$sqlUpdateField = "";
if ($_POST['chkClearImg'] == '') {
$extsmall = getFileExtention($_FILES['txtImage']['name']);
if (makeUpload($_FILES['txtImage'], "{$path}/" . $actConfig . "_s" . $oldid . $extsmall)) {
@chmod("{$path}/" . $actConfig . "_s" . $oldid . $extsmall, 0777);
$sqlUpdateField = " image='{$pathdb}/" . $actConfig . "_s" . $oldid . $extsmall . "' ";
}
} else {
if (file_exists('../' . $r['image'])) {
@unlink('../' . $r['image']);
}
$sqlUpdateField = " image='' ";
}
if ($_POST['chkClearImgLarge'] == '') {
$extlarge = getFileExtention($_FILES['txtImageLarge']['name']);
if (makeUpload($_FILES['txtImageLarge'], "{$path}/" . $actConfig . "_l" . $oldid . $extlarge)) {
@chmod("{$path}/" . $actConfig . "_l" . $oldid . $extlarge, 0777);
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large='{$pathdb}/" . $actConfig . "_l" . $oldid . $extlarge . "' ";
}
} else {
if (file_exists('../' . $r['image_large'])) {
@unlink('../' . $r['image_large']);
}
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large='' ";
}
$extsmall = substr($_FILES['txtImage']['name'], -4, 4);
if (makeUpload($_FILES['txtImage'], "{$path}/" . $nameImage . "_" . $oldid . "_s" . $extsmall)) {
@chmod("{$path}/" . $nameImage . "_" . $oldid . "_s" . $extsmall, 0777);
$sqlUpdateField = " image='{$pathdb}/" . $nameImage . "_" . $oldid . "_s" . $extsmall . "' ";
}
} else {
if (file_exists('../' . $r['image'])) {
@unlink('../' . $r['image']);
}
$sqlUpdateField = " image='' ";
}
// KET THUC THEM HINH image
//THEM HINH ImgLarge
if ($_POST['chkClearImgLarge'] == '') {
$extlarge = substr($_FILES['txtImageLarge']['name'], -4, 4);
if (makeUpload($_FILES['txtImageLarge'], "{$path}/" . $nameImage . "_l" . $oldid . $extlarge)) {
@chmod("{$path}/" . $nameImage . "_l" . $oldid . $extlarge, 0777);
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large='{$pathdb}/" . $nameImage . "_l" . $oldid . $extlarge . "' ";
}
} else {
if (file_exists('../' . $r['image_large'])) {
@unlink('../' . $r['image_large']);
}
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large='' ";
}
//xoa file cu
if ($r['image_large1'] != '') {
@unlink($r['image_large1']);
}
}
}
//hinh 4
//$ArrImage = array('jpg','gif','bmp','jpeg','png');
//$nameImage = trim(str_replace("-", "",$nameMember));
//hinh Avatar
$filenameAvatar4 = $_FILES['txtImageLarge2']['name'];
$extlargeAvatar4 = end(explode(".", $filenameAvatar4));
//exit();
if (array_keys($ArrImage, $extlargeAvatar4)) {
$file_nameInputAvatar4 = "{$path}/" . $nameImage . time() . "_Avatar4." . $extlargeAvatar4;
if (makeUpload($_FILES['txtImageLarge2'], $file_nameInputAvatar4)) {
@chmod($file_nameInputAvatar4, 0404);
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large2='" . $file_nameInputAvatar4 . "' ";
//xoa file cu
if ($r['image_large2'] != '') {
@unlink($r['image_large2']);
}
}
}
if ($sqlUpdateField != '') {
$sqlUpdate = "update " . $tableNewId . " set {$sqlUpdateField} where id='" . $oldid . "'";
$sqlUpdate1 = "update " . $tableNew . " set {$sqlUpdateField} where id_code='" . $oldid . "'";
@mysql_query($sqlUpdate, $conn);
if ($errMsg == '') {
if (!empty($_POST['id'])) {
$oldid = $_POST['id'];
