function draw_svg($pie_id, $base_name, $args)
{
global $output_dir;
global $svg_template;
global $bg_schemes;
$bar_start = 48;
$bar_end = 312.4;
$bar_len = $bar_end - $bar_start;
$svg_output = $output_dir . $base_name . '.svg';
if (file_exists($svg_output)) {
return $svg_output;
}
// Parse
$xdoc = new DomDocument();
$xdoc->Load($svg_template);
$xp = new DomXPath($xdoc);
// Get progress from DB
$result = pg_query("SELECT state FROM pieces WHERE pie = " . $pie_id);
$states = pg_fetch_all_columns($result, 0);
$progress = array(0, 0, 0, 0, 0, 0, 0, 0, 0, 0);
$full_sum = 9 * count($states);
$current_sum = 0;
foreach ($states as $st) {
$progress[$st]++;
$current_sum += $st;
}
// Calculate bars positions and widths
$offset = $bar_start;
$step = $bar_len / count($states);
for ($i = 0; $i <= 9; $i++) {
$elem = find_by_id($xp, 'bar_' . $i);
$elem->setAttribute('x', $offset);
$elem->setAttribute('width', $step * $progress[$i]);
$offset += $step * $progress[$i];
}
// Set percent
$percent = round($current_sum / $full_sum * 100);
find_by_id($xp, 'percent-fg')->nodeValue = $percent . '%';
// Set BG color gradient;
$current_bg_scheme = $bg_schemes['middle'];
if ($progress[9] / count($states) > 0.6) {
$current_bg_scheme = $bg_schemes['high'];
} else {
if ($progress[0] / count($states) > 0.6) {
$current_bg_scheme = $bg_schemes['low'];
}
}
find_by_id($xp, 'bg-grd-start')->setAttribute('style', 'stop-color:#' . $current_bg_scheme[0] . ';stop-opacity:1');
find_by_id($xp, 'bg-grd-stop')->setAttribute('style', 'stop-color:#' . $current_bg_scheme[1] . ';stop-opacity:1');
// Save it to file
if (($fd = fopen($svg_output, 'w')) === false) {
throw new Exception("Cant open SVG file for saving");
}
fwrite($fd, $xdoc->saveXML());
fclose($fd);
return $svg_output;
}
<?php
include_once '../includes/session.php';
include_once '../includes/db_connection.php';
require_once '../includes/functions.php';
?>
<?php
$current_album = find_by_id($_GET['album'], "album");
if (!$current_album) {
redirect_to('manage_content.php');
}
$id = $current_album['id'];
$query = 'DELETE FROM album where id = ' . $id . ' LIMIT 1';
//file_put_contents('tes.txt',$query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "Album Deleted";
redirect_to('albums.php');
} else {
$_SESSION['message'] = "album deletion failed";
redirect_to('albums.php');
}
<?php
require_once 'includes/load.php';
// Checking userlevel
page_require_level(2);
$product = find_by_id('products', (int) $_GET['id']);
if (!$product) {
$session->msg("d", "Missing Product id.");
redirect('product.php');
}
$delete_id = delete_by_id('products', (int) $product['id']);
if ($delete_id) {
$session->msg("s", "Products deleted.");
redirect('product.php');
} else {
$session->msg("d", "Products deletion failed.");
redirect('product.php');
}
<?php
include_once '../includes/session.php';
include_once '../includes/db_connection.php';
require_once '../includes/functions.php';
?>
<?php
$current_album = find_by_id($_GET['photography'], "photography");
if (!$current_album) {
redirect_to('manage_content.php');
}
$id = $current_album['id'];
$query = 'DELETE FROM photography where id = ' . $id . ' LIMIT 1';
//file_put_contents('tes.txt',$query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "photography Deleted";
redirect_to('albums.php');
} else {
$_SESSION['message'] = "photography deletion failed";
redirect_to('albums.php');
}
public function user_image_destroy($id)
{
$image = find_by_id('users', $id);
if ($image['image'] === 'no_image.jpg') {
return true;
} else {
unlink($this->userPath . '/' . $image['image']);
return true;
}
}
<?php
$page_title = 'Edit categorie';
require_once 'includes/load.php';
// Checkin What level user has permission to view this page
page_require_level(1);
//Display all catgories.
