/** *Modifier un user */ public function edituseradmin() { if (isset($_SESSION['user_id']) && $_SESSION['user_status'] == 2) { if (isset($_POST)) { if (isset($_POST['idUser'])) { if (isset($_POST['first_name'])) { $first_name = $_POST['first_name']; } else { $first_name = null; } if (isset($_POST['last_name'])) { $last_name = $_POST['last_name']; } else { $last_name = null; } if (isset($_POST['email'])) { if ($this->coreCheckEmail($_POST['email'])) { $email = $_POST['email']; } else { $messageFlash = 'Wrong email adress. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 4); header("location:" . PATH_HOME . "admin/edituser/" . $_POST['idUser']); exit; } } if (isset($_POST['BirthDateSaved'])) { $birth_date = $_POST['BirthDateSaved']; } elseif (isset($_POST['birth_day']) && isset($_POST['birth_month']) && isset($_POST['birth_year'])) { $birth_date = $_POST['birth_day'] . "/" . $_POST['birth_month'] . "/" . $_POST['birth_year']; } else { $birth_date = null; } if (isset($_POST['location'])) { $location = $_POST['location']; } else { $location = null; } if (isset($_POST['skills'])) { $skills = $_POST['skills']; } else { $skills = null; } if (isset($_POST['description'])) { $description = $_POST['description']; } else { $description = null; } if (isset($_POST['school'])) { $school = $_POST['school']; } else { $school = null; } if (isset($_POST['work'])) { $work = $_POST['work']; } else { $work = null; } $id = $_POST['idUser']; if (!empty($_FILES['userPicture']['name'])) { $file = new Upload($_FILES['userPicture']['name'], $_FILES["userPicture"]["tmp_name"], 'assets/img/user_pp/', ''); if ($file->extControl()) { if ($file->moveFile()) { $userPicture = $file->setNom(); $lastId = $this->model->insertUserPicture($userPicture); } else { // fichier non déplacé define("TITLE_HEAD", "An error occur."); $messageFlash = 'An error occur. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:" . PATH_HOME . "admin/edituser/" . $id); exit; } } else { // Extension non autorisée define("TITLE_HEAD", "An error occur."); $messageFlash = 'Invalid file extension. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:" . PATH_HOME . "admin/edituser/" . $id); exit; } } else { if (isset($_POST['userPictureSaved'])) { // TODO // Supprimer l'ancienne photo $userPicture = $_POST['userPictureSaved']; $lastId = $this->model->insertUserPicture($userPicture); } else { $lastId = null; } } if (!$this->model->update_profile($id, $first_name, $last_name, $birth_date, $email, $location, $description, $skills, $school, $work, $lastId)) { // Si pas de données updaté define("TITLE_HEAD", "An error occur."); $messageFlash = 'An error occur. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:" . PATH_HOME . "admin/edituser/" . $id); exit; } else { // Si données updaté define("TITLE_HEAD", "Volunteers Admin"); $messageFlash = 'Informations updated.'; $this->coreSetFlashMessage('sucess', $messageFlash, 3); header("location:" . PATH_HOME . "admin/edituser/" . $id); exit; } } else { // Pas d'id $messageFlash = 'An error has occurred. Please try again.'; $this->coreSetFlashMessage('sucess', $messageFlash, 3); header("location:" . PATH_HOME . "admin/userlist"); exit; } } else { // Pas de post $messageFlash = 'An error has occurred. Please try again.'; $this->coreSetFlashMessage('sucess', $messageFlash, 3); header("location:" . PATH_HOME . "admin/userlist"); exit; } } else { header("location:" . PATH_HOME . "admin/signin"); exit; } }
$fileSize = $upload->getFileSize(); $mimeType = $upload->getMimeType(); // Print the upload file's information print "Original File Name: {$origFileName}<br>\n"; print "File Extension: {$fileExt}<br>\n"; print "Mime Type: {$mimeType}<br>\n"; print "File Size: {$fileSize}<br>\n"; // Create a destination and name for the file $destFilePath = 'test.' . $fileExt; // This is not a bulletproof security measure, but at least it prevents our badscript.php if ($fileExt == 'php') { print "Stop trying to hack me!"; exit; } // Move that file to the destination $upload->moveFile($destFilePath); // Provide a link to that destination print "<a href='{$destFilePath}' target='_blank'>Click here to view uploaded file</a><br>\n"; // If that file was a jpg or gif image, print an image tag displaying that file if ($fileExt == 'jpg' || $fileExt == 'gif' || $fileExt == 'png') { print "<p><img src='{$destFilePath}' alt='uploaded image'></p>\n"; } } catch (UploadExceptionNoFile $e) { print "No file was uploaded.<br>\n"; } catch (UploadException $e) { $code = $e->getCode(); $message = $e->getMessage(); print "Error: {$message} (code={$code})<br>\n"; } ?> </body>
