtit = "";
}
$upload = new Upload();
$upload->maxupload_size = 200000 * 100;
$origin_filename = trim($upload->getFileName("newcard" . $i));
$filename_ext = strtolower(substr(strrchr($origin_filename, "."), 1));
if ($filename_ext == "jpg" or $filename_ext == "gif" or $filename_ext == "png") {
$newfilename = $year . $month . $day . $hour . $min . $sec . "-" . $i . "." . $filename_ext;
if ($upload->saveAs($newfilename, "modules/{$ModPath}/imgs/", "newcard" . $i, true)) {
if (function_exists('gd_info') or extension_loaded('gd')) {
@CreateThumb($newfilename, "modules/{$ModPath}/imgs/", "modules/{$ModPath}/imgs/", $MaxSizeImg, $filename_ext);
@CreateThumb($newfilename, "modules/{$ModPath}/imgs/", "modules/{$ModPath}/mini/", $MaxSizeThumb, $filename_ext);
}
if (sql_query("INSERT INTO " . $NPDS_Prefix . "tdgal_img VALUES ('','{$imgscat}','{$newfilename}','{$newtit}','','0','0')")) {
echo '<p class="lead"><i class="fa fa-info-circle"></i> ' . gal_trans("Image ajoutée avec succès") . '</p>';
} else {
echo '<p class="lead text-danger">' . gal_trans("Impossible d'ajouter l'image en BDD") . '</p>';
@unlink("modules/{$ModPath}/imgs/{$newfilename}");
@unlink("modules/{$ModPath}/mini/{$newfilename}");
}
} else {
echo '<p class="lead text-danger">' . $upload->errors . '</p>';
}
} else {
if ($filename_ext != "") {
echo '<p class="lead text-danger">' . gal_trans("Ce fichier n'est pas un fichier jpg ou gif") . '</p>';
}
}
}
$i++;
}
}
public function uploadFileSurat()
{
$upload = new Upload('upload');
$upload->setDirTo('arsip/');
$tipe = 'M';
$satker = $_POST['satker'];
$nomor = $_POST['nomor'];
//nama baru akan terdiri dari tipe naskah_nomor surat_asal(asal/tetapi asal terlaku kepanjangan)
$ubahNama = array($tipe, $nomor, $satker);
$upload->setUbahNama($ubahNama);
$upload->changeFileName($upload->getFileName(), $ubahNama);
$namafile = $upload->getFileTo();
$where = ' id_suratmasuk=' . $_POST['id'];
$data = array('file' => $namafile);
if ($upload->uploadFile()) {
$this->model->uploadFile($data, $where);
$datastat = array('stat' => '14');
@Session::createSession();
$user = Session::get('user');
$log = new Log();
$log->addLog($user, 'UPLOAD', 'user ' . $user . ' upload file surat no agenda ' . $this->model->getNomorAgenda($_POST['id']) . ' file:' . $namafile);
unset($log);
$this->model->update('suratmasuk', $datastat, $where);
//update status -> pelaksana
echo "<div id=success>Upload file berhasil</div>";
} else {
echo "<div id=error>Upload file berhasil</div>";
}
// return true;
//header('location:'.URL.'suratmasuk');
}
public function editprofile()
{
$this->data['title'] = 'Edit Profile';
$user_model = new \Models\User();
$this->data['user'] = Session::get('user');
$this->data['user'] = $user_model->find(Session::get('user')->user_id);
if (isset($_POST['user_firstname']) && !empty($_POST['user_firstname'])) {
if (count($_POST['dance_category']) > 3) {
$this->data['error'] = 'Dance category cannot exceed 3, Please correct';
} else {
$user_firstname = $_POST['user_firstname'];
$user_lastname = $_POST['user_lastname'];
$user_email = $_POST['user_email'];
$user_phone = $_POST['user_phone'];
$user_gender = $_POST['user_gender'];
