function upsert($today, $pilotName, $pilotRank, $pilotLevel, $pilotKeyID, $pilotVcode, $pilotCharID, $corporationName, $corporationId, $allianceName, $allianceId, $pilotRealName, $pilotGender, $pilotBirthDay, $pilotBirthMonth, $pilotBirthYear, $pilotCountry, $pilotTimeZone, $pilotEmail, $pilotFacebookID, $pilotStatus, $pilotQuestionaire, $pilotPrimary, $pilotAltAccount) { $q = mysql_query("SELECT * FROM ecms_pilots WHERE pilotKeyID = '{$pilotKeyID}' AND pilotVcode = '{$pilotVcode}' AND pilotCharID = '{$pilotCharID}';"); $num = mysql_num_rows($q); if ($num == 0) { insertSql($today, $pilotName, $pilotRank, $pilotLevel, $pilotKeyID, $pilotVcode, $pilotCharID, $corporationName, $corporationId, $allianceName, $allianceId, $pilotRealName, $pilotGender, $pilotBirthDay, $pilotBirthMonth, $pilotBirthYear, $pilotCountry, $pilotTimeZone, $pilotEmail, $pilotFacebookID, $pilotStatus, $pilotQuestionaire, $pilotPrimary, $pilotAltAccount); } else { updateSql($today, $pilotName, $pilotRank, $pilotLevel, $pilotKeyID, $pilotVcode, $pilotCharID, $corporationName, $corporationId, $allianceName, $allianceId, $pilotRealName, $pilotGender, $pilotBirthDay, $pilotBirthMonth, $pilotBirthYear, $pilotCountry, $pilotTimeZone, $pilotEmail, $pilotFacebookID, $pilotStatus, $pilotQuestionaire, $pilotPrimary, $pilotAltAccount); } }
foreach ($info as $k => $v) { $info[$k] = addslashes($v); } // update || insert echo $info["title_url"] . " (" . $descr1 . ")"; list($num, $res) = queryS("SELECT `article_id` FROM `article` WHERE `title_url`='" . $info["title_url"] . "'"); if ($num) { $mode = "update"; $row = mysql_fetch_assoc($res); $save["article"] = $info["article"]; $sqle = updateSql($row["article_id"], $save, "article", "article_id"); echo "exists. updating... "; } else { $mode = "insert"; $save = $info; $sqle = insertSql($save, "article"); echo "does not exist. inserting... "; } // report if (!queryE($sqle)) { echo "fail\n"; } else { echo "sucess\n"; if ($mode == "insert" && ($article_id = mysql_insert_id())) { $tags = array("programming", "php", "javascript", "phpjs"); foreach ($tags as $k => $tag_raw) { $tag = substr(addslashes(preg_replace('/[^A-z0-9_\\s]/', '', trim(preg_replace('/([\\s][\\s]*)/', " ", $tag_raw)))), 0, 50); if (!trim($tag)) { continue; } $tag_id = addTag($tag);
} if ($estado == "terminada") { if ($movil["estado"] != "terminada") { $estado = cambiaEstado($movilid, "terminada"); } } if ($estado == "cumplida") { if ($movil["estado"] != "cumplida") { $estado = cambiaEstado($movilid, "cumplida"); } } //&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& //STORE INFORMATION IN DATABASE //&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& insertSql("Movilidad", $MOVILIDAD_FIELDS); insertSql("Usuarios", array("email" => "", "programa" => "")); statusMsg("Solicitud guardada."); //errorMsg("Cargado"); //goto endaction; } if ($action == "Borrar") { mysqlCmd("delete from Movilidad where movilid='{$movilid}'"); $movildir = "data/movilidad/{$movilid}"; if (is_dir($movildir)) { shell_exec("rm -r {$movildir}"); statusMsg("Solicitud '{$movilid}' borrada."); } else { errorMsg("La solicitud '{$movilid}' no existe"); } $mode = "lista"; }
require 'public.php'; require 'unLoginTip.php'; if (!empty($_POST['nameVal'])) { $album_name = $_POST['nameVal']; $album_desc = $_POST['descVal']; $create_time = date('Y-m-d H:i:s'); // $result = selectSql('albums','album_name','user_id='.$userId); // $albumNameArr = array(); // while($row = mysql_fetch_assoc($result['msg'])){ // $albumNameArr[] = $row['album_name']; // } // if(in_array($album_name,$albumNameArr)){ // echo json_encode(array('state'=>0,'msg'=>'该相册已存在.')); // } // else{ $result = insertSql('albums', 'album_name,album_desc,user_id,create_time', "'{$album_name}','{$album_desc}','{$userId}','{$create_time}'"); if ($result['state'] === 1) { echo json_encode(array('state' => 1, 'msg' => '相册创建成功.')); } else { echo json_encode(array('state' => 0, 'msg' => '相册创建失败.')); } // } return false; } $smarty->assign('userId', $userId); $smarty->assign('userName', $userName); $smarty->assign('cssFileName', 'albumCreate'); $smarty->display('albumCreate.tpl'); ?>