/** *Permet la modification d'un évènement, semblale à la fonction create() mais avec des updates */ public function edit() { if (isset($_SESSION['user_email'])) { if (isset($_POST)) { $event_name = $_POST['event_name']; $idEvent = $_POST['idEvent']; //Si l'utilisateur décide de sauvegarder son évènement sans le publier if (isset($_POST['save'])) { /* On test donc chaque champs du formulaire pour récupérer les infos à sauvegarder, si un champs est remplis on récupère ça valeur sinon on le passe à NULL */ if (isset($_POST['event_location'])) { $event_location = $_POST['event_location']; } else { $event_location = NULL; } if (isset($_POST['event_start'])) { $start = $_POST['event_start']; $search = array(','); $replace = array('.'); $event_start = str_replace($search, $replace, $start); } else { $event_start = NULL; } if (isset($_POST['event_hour_start']) && isset($_POST['event_min_start'])) { $event_hour_start = $_POST['event_hour_start'] . ":" . $_POST['event_min_start'] . " " . $_POST['event_start_mode']; } else { if (isset($_POST['hourStartSave']) && !empty($_POST['hourStartSave'])) { $event_hour_start = $_POST['hourStartSave']; } else { $event_hour_start = NULL; } } if (isset($_POST['event_end'])) { $end = $_POST['event_end']; $search = array(','); $replace = array('.'); $event_end = str_replace($search, $replace, $end); } else { $event_end = $event_start; } if (isset($_POST['event_hour_end']) && isset($_POST['event_min_end'])) { $event_hour_end = $_POST['event_hour_end'] . ":" . $_POST['event_min_end'] . " " . $_POST['event_end_mode']; } else { if (isset($_POST['hourEndSave']) && !empty($_POST['hourEndSave'])) { $event_hour_end = $_POST['hourEndSave']; } else { $event_hour_end = NULL; } } if (isset($_POST['event_categories'])) { $event_categories = $_POST['event_categories']; } else { if (isset($_POST['categoriesSave']) && !empty($_POST['categoriesSave'])) { $event_categories = $_POST['categoriesSave']; } else { $event_categories = NULL; } } if (isset($_POST['facebook'])) { $facebook = $_POST['facebook']; } else { $facebook = null; } if (isset($_POST['instagram'])) { $instagram = $_POST['instagram']; } else { $instagram = null; } if (isset($_POST['youtube'])) { $youtube = $_POST['youtube']; } else { $youtube = null; } if (isset($_POST['twitter'])) { $twitter = $_POST['twitter']; } else { $twitter = null; } if (isset($_POST['event_description'])) { $event_description = $_POST['event_description']; } else { $event_description = NULL; } if (isset($_POST['missions'])) { $event_missions = $_POST['missions']; } else { $event_missions = NULL; } if (isset($_POST['nbVolunteer'])) { $nb_volunteer = $_POST['nbVolunteer']; } else { $nb_volunteer = NULL; } $status = 0; $user = $_SESSION['user_id']; if ($this->model->editEvent($event_name, $event_location, $event_start, $event_hour_start, $event_end, $event_hour_end, $event_description, $facebook, $instagram, $youtube, $twitter, $status, $user, $idEvent)) { if (isset($_POST['event_categories'])) { for ($i = 0; $i < count($event_categories); $i++) { //$idEvent = $lastId; $idCategory = $event_categories[$i]; $this->model->editCategories($idCategory, $idEvent); } } else { if (isset($_POST['categoriesSave']) && !empty($_POST['categoriesSave'])) { $idCategory = $_POST['categoriesSave']; $this->model->editCategories($idCategory, $idEvent); } } if (isset($_POST['missions'])) { for ($i = 0; $i < count($event_missions); $i++) { if ($_POST['missions'][$i] !== '') { $missions = $event_missions[$i]; $nbVolunteer = $nb_volunteer[$i]; $this->model->insertMissions($idEvent, $missions, $nbVolunteer); } } } if (!empty($_POST['missionsSave'])) { for ($i = 0; $i < count($_POST['missionsSave']); $i++) { if ($_POST['missionsSave'][$i] !