$user_bio = $_POST['user_bio'];
$dance_category = $_POST['dance_category'];
$user_slug = Url::generateSafeSlug($user_firstname . $this->data['user']->user_id . $user_lastname);
//delete all user's dancer's category first
$delete = $userdance_model->delete(array('user_dance_user_id' => $this->data['user']->user_id), 5);
//insert dance category
if (count($_POST['dance_category']) > 0) {
foreach ($dance_category as $value) {
$dance_category_count = 0;
$insert_dance_category = $userdance_model->create(array('user_dance_user_id' => $this->data['user']->user_id, 'user_dance_category_id' => $value));
$dance_category_count++;
}
}
//update user db
$update_array = array('user_firstname' => $user_firstname, 'user_lastname' => $user_lastname, 'user_email' => $user_email, 'user_bio' => $user_bio, 'user_gender' => $user_gender, 'user_slug' => $user_slug, 'user_phone' => $user_phone);
$update_array = Gump::xss_clean($update_array);
$update_array = Gump::sanitize($update_array);
$update_id = $user_model->updateId($update_array, $this->data['user']->user_id);
//UPLOAD ATTACHMENT
if ($_FILES["image"]["tmp_name"] != '') {
//upload image into uploads folder
Upload::setName($slug . uniqid());
Upload::resizeUpload($_FILES["image"], UPLOAD_PATH, '480px');
$image_name = Upload::getFileName('images');
$update_data = array('user_image' => $image_name);
$update_img = $this->user_model->updateId($update_data, $this->data['user']->user_id);
if ($update_img > 0) {
Session::set('success', 'Profile Updated!');
Url::redirect('user');
} else {
$this->data['error'] = 'Operation Fails!';
}
}
if ($update_id > 0) {
Session::set('success', 'Profile Updated!');
Url::redirect('user');
} else {
$this->data['error'] = 'Operation Fails!';
}
if (isset($dance_category_count) && $dance_category_count > 0) {
Session::set('success', 'Dance Category Updated!');
Url::redirect('user');
} else {
$this->data['error'] = 'Operation Fails!';
}
}
}
$this->data['dance_category'] = \models\category::section('dance');
$user_dance_category = \models\userdance::category($this->data['user']->user_id);
foreach ($user_dance_category as $item) {
$this->data['user_dance_category'][] = $item->category_id;
}
View::rendertemplate('header', $this->data);
View::render('workspace/workspace.editprofile', $this->data);
View::rendertemplate('footer', $this->data);
}
function AddImgs($imgscat, $newcard1, $newdesc1, $newcard2, $newdesc2, $newcard3, $newdesc3, $newcard4, $newdesc4, $newcard5, $newdesc5, $user_connecte)
{
global $language, $MaxSizeImg, $MaxSizeThumb, $ModPath, $ModStart, $NPDS_Prefix, $ThisFile, $adminmail, $nuke_url, $notif_admin;
include_once "modules/upload/lang/upload.lang-{$language}.php";
include_once "modules/upload/clsUpload.php";
$newdesc1 = $newdesc1 . gal_trans(" proposé par ") . $user_connecte;
$newdesc2 = $newdesc2 . gal_trans(" proposé par ") . $user_connecte;
$newdesc3 = $newdesc3 . gal_trans(" proposé par ") . $user_connecte;
$newdesc4 = $newdesc4 . gal_trans(" proposé par ") . $user_connecte;
$newdesc5 = $newdesc5 . gal_trans(" proposé par ") . $user_connecte;
$year = date("Y");
$month = date("m");
$day = date("d");
$hour = date("H");