} } else { echo json_encode(array('state' => 0, 'msg' => '无效的文件类型')); } return false; } //保存上传图片到数据库中 if (!empty($_POST['act']) && $_POST['act'] == 'save' && !empty($_POST['fileNameArr']) && !empty($_POST['fileSizeArr']) && !empty($_POST['album_id'])) { $fileNameArr = $_POST['fileNameArr']; $fileSizeArr = $_POST['fileSizeArr']; $album_id = $_POST['album_id']; $upload_time = date('Y-m-d H:i:s'); $uploadError = false; $uploadErrorFile = array(); for ($i = 0; $i < count($fileNameArr); $i++) { $result = insertSql('photos', 'photo_name,photo_size,album_id,user_id,upload_time', "'{$fileNameArr[$i]}','{$fileSizeArr[$i]}','{$album_id}','{$userId}','{$upload_time}'"); if ($result['state'] == 0) { $uploadError = true; $uploadErrorFile[] = $fileNameArr[$i]; } } if ($uploadError) { $tip = '您有' . count($uploadErrorFile) . '张图片没有上传成功,分别是、'; foreach ($uploadErrorFile as $value) { $tip .= '、' . $value; } echo json_encode(array('state' => 0, 'msg' => $tip)); } else { echo json_encode(array('state' => 1, 'msg' => '恭喜,全部图片上传成功')); } return false;
goto endaction; } else { if (preg_match("/[\\.\\s]+/", $documento)) { errorMsg("El documento no puede tener ni puntos, ni espacios"); goto endaction; } if (!preg_match("/\\d/", $documento)) { errorMsg("El documento debe contener solo números"); goto endaction; } } if (strlen($ERRORS) == 0) { //DATABASE ENTRY $password = md5($password); $permisos = "1"; insertSql("Usuarios", array("documento" => "", "nombre" => "", "email" => "", "password" => "", "permisos" => "")); //MESSAGES statusMsg("Usuario registrado. Revise su e-mail y active su cuenta."); unset($mode); $message = <<<M <p> Señor(a) Usuario, </p> <p> Hemos recibido una solicitud desde este dirección de correo electrónico para crear una cuenta en {$SINFIN}. Si esta es su dirección de correo electrónico, active ya su cuenta usando el enlace provisto abajo: </p> <p> <a href="{$SITEURL}/usuarios.php?action=activar&email={$email}">Click para activar su cuenta</a>
} if ($action == "Confirmado") { $status = 6; } if (!isset($notificado)) { $notificado = ""; } $_POST["notificado"] = $notificado; //SAVE SERIALIZED ARRAY $fl = fopen($recfile, "w"); fwrite($fl, serialize($_POST)); fclose($fl); //UPDATING STUDENTS DATABASE insertSql("Estudiantes", array("documento" => "", "nombre" => "", "email" => "", "universidad" => "")); //UPDATING RECONOCIMIENTOS insertSql("Reconocimientos", array("recid" => "", "fecha" => "date", "fechahora" => "DATE", "acto" => "", "responsables" => "", "status" => "", "notificado" => "", "instituto" => "", "Planes_planid" => "planid", "Estudiantes_documento" => "documento")); //SEND EMAIL if ($action == "Aprobado" and !$qnotificado) { $Plan = mysqlCmd("select * from Planes where planid='{$planid}'"); $programaid = $Plan["Programas_programaid"]; $version = $Plan["version"]; $Programa = mysqlCmd("select * from Programas where programaid='{$programaid}'"); $programa = $Programa["programa"]; $recdir = getRecdir($recid); $recbase = "{$recdir}/recon"; $recurl = "{$SITEURL}/" . preg_replace("/^\\/.+\\/data/", "data", $recbase) . ".pdf"; $subject = "[SInfIn] Reconocimiento de Materias Aprobado"; $message = <<<M <p> Señor(a) Estudiante, </p>
$password = md5($_POST['password']); $verificationCode = $_POST['verificationCode']; $verificationCode = strtoupper($verificationCode); //把用户输入的验证码转化为大写 $registTime = date('Y-m-d H:i:s'); $result = selectSql('users', 'user_name', ''); $userNameArr = array(); while ($row = @mysql_fetch_assoc($result['msg'])) { $userNameArr[] = $row['user_name']; } if (in_array($userName, $userNameArr)) { echo json_encode(array('state' => 0, 'msg' => '该用户名已被占用.')); } else { $saveCode = $_SESSION['checkCode']; if ($saveCode == $verificationCode) { $result = insertSql('users', 'user_name,email,user_password,regist_time', "'{$userName}','{$email}','{$password}','{$registTime}'"); if ($result['state'] === 1) { echo json_encode(array('state' => 1, 'msg' => '恭喜,注册成功.')); $_SESSION['userName'] = $userName; $_SESSION['userId'] = mysql_insert_id(); } else { echo json_encode(array('state' => 0, 'msg' => '抱歉,注册失败.')); } } else { echo json_encode(array('state' => 0, 'msg' => '验证码输入错误.')); } } return false; } $smarty->assign('cssFileName', 'style'); $smarty->display('regist.tpl');