== '') { $idMission = $_POST['idMissionsSave'][$i]; $missions = $_POST['missionsSave'][$i]; $nbVolunteer = $_POST['nbVolunteerSave'][$i]; $this->model->editMissions($idEvent, $missions, $nbVolunteer, $idMission); } } } if (!empty($_FILES['coverPicture']['name'])) { $file = new Upload($_FILES['coverPicture']['name'], $_FILES["coverPicture"]["tmp_name"], 'assets/img/events/uploads/', ''); if ($file->extControl()) { if ($file->moveFile()) { if ($file->resizeFile()) { $coverPicture = $file->setNom(); $this->model->insertCoverPicture($idEvent, $coverPicture); } else { $coverPicture = $file->setNom(); $this->model->insertCoverPicture($idEvent, $coverPicture); } } } } else { if (isset($_POST['coverPictureSave']) && !empty($_POST['coverPictureSave'])) { $coverPicture = $_POST['coverPictureSave']; $this->model->insertCoverPicture($idEvent, $coverPicture); } } if (!empty($_FILES['media'])) { for ($i = 0; $i < count($_FILES['media']['name']); $i++) { $name = $_FILES['media']['name'][$i]; $tmp_name = $_FILES["media"]["tmp_name"][$i]; $media = new Upload($name, $tmp_name, 'assets/img/events/uploads/', ''); if ($media->extControl()) { if ($media->moveFile()) { if ($media->resizeFile()) { $picture = $media->setNom(); $this->model->insertMediaPicture($idEvent, $picture); } else { $picture = $media->setNom(); $this->model->insertMediaPicture($idEvent, $picture); } } } } } if (isset($_POST['mediasSave']) && !empty($_POST['mediasSave'])) { for ($i = 0; $i < count($_POST['mediasSave']); $i++) { $picture = $_POST['mediasSave'][$i]; //Fonction update } } //Chargement de la vue de l'évènement $messageFlash = 'Your event has been saved'; $this->coreSetFlashMessage('sucess', $messageFlash, 3); header("location:../profile/events"); exit; } else { define("TITLE_HEAD", "Erreur | Volunteers"); // Chargement de la vue $this->load->view('view_error.php'); } } elseif (isset($_POST['submit'])) { // Si l'utilisateur clique sur publier on vérifie que tout les champs sont bien remplis puis // ont effectue l'insertion dans la base $event_name = $_POST['event_name']; if (!empty($_POST['event_location'])) { $event_location = $_POST['event_location']; } else { $messageFlash = 'Please set up the location'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:editshow/" . $idEvent); exit; } if (!empty($_POST['event_start'])) { $start = $_POST['event_start']; $search = array(','); $replace = array('.'); $event_start = str_replace($search, $replace, $start); } else { $messageFlash = 'Please set up the beginning of the event'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:editshow/" . $idEvent); exit; } if (!empty($_POST['event_hour_start']) && !empty($_POST['event_min_start']) && !empty($_POST['event_start_mode'])) { $event_hour_start = $_POST['event_hour_start'] . ":" . $_POST['event_min_start'] . " " . $_POST['event_start_mode']; } else { if (isset($_POST['hourStartSave']) && !empty($_POST['hourStartSave'])) { $event_hour_start = $_POST['hourStartSave']; } else { $messageFlash = 'Please set up the start time of the event'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:editshow/" . $idEvent); exit; } } if (!empty($_POST['event_end'])) { //$event_end = $_POST['event_end']; $end = $_POST['event_end']; $search = array(','); $replace = array('.'); $event_end = str_replace($search, $replace, $end); } else { $event_end = $event_start; } if (!empty($_POST['event_hour_end']) && !empty($_POST['event_min_end']) && !empty($_POST['event_end_mode'])) { $event_hour_end = $_POST['event_hour_end'] . ":" . $_POST['event_min_end'] . " " . $_POST['event_end_mode']; } else { if (isset($_POST['hourEndSave']) && !empty($_POST['hourEndSave'])) { $event_hour_end = $_POST['hourEndSave']; } else { $messageFlash = 'Please set up the end time of the event'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:editshow/" . $idEvent); exit; } } if (!empty($_POST['event_categories'])) { $event_categories = $_POST['event_categories']; } else { if (isset($_POST['categorieSave']) && !empty($_POST['categorieSave'])) { $event_categories = $_POST['categorieSave']; } else { $messageFlash = 'Please set up the categori'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:editshow/" . $idEvent); exit; } } if (!empty($_POST['event_description'])) { $event_description = $_POST['event_description']; } else { $messageFlash = 'Please describe your