$min = date("i");
$sec = date("s");
echo '<h4 class="breadcrumb"><a href="' . $ThisFile . '">' . gal_trans("Accueil") . '</a></h4>';
echo '<p>' . gal_trans("Proposer des images") . '</p>';
echo "<ul>";
$soumission = false;
$i = 1;
while ($i <= 5) {
$img = "newcard{$i}";
$tit = "newdesc{$i}";
if (!empty(${$img})) {
$newimg = stripslashes(removeHack(${$img}));
if (!empty(${$tit})) {
$newtit = addslashes(removeHack(${$tit}));
} else {
$newtit = "";
}
$upload = new Upload();
$upload->maxupload_size = 200000 * 100;
$origin_filename = trim($upload->getFileName("newcard" . $i));
$filename_ext = strtolower(substr(strrchr($origin_filename, "."), 1));
if ($filename_ext == "jpg" or $filename_ext == "gif") {
$newfilename = $year . $month . $day . $hour . $min . $sec . "-" . $i . "." . $filename_ext;
if ($upload->saveAs($newfilename, "modules/{$ModPath}/imgs/", "newcard" . $i, true)) {
if (function_exists('gd_info') or extension_loaded('gd')) {
@CreateThumb($newfilename, "modules/{$ModPath}/imgs/", "modules/{$ModPath}/imgs/", $MaxSizeImg, $filename_ext);
@CreateThumb($newfilename, "modules/{$ModPath}/imgs/", "modules/{$ModPath}/mini/", $MaxSizeThumb, $filename_ext);
}
if (sql_query("INSERT INTO " . $NPDS_Prefix . "tdgal_img VALUES ('','{$imgscat}','{$newfilename}','{$newtit}','','0','1')")) {
echo "<li>" . gal_trans("Photo envoyée avec succès, elle sera traitée par le webmaster") . " : {$origin_filename}</li>";
$soumission = true;
} else {
echo "<li><span class=\"text-danger\">" . gal_trans("Impossible d'ajouter l'image en BDD") . " : {$origin_filename}</span></li>";
@unlink("modules/{$ModPath}/imgs/{$newfilename}");
@unlink("modules/{$ModPath}/mini/{$newfilename}");
}
} else {
echo "<li><span class=\"text-danger\">" . $upload->errors . "</span></li>";
}
} else {
if ($filename_ext != "") {
echo "<li><span class=\"text-danger\">" . gal_trans("Ce fichier n'est pas un fichier jpg ou gif") . " : {$origin_filename}</span></li>";
}
}
}
$i++;
}
echo "</ul>";
if ($notif_admin and $soumission) {
$subject = gal_trans("Nouvelle soumission de Photos");
$message = gal_trans("Des photos viennent d'être proposées dans la galerie photo du site ") . $nuke_url . gal_trans(" par ") . $user_connecte;
send_email($adminmail, $subject, $message, "", true, "html");
}
}
$uploadErrors[] = "name";
} else {
$name = $_POST['name'];
echo $name;
}
if (count($uploadErrors) == 0) {
$upload = new Upload("uploadBtn", "uploads/{$category}/");
// If the upload was not successful display errors for user
if (!$upload->upload()) {
foreach ($upload->errors() as $error) {
echo "<hr>";
echo $error . " <BR/>";
}
} else {
// Store in DB
$controller->addItem($upload->getFileName(), $name, $category);
}
}
}
?>
<div class="container">
<div class="starter-template">
<h1>Upload</h1>
<form action="" method="post" enctype="multipart/form-data">
Category:
<select name="category">
<?php
$categories = $controller->allCategories();
if (count($categories) > 0) {
function add()
{
if (!$this->haveAccessTo('edit')) {
return $this->showAccessDenied();
}