$categorie = find_by_id('categories', (int) $_GET['id']);
if (!$categorie) {
$session->msg("d", "Missing categorie id.");
redirect('categorie.php');
}
?>
<?php
if (isset($_POST['edit_cat'])) {
$req_field = array('categorie-name');
validate_fields($req_field);
$cat_name = remove_junk($db->escape($_POST['categorie-name']));
if (empty($errors)) {
$sql = "UPDATE categories SET name='{$cat_name}'";
$sql .= " WHERE id='{$categorie['id']}'";
$result = $db->query($sql);
if ($result && $db->affected_rows() === 1) {
$session->msg("s", "Successfully updated Categorie");
redirect('categorie.php', false);
} else {
$session->msg("d", "Sorry! Failed to Update");
redirect('categorie.php', false);
}
} else {
<?php
$page_title = 'My profile';
require_once 'includes/load.php';
// Checking userlevel
page_require_level(3);
?>
<?php
$user_id = (int) $_GET['id'];
if (empty($user_id)) {
redirect('home.php', false);
} else {
$user_p = find_by_id('users', $user_id);
}
include_once 'layouts/header.php';
?>
<div class="row">
<div class="col-md-4">
<div class="panel profile">
<div class="jumbotron text-center bg-red">
<img class="img-circle img-size-2" src="uploads/users/<?php
echo $user_p['image'];
?>
" alt="">
<h3><?php
echo first_character($user_p['name']);
?>
</h3>
</div>
<?php
if ($user_p['id'] === $user['id']) {
<?php
$page_title = 'Edit Group';
require_once 'includes/load.php';
// Checkin What level user has permission to view this page
page_require_level(1);
$e_group = find_by_id('user_groups', (int) $_GET['id']);
if (!$e_group) {
$session->msg("d", "Missing Group id.");
redirect('group.php');
}
if (isset($_POST['update'])) {
$req_fields = array('group-name', 'group-level');
validate_fields($req_fields);
if (empty($errors)) {
$name = remove_junk($db->escape($_POST['group-name']));
$level = remove_junk($db->escape($_POST['group-level']));
$status = remove_junk($db->escape($_POST['status']));
$query = "UPDATE user_groups SET ";
$query .= "group_name='{$name}',group_level='{$level}',group_status='{$status}'";
$query .= "WHERE ID='{$db->escape($e_group['id'])}'";
$result = $db->query($query);
if ($result && $db->affected_rows() === 1) {
//sucess
$session->msg('s', "Group has been updated! ");
redirect('edit_group.php?id=' . (int) $e_group['id'], false);
} else {
//failed
$session->msg('d', ' Sorry failed to updated Group!');
redirect('edit_group.php?id=' . (int) $e_group['id'], false);
}
<?php
require_once 'includes/load.php';
// Checkin What level user has permission to view this page
page_require_level(2);
$find_media = find_by_id('media', (int) $_GET['id']);
$photo = new Media();
if ($photo->media_destroy($find_media['id'], $find_media['file_name'])) {
$session->msg("s", "Photo has been deleted.");
redirect('media.php');
} else {
$session->msg("d", "Photo deletion failed Or Missing Prm.");
redirect('media.php');
}
<?php
require_once 'includes/load.php';
if (!$session->isUserLoggedIn(true)) {
redirect('index.php', false);
}
// Auto suggestion
$html = '';
// find all product
if (isset($_POST['p_name']) && strlen($_POST['p_name'])) {
$product_title = remove_junk($db->escape($_POST['p_name']));
if ($results = get_product_info_by_id($product_title)) {
foreach ($results as $result) {
$mac = find_by_id('products', $result['id']);
$html .= "<tr>";
$html .= "<td id=\"s_name\">" . $result['name'] . "</td>";
$html .= "<input type=\"hidden\" name=\"s_id[]\" value=\"{$result['id']}\">";
$html .= "<td>";
$html .= "<input type=\"text\" class=\"form-control\" name=\"price[]\" value=\"{$result['sale_price']}\" readonly>";
$html .= "</td>";
$html .= "<td id=\"s_qty\">";
$html .= "<input type=\"text\" class=\"form-control\" name=\"quantity[]\" value=\"1\" min='0'>";
$html .= "</td>";
$html .= "<td>";
$html .= "<input type=\"hidden\" class=\"form-control\" name=\"total\" value=\"{$result['sale_price']}\" readonly>";
if ($mac['hasMAC'] > 0) {
$html .= "<input type='text' class='form-control' name='mac[]' placeholder='MAC-adresse' maxlength='17'>";
} else {
$html .= "<input type='hidden' class='form-control' name='mac[]' placeholder='MAC-adresse' maxlength='17'>";
}
$html .= "</td>";
<?php
include_once '../../includes/db_connection.php';
include_once '../../includes/functions.php';
?>
<?php
$current_project = find_by_id('media-media', $_GET['media_id']);
if (!$current_project) {
redirect_to('media.php');
}
// the id in the $current_project array is from the DB so it's name is the same as the column