event'; $this->coreSetFlashMessage('error', $messageFlash, 3); $event_description = NULL; } if (!empty($_POST['facebook'])) { $facebook = $_POST['facebook']; } else { $facebook = null; } if (!empty($_POST['instagram'])) { $instagram = $_POST['instagram']; } else { $instagram = null; } $youtube = !empty($_POST['youtube']) ? $_POST['youtube'] : null; $twitter = !empty($_POST['twitter']) ? $_POST['twitter'] : null; if (!empty($_POST['missions'])) { $event_missions = $_POST['missions']; } else { $messageFlash = 'Please set up the different missions'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:editshow/" . $idEvent); exit; } if (!empty($_POST['nbVolunteer'])) { $nb_volunteer = $_POST['nbVolunteer']; } else { $messageFlash = 'Please set up the number of volunteers'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:editshow/" . $idEvent); exit; } $status = 1; $user = $_SESSION['user_id']; if ($this->model->editEvent($event_name, $event_location, $event_start, $event_hour_start, $event_end, $event_hour_end, $event_description, $facebook, $instagram, $youtube, $twitter, $status, $user, $idEvent)) { if (isset($_POST['event_categories'])) { for ($i = 0; $i < count($event_categories); $i++) { //$idEvent = $lastId; $idCategory = $event_categories[$i]; $this->model->editCategories($idCategory, $idEvent); } } else { if (isset($_POST['categoriesSave']) && !empty($_POST['categoriesSave'])) { $idCategory = $_POST['categoriesSave']; $this->model->editCategories($idCategory, $idEvent); } } if (isset($_POST['missions'])) { for ($i = 0; $i < count($event_missions); $i++) { if ($_POST['missions'][$i] !== '') { $missions = $event_missions[$i]; $nbVolunteer = $nb_volunteer[$i]; $this->model->insertMissions($idEvent, $missions, $nbVolunteer); } } } else { } if (!empty($_POST['missionsSave'])) { for ($i = 0; $i < count($_POST['missionsSave']); $i++) { if ($_POST['missionsSave'][$i] !== '') { $idMission = $_POST['idMissionsSave'][$i]; $missions = $_POST['missionsSave'][$i]; $nbVolunteer = $_POST['nbVolunteerSave'][$i]; $this->model->editMissions($idEvent, $missions, $nbVolunteer, $idMission); } } } if (!empty($_FILES['coverPicture']['name'])) { $file = new Upload($_FILES['coverPicture']['name'], $_FILES["coverPicture"]["tmp_name"], 'assets/img/events/uploads/', ''); if ($file->extControl()) { if ($file->moveFile()) { if ($file->resizeFile()) { $coverPicture = $file->setNom(); $this->model->insertCoverPicture($idEvent, $coverPicture); } else { $coverPicture = $file->setNom(); $this->model->insertCoverPicture($idEvent, $coverPicture); } } } } else { if (isset($_POST['coverPictureSave']) && !empty($_POST['coverPictureSave'])) { $coverPicture = $_POST['coverPictureSave']; $this->model->insertCoverPicture($idEvent, $coverPicture); } } if (!empty($_FILES['media'])) { for ($i = 0; $i < count($_FILES['media']['name']); $i++) { $name = $_FILES['media']['name'][$i]; $tmp_name = $_FILES["media"]["tmp_name"][$i]; $media = new Upload($name, $tmp_name, 'assets/img/events/uploads/', ''); if ($media->extControl()) { if ($media->moveFile()) { if ($media->resizeFile()) { $picture = $media->setNom(); $this->model->insertMediaPicture($idEvent, $picture); } else { $picture = $media->setNom(); $this->model->insertMediaPicture($idEvent, $picture); } } } } } if (isset($_POST['mediasSave']) && !empty($_POST['mediasSave'])) { for ($i = 0; $i < count($_POST['mediasSave']); $i++) { $picture = $_POST['mediasSave'][$i]; //Fonction update } } //Chargement de la vue de l'évènement $messageFlash = 'Your event has been published'; $this->coreSetFlashMessage('sucess', $messageFlash, 3); header("location:show/" . $idEvent); exit; } else { define("TITLE_HEAD", "Erreur | Volunteers"); // Chargement de la vue $this->load->view('view_error.php'); } } else { define("TITLE_HEAD", "Erreur | Volunteers"); // Chargement de la vue $this->load->view('view_error.php'); } } } else { $messageFlash = 'Please log in'; $this->coreSetFlashMessage('error', $messageFlash, 3); header("location:../home/home"); exit; } }