$aData = $this->input->postm(array('position' => TYPE_STR, 'cat' => TYPE_ARRAY_UINT, 'enabled' => TYPE_BOOL, 'banner_type' => TYPE_UINT, 'show_limit' => TYPE_UINT, 'resize_img' => TYPE_BOOL, 'code' => TYPE_STR, 'show_start' => TYPE_STR, 'show_finish' => TYPE_STR, 'clickurl' => TYPE_STR, 'showurl' => TYPE_STR, 'showurl_recursive' => TYPE_BOOL, 'flash_width' => TYPE_UINT, 'flash_height' => TYPE_UINT, 'flash_key' => TYPE_STR, 'title' => TYPE_STR, 'alt' => TYPE_STR, 'description' => TYPE_STR));
if (bff::$isPost) {
if (!$aData['position']) {
$this->errors->set('position');
}
if (!$this->checkRotation($aData['position'])) {
$this->errors->set('no_rotation');
}
$aData['clickurl'] = preg_replace("[^http://|www\\.|https://|ftp://]", '', $aData['clickurl']);
$aData['showurl'] = preg_replace("[^http://|www\\.|https://|ftp://]", '', $aData['showurl']);
$sFlashAddFields = '';
$sFlashAddValues = '';
if ($aData['banner_type'] == BANNERS_TYPE_FLASH) {
if (!$aData['flash_width'] || !$aData['flash_height']) {
$this->errors->set('no_flash_size');
}
$sFlashAddValues = $this->db->str2sql(serialize(array('width' => $aData['flash_width'], 'height' => $aData['flash_height'], 'key' => $aData['flash_key']))) . ', ';
$sFlashAddFields = 'flash,';
}
Func::setSESSION('banner_position', $aData['position']);
if ($this->errors->no()) {
$this->db->execute('INSERT INTO ' . TABLE_BANNERS . '
( banner_type, position, cat, clickurl, showurl, showurl_recursive, show_limit, show_start, show_finish, ' . $sFlashAddFields . ' enabled, title, alt, description)
VALUES(' . $aData['banner_type'] . ', :position, :cat, :clickurl, :showurl, ' . $aData['showurl_recursive'] . ',
' . $aData['show_limit'] . ', :show_start, :show_finish,
' . $sFlashAddValues . '
' . $aData['enabled'] . ', :title, :alt, :description)', array(':position' => $aData['position'], ':cat' => join(',', $aData['cat']), ':clickurl' => $aData['clickurl'], ':showurl' => $aData['showurl'], ':show_start' => date("Y-m-d H:i", strtotime($aData['show_start'])), ':show_finish' => date("Y-m-d H:i", strtotime($aData['show_finish'])), ':title' => $aData['title'], ':alt' => $aData['alt'], ':description' => $aData['description']));
$nRecordID = $this->db->insert_id(TABLE_BANNERS, 'id');
if ($aData['banner_type'] == BANNERS_TYPE_IMG) {
$oUpload = new Upload('bnrimg', false);
$oUpload->checkIsIMG();
if ($oUpload->isSuccessfull()) {
$aPositionInfo = $this->positions[$aData['position']];
$aImgInfo = getimagesize($_FILES['bnrimg']['tmp_name']);
$sExtension = image_type_to_extension($aImgInfo[2], false);
$sFilename = Func::generateRandomName(5, true, true) . '.' . $sExtension;
if (!isset($aPositionInfo['height']) || !$aPositionInfo['height']) {
$aPositionInfo['height'] = false;
}
if (!$aData['resize_img']) {
$aWorkingImg = array('filename' => BANNERS_PATH . $nRecordID . '_work_' . $sFilename, 'width' => $aImgInfo[0], 'height' => $aImgInfo[1], 'autofit' => true, 'crop_v' => 'center', 'crop_h' => 'center');
} else {
$aWorkingImg = array('filename' => BANNERS_PATH . $nRecordID . '_work_' . $sFilename, 'width' => $aPositionInfo['width'], 'height' => $aPositionInfo['height'], 'autofit' => true, 'crop_v' => 'center', 'crop_h' => 'center');
}