$media_title = $current_project['media_title'];
$media_cover = $current_project['media_cover'];
$cover_dir = '../../includes/uploads/p-cover/';
$current_album_cover = $cover_dir . $media_cover;
if (!unlink($current_album_cover)) {
echo "Error deleting {$current_album_cover}";
}
$media_id = $current_project['id'];
$query = 'DELETE FROM `media-media` where id = ' . $media_id . ' LIMIT 1';
file_put_contents('tes.txt', $query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "Project Deleted";
redirect_to('media.php');
} else {
$_SESSION['message'] = "Project deletion failed";
redirect_to('media.php');
}
<?php
include_once '../../includes/db_connection.php';
include_once '../../includes/functions.php';
?>
<?php
$current_project = find_by_id('team', $_GET['team_id']);
if (!$current_project) {
redirect_to('team.php');
}
// the id in the $current_project array is from the DB so it's name is the same as the column
$image = $current_project['image'];
$cover_dir = '../../includes/uploads/team/';
$current_album_cover = $cover_dir . $image;
if (!unlink($current_album_cover)) {
echo "Error deleting {$current_album_cover}";
}
$team_id = $current_project['id'];
$query = 'DELETE FROM `team` where id = ' . $team_id . ' LIMIT 1';
file_put_contents('tes.txt', $query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "Project Deleted";
redirect_to('team.php');
} else {
$_SESSION['message'] = "Project deletion failed";
redirect_to('team.php');
}
<?php
require_once 'includes/load.php';
// Checking userlevel
page_require_level(5);
$d_sale = find_by_id('entre_sales', (int) $_GET['id']);
if (!$d_sale) {
$session->msg("d", "3Missing sale id.");
redirect('entre_sales.php');
}
storage_fix_entre_deletion($d_sale['product_id'], $d_sale['qty']);
$delete_id = delete_by_id('entre_sales', (int) $d_sale['id']);
if ($delete_id) {
$session->msg("s", "sale deleted.");
redirect('entre_sales.php');
} else {
$session->msg("d", "sale deletion failed.");
redirect('entre_sales.php');
}
<?php
$page_title = 'Edit User';
require_once 'includes/load.php';
// Checking userlevel
page_require_level(1);
$e_user = find_by_id('users', (int) $_GET['id']);
$groups = find_all('user_groups');
if (!$e_user) {
$session->msg("d", "Missing user id.");
redirect('users.php');
}
?>
<?php
//Update User basic info
if (isset($_POST['update'])) {
$req_fields = array('name', 'username', 'level');
validate_fields($req_fields);
if (empty($errors)) {
$id = (int) $e_user['id'];
$name = remove_junk($db->escape($_POST['name']));
$username = remove_junk($db->escape($_POST['username']));
$level = (int) $db->escape($_POST['level']);
$status = remove_junk($db->escape($_POST['status']));
$sql = "UPDATE users SET name ='{$name}', username ='******',user_level='{$level}',status='{$status}' WHERE id='{$db->escape($id)}'";
$result = $db->query($sql);
if ($result && $db->affected_rows() === 1) {
$session->msg('s', "Acount Updated ");
redirect('edit_user.php?id=' . (int) $e_user['id'], false);
} else {
<?php
$page_title = 'Edit sale';
require_once 'includes/load.php';
// Checkin What level user has permission to view this page
page_require_level(3);
$sale = find_by_id('sales', (int) $_GET['id']);
if (!$sale) {
$session->msg("d", "Missing product id.");
redirect('sales.php');
}
$product = find_by_id('products', $sale['product_id']);
if (isset($_POST['update_sale'])) {
$req_fields = array('title', 'quantity', 'price', 'total', 'date');
validate_fields($req_fields);
if (empty($errors)) {
$p_id = $db->escape((int) $product['id']);
$s_qty = $db->escape((int) $_POST['quantity']);
$s_total = $db->escape($_POST['total']);
$date = $db->escape($_POST['date']);
$s_date = date("Y-m-d", strtotime($date));
$sql = "UPDATE sales SET";
$sql .= " product_id= '{$p_id}',qty={$s_qty},price='{$s_total}',date='{$s_date}'";
$sql .= " WHERE id ='{$sale['id']}'";
$result = $db->query($sql);
if ($result && $db->affected_rows() === 1) {
update_product_qty($s_qty, $p_id);
$session->msg('s', "Sale updated.");
redirect('edit_sale.php?id=' . $sale['id'], false);
} else {
$session->msg('d', ' Sorry failed to updated!');
<?php
include_once '../../includes/db_connection.php';
include_once '../../includes/functions.php';
?>
<?php
$current_partner = find_by_id('partners', $_GET['id']);
if (!$current_partner) {
redirect_to('partners.php');
}
// the id in the $current_project array is from the DB so it's name is the same as the column