} require "classes/upload.php"; if (!file_exists("banners/{$log_user_id}")) { mkdir("banners/{$log_user_id}", 0755); } $files_array = array(); $files_array['fileName'] = $_FILES['banner']['name']; $files_array['fileType'] = $_FILES['banner']['type']; $files_array['fileSize'] = $_FILES['banner']['size']; $files_array['file_tmp_name'] = $_FILES['banner']['tmp_name']; $files_array['fileErrors'] = $_FILES['banner']['error']; $upload = new Upload($files_array, '1572864', $log_user_id); //$fileArray = $upload->getFileArray(); $regex = "/^.*\\.(jpg|jpeg|png|gif)\$/i"; if (count($upload->checkFile($regex)) == 0) { $moveit = $upload->moveFile("", "/banners"); if ($moveit == true) { $query = $db->query("UPDATE members SET banner='{$moveit}' WHERE username='******' AND id='{$log_user_id}' LIMIT 1"); require "classes/img_resize.php"; $img = new ResizeIMG($log_user_id); $img->loadFile("/banners", "{$moveit}"); $img->resizew(800); $img->saveFile("/banners", "{$moveit}", 90); header("location: profile.php?user={$log_uname}"); $db = null; exit; //echo $moveit; } else { $errormsg = $upload->checkFile($regex); echo $errormsg[0]; }
/** Fonction de modification des informations de l'utilisateur via son profil * */ public function edit() { if (isset($_SESSION['user_id']) && isset($_SESSION['user_email'])) { if (isset($_POST)) { if (isset($_POST['first_name'])) { $first_name = $_POST['first_name']; } else { $first_name = null; } if (isset($_POST['last_name'])) { $last_name = $_POST['last_name']; } else { $last_name = null; } if (isset($_POST['email'])) { if ($this->coreCheckEmail($_POST['email'])) { $email = $_POST['email']; } else { $messageFlash = 'Wrong email adress. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 4); header('Location:profile/home'); exit; } } if (isset($_POST['BirthDateSaved'])) { $birth_date = $_POST['BirthDateSaved']; } elseif (isset($_POST['birth_day']) && isset($_POST['birth_month']) && isset($_POST['birth_year'])) { $birth_date = $_POST['birth_day'] . "/" . $_POST['birth_month'] . "/" . $_POST['birth_year']; } else { $birth_date = null; } if (isset($_POST['location'])) { $location = $_POST['location']; } else { $location = null; } if (isset($_POST['skills'])) { $skills = $_POST['skills']; } else { $skills = null; } if (isset($_POST['description'])) { $description = $_POST['description']; } else { $description = null; } if (isset($_POST['school'])) { $school = $_POST['school']; } else { $school = null; } if (isset($_POST['work'])) { $work = $_POST['work']; } else { $work = null; } $id = $_SESSION['user_id']; if (!empty($_FILES['userPicture']['name'])) { $file = new Upload($_FILES['userPicture']['name'], $_FILES["userPicture"]["tmp_name"], 'assets/img/user_pp/', ''); if ($file->extControl()) { if ($file->moveFile()) { $userPicture = $file->setNom(); $lastId = $this->model->insertUserPicture($userPicture); } else { // fichier non déplacé define("TITLE_HEAD", "An error occur."); $messageFlash = 'An error occur. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 3); header('Location:profile/home'); exit; } } else { // Extension non autorisée define("TITLE_HEAD", "An error occur."); $messageFlash = 'Invalid file extension. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 3); header('Location:profile/home'); exit; } } else { if (isset($_POST['userPictureSaved'])) { // TODO // Supprimer l'ancienne photo $userPicture = $_POST['userPictureSaved']; $lastId = $this->model->insertUserPicture($userPicture); } else { $lastId = null; } } if (!$this->model->update_profile($id, $first_name, $last_name, $birth_date, $email, $location, $description, $skills, $school, $work, $lastId)) { // Si pas de données updaté define("TITLE_HEAD", "An error occur."); $messageFlash = 'An error occur. Please try again.'; $this->coreSetFlashMessage('error', $messageFlash, 3); header('Location:profile/home'); exit; } else { $messageFlash = 'Done ! Your information has been updated !'; $this->coreSetFlashMessage('sucess', $messageFlash, 4); header('Location:profile/home'); exit; } } else { // Pas de post $messageFlash = 'Error !'; $this->coreSetFlashMessage('error', $messageFlash, 5); define("TITLE_HEAD", "Error | Volunteers"); $this->load->view('view_error.php'); } } else { // Pas de session $messageFlash = 'Error ! You are not logged in !'; $this->coreSetFlashMessage('error', $messageFlash, 5); define("TITLE_HEAD", "Error | Volunteers"); $this->load->view('view_error.php'); } }