function upload_file() { if (strlen($_FILES['attachment']['tmp_name']) > 0) { $str = file_to_str($_FILES['attachment']['tmp_name'], $_FILES['attachment']['size']); } else { echo 'nothing to upload'; return; } $link = mysql_connect('127.0.0.1', $_SESSION['login'], $_SESSION['password']); mysql_select_db('attachment', $link); if ($_POST['_attachment_id'] > 0) { $sql = 'update attachment set attachment=\'' . $str . '\' , attachment_name=\'' . $_FILES['attachment']['name'] . '\' where id=\'' . $_POST['_attachment_id'] . '\''; //echo $sql.'<br>'; if (!($result = mysql_query($sql, $link))) { echo mysql_error(); } echo mysql_affected_rows($link) . ' rows updated in attachment table of attachment database<br>'; //no need to update the link to original database } else { $sql = 'insert into attachment values(\'\', \'' . $str . '\' , \'' . $_FILES['attachment']['name'] . '\')'; //echo $sql.'<br>'; if (!($result = mysql_query($sql, $link))) { echo mysql_error(); } $attachment_id = mysql_insert_id($link); echo 'id of new upload is ' . $attachment_id . ' <br>'; //save link in original database $wh = ''; foreach ($_POST as $key => $value) { $chr = str_split($key); if ($chr[0] == '_' && $chr[1] == 'p' && $chr[2] == 'r' && $chr[3] == 'i' && $chr[4] == '_') { $field = ''; for ($i = 5; $i < strlen($key); $i++) { $field = $field . $chr[$i]; } $wh = $wh . ' `' . $field . '`=\'' . $value . '\' and '; } $final_wr = substr($wh, 0, -4); } mysql_select_db($_POST['_database'], $link); $sql_link = 'update `' . $_POST['_tablename'] . '` set attach=\'' . $attachment_id . '\' where ' . $final_wr; //echo $sql_link.'<br>'; if (!($result = mysql_query($sql_link, $link))) { echo mysql_error(); } echo mysql_affected_rows($link) . ' rows updated in table ' . $_POST['_tablename'] . ' of ' . $_POST['_database'] . ' database<br>'; } }
function insert_attachment($array, $files) { if (strlen($files['file']['tmp_name']) > 0) { $str = file_to_str($files['file']); $sql = 'insert into attachment values( \'' . $array['sample_id'] . '\', \'' . $array['attachment_id'] . '\', \'' . $array['description'] . '\', \'' . $array['filetype'] . '\', \'' . $str . '\')'; //echo $sql; $link = start_nchsls(); if (!($result = mysql_query($sql, $link))) { echo mysql_error(); } else { echo 'success'; } } else { echo 'no file to attach<br>'; } }
function upload_blob($tname, $field) { $pri = find_primary($tname); $where_condition = ' '; foreach ($pri as $key => $value) { $where_condition = $where_condition . ' `' . $value . '`=\'' . $_POST[$value] . '\' and '; } $where_condition_final = substr($where_condition, 0, -4); $file_name = $field . '_name'; //echo '<h3>'.$file_name.'</h3>'; if (strlen($_FILES[$field]['tmp_name']) > 0) { $str = file_to_str($_FILES[$field]['tmp_name'], $_FILES[$field]['size']); $sql = 'update `' . $tname . '` set ' . $field . '=\'' . $str . '\', ' . $file_name . '=\'' . $_FILES[$field]['name'] . '\' where ' . $where_condition_final; //echo $sql; $link = start_nchsls(); if (!($result = mysql_query($sql, $link))) { echo mysql_error(); } else { echo 'upload is success<br>'; } } else { echo 'nothing to upload'; } }