$partner_name = $current_partner['partners_name'];
$partners_link = $current_partner['partners_link'];
$partners_id = $current_partner['id'];
$query = 'DELETE FROM `partners` where id = ' . $partners_id . ' LIMIT 1';
file_put_contents('tes.txt', $query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "Project Deleted";
redirect_to('partners.php');
} else {
$_SESSION['message'] = "Project deletion failed";
redirect_to('partners.php');
}
<?php
require_once 'includes/load.php';
// Checking userlevel
page_require_level(3);
$d_sale = find_by_id('trade', (int) $_GET['id']);
if (!$d_sale) {
$session->msg("d", "Missing trade id.");
redirect('trades.php');
}
$delete_id = delete_by_id('trade', (int) $d_sale['id']);
if ($delete_id) {
$session->msg("s", "trade deleted.");
redirect('trades.php');
} else {
$session->msg("d", "trade deletion failed.");
redirect('trades.php');
}
<?php
include_once '../includes/session.php';
include_once '../includes/db_connection.php';
require_once '../includes/functions.php';
?>
<?php
$current_album = find_by_id($_GET['museum'], "museum");
if (!$current_album) {
redirect_to('manage_content.php');
}
$id = $current_album['id'];
$query = 'DELETE FROM museum where id = ' . $id . ' LIMIT 1';
//file_put_contents('tes.txt',$query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "museum Deleted";
redirect_to('albums.php');
} else {
$_SESSION['message'] = "museum deletion failed";
redirect_to('albums.php');
}
function current_user()
{
static $current_user;
global $db;
if (!$current_user) {
if (isset($_SESSION['user_id'])) {
$user_id = intval($_SESSION['user_id']);
$current_user = find_by_id('users', $user_id);
}
}
return $current_user;
}
<?php
include_once '../../includes/db_connection.php';
include_once '../../includes/functions.php';
?>
<?php
$current_project = find_by_id("media-story", $_GET['story_id']);
if (!$current_project) {
redirect_to('story.php');
}
// the id in the $current_project array is from the DB so it's name is the same as the column
$story_title = $current_project['story_title'];
$story_cover = $current_project['story_cover'];
$story_folder = str_replace(' ', '_', $story_title);
$upload_dir = '../../includes/uploads/story/';
$current_album_dir = $upload_dir . $story_folder;
deleteDir($current_album_dir);
$cover_dir = '../../includes/uploads/p-cover/';
$current_album_cover = $cover_dir . $story_cover;
if (!unlink($current_album_cover)) {
echo "Error deleting {$current_album_cover}";
}
$story_id = $current_project['id'];
$query = 'DELETE FROM `media-story` where id = ' . $story_id . ' LIMIT 1';
file_put_contents('tes.txt', $query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "Project Deleted";
redirect_to('story.php');
} else {
require_once 'includes/load.php';
if (isset($_POST['custnr'])) {
$req_fields = array('s_id', 'quantity', 'price', 'total');
if (empty($errors)) {
$max = count($_POST['s_id']);
for ($i = 0; $i < $max; $i++) {
$s_total = floatval($_POST['quantity'][$i] * $_POST['price'][$i]);
$p_id = $db->escape((int) $_POST['s_id'][$i]);
$s_qty = $db->escape((int) $_POST['quantity'][$i]);
$date = $db->escape($_POST['date']);
$custnr = $db->escape($_POST['custnr']);
$comment = $db->escape($_POST['comment']);
$s_date = make_date();
$s_userID = $_SESSION['user_id'];
$s_mac = $db->escape($_POST['mac'][$i]);
$productCategory = find_by_id('products', $p_id);
$sql = "INSERT INTO entre_sales (";
$sql .= " product_id, qty, price, date, custnr, comment, FK_userID, mac";
$sql .= ") VALUES (";
$sql .= "'{$p_id}', '{$s_qty}', '{$s_total}', '{$s_date}', '{$custnr}', '{$comment}','{$s_userID}', '{$s_mac}'";
$sql .= ")";
if ($s_qty > 0) {
if ($db->query($sql)) {
update_entre_qty($s_qty, $p_id);
// $session->msg('s', "Sale added. ");
} else {
// $session->msg('d', ' Sorry failed to add!');
}
}
}
header('Location: entre_sale.php');
<?php
include_once '../../includes/initialize.php';
?>
<?php
$current_highlight = find_by_id($_GET['highlight'], "highlight");
if (!$current_highlight) {
redirect_to('..' . DS . 'manage' . DS . 'manage_content.php');
}
$id = $current_highlight['id'];
$query = 'DELETE FROM highlight where id = ' . $id . ' LIMIT 1';
//file_put_contents('tes.txt',$query);
$result = mysqli_query($connection, $query);
if ($result && mysqli_affected_rows($connection) == 1) {
$_SESSION['message'] = "highlight Deleted";
redirect_to('highlight.php');
} else {
$_SESSION['message'] = "highlight deletion failed";
redirect_to('highlight.php');
}