if (!empty($_POST['friendId'])) { $friendId = $_POST['friendId']; $addTime = date('Y-m-d H:i:s'); //检测当前用户是否已是朋友 $result = selectSql('friends', 'friend_id', 'user_id=' . $nowUserId); if ($result['state'] == 1) { $friendIds = array(); while ($rows = mysql_fetch_assoc($result['msg'])) { $friendIds[] = $rows['friend_id']; } if (in_array($friendId, $friendIds)) { //如果已是好友 echo json_encode(array('state' => 0, 'msg' => '已经是你的好友,加好友失败。')); } else { //否则,添加为好友 $result = insertSql('friends', 'friend_id,user_id,add_time', "'{$friendId}','{$nowUserId}','{$addTime}'"); if ($result['state'] == 1) { echo json_encode(array('state' => 1, 'msg' => '加好友成功')); } else { echo json_encode(array('state' => 0, 'msg' => '加好友失败')); } } } return false; } if (!empty($nowUserId)) { $result = selectSql('albums', 'album_id', 'user_id=' . $nowUserId); if ($result['state'] == 1) { //读取所有相册个数 $albumNum = mysql_num_rows($result['msg']); $smarty->assign('albumNum', $albumNum);
$date2 = date_create($fechafin . " UTC-5"); $dif = date_diff($date1, $date2); $hours = 24 * $dif->format("%d") + $dif->format("%h"); if ($hours > $PLAZO) { $resultado = "<i style='color:red'>Boleta registrada después del plazo reglamentario. La actividad ocurrió hace {$hours} horas y el plazo era de {$PLAZO} horas.</i>"; $tarde = 1; } else { $resultado = "Boleta registrada exitosamente."; $tarde = 0; } //GUARDAR $semestre = $actividad["semestre"]; $IP = get_client_ip(); $result = mysqlCmd("select now();", $qout = 0); $fechahora = $result[0]; insertSql("Boletas", array("boletaid" => "", "Usuarios_documento" => "", "Actividades_actid" => "", "fechahora" => "", "IP" => "", "tarde" => "", "semestre" => "")); } //%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% //CREAR ACTIVIDADES //%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% if ($action == "Consultar") { $mode = "consultar"; if (isBlank($semestre)) { errorMsg("Debe proveer el semestre"); goto endaction; } if (isBlank($documentos)) { errorMsg("Debe proveer al menos un documento"); goto endaction; } //SPLIT DOCUMENTOS
errorMsg("Password invalid"); goto endaction; } if ($password != $cpassword) { errorMsg("Paswords does not match"); goto endaction; } if (isBlank($uname)) { errorMsg("Invalid name"); goto endaction; } if (strlen($ERRORS) == 0) { //DATABASE ENTRY $password = md5($password); $ulevel = "1"; insertSql("Users", array("uname" => "", "email" => "", "password" => "", "ulevel" => "")); //MESSAGES statusMsg("User has been registered. Please check your e-mail to activate the\naccount."); $message = <<<M <p> Dear {$name}, </p> <p> We have received your request to open an account in {$tQuakes} website. In order to use your account you need to activate it using the link below: </p> <p> <a href="{$WEBSERVER}/index.php?action=activate&email={$email}">Click to activate your account</a> </p> <p>Best wishes,</p>
if ($result['state'] == 1) { $rows = mysql_fetch_assoc($result['msg']); $photoName = $rows['photo_name']; $albumId = $rows['album_id']; //更新相册封面 $result = updateSql('albums', "album_cover='{$photoName}'", 'album_id=' . $albumId); if ($result['state'] == 1) { echo json_encode(array('state' => 1, 'msg' => '设置成功.')); } else { echo json_encode(array('state' => 0, 'msg' => '设置失败.')); } } return false; } if (!empty($_POST['photoOwnerId']) && !empty($_POST['postText']) && !empty($_POST['act']) && $_POST['act'] == 'addComment') { $photoId = $_POST['photoId']; $postText = $_POST['postText']; $commentTime = date('Y-m-d H:i:s'); $commenterId = $userId; $photoOwnerId = $_POST['photoOwnerId']; //添加评论 $result = insertSql('photoComments', 'comment_txt,commenter_id,photoOwner_id,photo_id,comment_time', "'{$postText}','{$commenterId}','{$photoOwnerId}','{$photoId}','{$commentTime}'"); if ($result['state'] == 1) { echo json_encode(array('state' => 1, 'msg' => '评论成功.')); } else { echo json_encode(array('state' => 0, 'msg' => '评论失败.')); } return false; } ?>