$aParams = array(array('filename' => BANNERS_PATH . $nRecordID . '_th_' . $sFilename, 'width' => 100, 'height' => false, 'autofit' => true, 'crop_v' => 'center', 'crop_h' => 'center'), $aWorkingImg ? $aWorkingImg : '');
$oThumb = new CThumbnail($_FILES['bnrimg']['tmp_name'], false);
$oThumb->setSaveMethod('gd');
$oThumb->save($aParams);
$this->db->execute('UPDATE ' . TABLE_BANNERS . '
SET banner=' . $this->db->str2sql($sFilename) . '
WHERE id=' . $nRecordID);
}
} elseif ($aData['banner_type'] == BANNERS_TYPE_FLASH) {
$fUpload = new Upload('flash', false);
$fUpload->save(BANNERS_PATH, $nRecordID . '_src_');
$this->db->execute('UPDATE ' . TABLE_BANNERS . '
SET banner=' . $this->db->str2sql($fUpload->getFileName()) . '
WHERE id=' . $nRecordID);
} else {
$this->db->execute('UPDATE ' . TABLE_BANNERS . '
SET banner=' . $this->db->str2sql($aData['code']) . '
WHERE id=' . $nRecordID);
}
$this->adminRedirect(Errors::SUCCESSFULL);
}
}
if (empty($aData['position'])) {
$aData['position'] = Func::SESSION('banner_position');
}
// подготавливаем линк
$aData['id_from'] = (int) $this->db->one_data('SELECT MAX(id)+1 FROM ' . TABLE_BANNERS);
if ($aData['id_from'] == 0) {
$aData['id_from']++;
}
if ($aData['id_from'] > 0) {
$aData['link'] = $this->prepareClickURL($aData['id_from']);
}
$aData['id'] = 0;
$aData['img_big'] = '';
$aData['banner'] = '';
//defaults
$aData['resize_img'] = 1;
$aData['flash'] = array('key' => '', 'width' => '', 'height' => '');
$aData['date_min'] = date('Y,n,d', mktime(0, 0, 0, date('n') - 1, date('d'), date('y')));
if (empty($aData['cat'])) {
$aData['cat'][] = 1;
}
$this->includeJS(array('datepicker'));
$this->tplAssign('aCategories', $this->getBBSCategories($aData['cat'], false));
$this->tplAssign('aPosOptions', $this->positions);
$this->tplAssign('aData', $aData);
return $this->tplFetch('admin.form.tpl');
}
public function editSurat()
{
$temp = explode(' ', $_POST['tujuan']);
$tujuan = $temp[0];
$upload = new Upload('upload');
// cek nomor ada yg sama di db ato gak
if ($_POST['nomor'] != '') {
$bagian = Session::get('bagian');
$sql = "SELECT kd_bagian FROM r_bagian WHERE id_bagian=" . $bagian;
$datab = $this->model->select($sql);
foreach ($datab as $val) {
$bagian = $val['kd_bagian'];
}
$nomor = $this->model->cekIfExistNomor($_POST['nomor'], $_POST['tipe'], $bagian);
} else {
$nomor = $_POST['nomor'];
}
$data = array("tipe" => $_POST['tipe'], "tgl_surat" => Tanggal::ubahFormatTanggal($_POST['tgl_surat']), "no_surat" => $nomor, "tujuan" => $tujuan, "perihal" => $_POST['perihal'], "sifat" => $_POST['sifat'], "jenis" => $_POST['jenis'], "lampiran" => $_POST['lampiran']);
$id = $_POST['id'];
$where = "id_suratkeluar = '" . $id . "'";
// var_dump($data);
// var_dump($where);
// var_dump($_FILES);
//echo $where;
$update = $this->model->editSurat($data, $where);
if ($update) {
//status net
if ($_POST['nomor'] != '') {
$data = array('status' => 22);
$this->model->editSurat($data, $where);
}
echo "<div id=success>Ubah data surat berhasil</div>";
//upload file
if (end(explode('.', $upload->getFileName())) == 'pdf') {
$upload->setDirTo('arsip/');
} elseif (end(explode('.', $upload->getFileName())) == 'docx' or end(explode('.', $upload->getFileName())) == 'doc') {
$upload->setDirTo('arsip/temp/');
}
$tipe = 'K';
$satker = substr($_POST['tujuan'], 0, 8);
// $id = 0;
$sql = "SELECT MAX(id_suratkeluar) as id FROM suratkeluar";
$did = $this->model->select($sql);
foreach ($did as $valid) {
$id_max = $valid['id'];
}
//nama baru akan terdiri dari tipe naskah_nomor surat_asal(asal/tetapi asal terlaku kepanjangan)
$ubahNama = array($tipe, $id, $satker);
$upload->setUbahNama($ubahNama);
$upload->changeFileName($upload->getFileName(), $ubahNama);
$namafile = $upload->getFileTo();
$where = ' id_suratkeluar=' . $id;
$data = array('file' => $namafile);
if ($_FILES['upload']['tmp_name'] != '') {
$upload->uploadFile();
$this->model->uploadFile($data, $where);
}
@Session::createSession();
$user = Session::get('user');
$log = new Log();
$log->addLog($user, 'UBAH SK', 'user ' . $user . ' ubah surat keluar tujuan: ' . $id . ' perihal:' . $_POST['perihal']);
unset($log);
// return true;
} else {
echo "<div id=error>Ubah data surat gagal</div>";
}
}
public function ubahLampiran()
{
$id_lamp = $_POST['id'];
$id_surat = $_POST['id_surat'];
$tgl = $_POST['tanggal'];
$jns = $_POST['jenis'];
$tipe = $_POST['tipe'];
$nomor = $_POST['nomor'];
$asal = $_POST['asal'];
$hal = $_POST['hal'];
$ket = $_POST['keterangan'];
//nama baru akan terdiri dari tipe naskah_nomor surat_asal(asal/tetapi asal terlaku kepanjangan)
if ($_FILES['upload']['name'] != '') {
$upload = new Upload('upload');
$upload->setDirTo('arsip/');
$ubahNama = array($tipe, $nomor);
$upload->setUbahNama($ubahNama);
$upload->changeFileName($upload->getFileName(), $ubahNama);
$namafile = $upload->getFileTo();
} else {
$filex = $_POST['file'];
$file = explode("_", $filex);
$j = count($file);
$ext = explode('.', $file[$j - 1]);
// var_dump($ext);
// var_dump($file);
// $namafile = explode("_", $file);
// var_dump($namafile);
$file[0] = $tipe;
$namafile = '';
for ($i = 0; $i < $j - 1; $i++) {
$namafile .= '_' . $file[$i];
echo $file[$i] . '</br>';
}
$namafile = trim($namafile, "_") . '_' . $ext[0] . '.' . $ext[1];
// var_dump($namafile);
// $namafile = implode("_", $namafile);
rename('arsip/' . $filex, 'arsip/' . $namafile);
}
//$upload->init('upload');
$lamp = new Lampiran_Model();
$lamp->set('id_lamp', $id_lamp);
$lamp->set('jns_surat', $jns);
$lamp->set('id_surat', $id_surat);
$lamp->set('tipe', $tipe);
$lamp->set('nomor', $nomor);
$lamp->set('tanggal', $tgl);
$lamp->set('asal', $asal);
$lamp->set('hal', $hal);
$lamp->set('keterangan', $ket);
$lamp->set('file', $namafile);
/*$data = array(
'jns_surat'=>$jns,
'id_surat'=>$_POST['id'],
'tipe'=>$tipe,
'nomor'=>$nomor,
'tanggal'=> Tanggal::ubahFormatTanggal($_POST['tanggal']),
'hal'=>$_POST['hal'],
'asal'=>$asal,
'keterangan'=>$_POST['keterangan'],
'file'=>$namafile//upload belom diurus
);*/
//var_dump($data);
if ($lamp->editLampiran()) {
if ($_FILES['upload']['name'] != '') {
$upload->uploadFile();
}
echo "<div id=success>Ubah data lampiran berhasil</div>";
} else {
echo "<div id=error>Ubah data lampiran gagal!</div>";
}
/*if($jns=='SM'){
header('location:'.URL.'suratmasuk/detil/'.$data['id_surat']);
}elseif ($jns=='SK') {
header('location:'.URL.'suratkeluar/detil/'.$data['id_surat']);
}*/
// return true;
}