$sql = "update " . $tableConfig . " set code='" . $code . "',name='" . $name . "', parent='" . $parent . "',subject='" . $subject . "',short_description='" . $short_description . "',full_description='" . $full_description . "', sort='" . $sort . "', status='" . $status . "',last_modified=now(), lang='" . $lang . "',price='" . $price . "' where id='" . $oldid . "'";
} else {
$sql = "insert into " . $tableConfig . " (code, name, parent, subject, short_description, full_description, sort, status, date_added, last_modified, lang,price) values ('" . $code . "','" . $name . "','" . $parent . "','" . $subject . "','" . $short_description . "','" . $full_description . "','" . $sort . "','" . $status . "',now(),now(),'" . $lang . "','" . $price . "')";
}
if (mysql_query($sql, $conn)) {
if (empty($_POST['id'])) {
$oldid = mysql_insert_id();
}
$r = getRecord($tableConfig, "id=" . $oldid);
$sqlUpdateField = "";
if ($_POST['chkClearImg'] == '') {
$extsmall = getFileExtention($_FILES['txtImage']['name']);
if (makeUpload($_FILES['txtImage'], "{$path}/" . $actConfig . "_s" . $oldid . $extsmall)) {
@chmod("{$path}/" . $actConfig . "_s" . $oldid . $extsmall, 0777);
$sqlUpdateField = " image='{$pathdb}/" . $actConfig . "_s" . $oldid . $extsmall . "' ";
}
} else {
if (file_exists('../' . $r['image'])) {
@unlink('../' . $r['image']);
}
$sqlUpdateField = " image='' ";
}
/*if ($_POST['chkClearImgLarge']==''){
$extlarge=getFileExtention($_FILES['txtImageLarge']['name']);
if (makeUpload($_FILES['txtImageLarge'],"$path/".$actConfig."_l".$oldid.$extlarge)){
@chmod("$path/".$actConfig."_l".$oldid.$extlarge, 0777);
if($sqlUpdateField != "") $sqlUpdateField .= ",";
$sqlUpdateField .= " image_large='$pathdb/".$actConfig."_l".$oldid.$extlarge."' ";
$sqlUpdateField = "";
if ($_POST['chkClearImg'] == '') {
$extsmall = getFileExtention($_FILES['txtImage']['name']);
if (makeUpload($_FILES['txtImage'], "{$path}/product_category_s{$oldid}{$extsmall}")) {
@chmod("{$path}/product_category_s{$oldid}{$extsmall}", 0777);
$sqlUpdateField = " image='{$pathdb}/product_category_s{$oldid}{$extsmall}' ";
}
} else {
if (file_exists('../' . $r['image'])) {
@unlink('../' . $r['image']);
}
$sqlUpdateField = " image='' ";
}
if ($_POST['chkClearImgLarge'] == '') {
$extlarge = getFileExtention($_FILES['txtImageLarge']['name']);
if (makeUpload($_FILES['txtImageLarge'], "{$path}/product_category_l{$oldid}{$extlarge}")) {
@chmod("{$path}/product_category_l{$oldid}{$extlarge}", 0777);
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large='{$pathdb}/product_category_l{$oldid}{$extlarge}' ";
}
} else {
if (file_exists('../' . $r['image_large'])) {
@unlink('../' . $r['image_large']);
}
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large='' ";
}
//$ft_u = $path."/.htaccess";
//$ft_u = fopen($ft_u,"w");
//fwrite($ft_u,$noidunghtaccess);
} else {
chmod($path, 0777);
}
///tao thu muc cua nguoi nay===ket thuc
$ArrImage = array('jpg', 'gif', 'bmp', 'jpeg', 'png');
$nameImage = removeVietnamese($nameMember, " ", "-");
//trim(str_replace("-", "",$nameMember));
//hinh Avatar
$filenameAvatar = $_FILES['txtImage']['name'];
$extlargeAvatar = end(explode(".", $filenameAvatar));
if (array_keys($ArrImage, $extlargeAvatar)) {
$file_nameInputAvatar = "{$path}/" . $nameImage . time() . "_avatar." . $extlargeAvatar;
if (makeUpload($_FILES['txtImage'], $file_nameInputAvatar)) {
@chmod($file_nameInputAvatar, 0404);
$sqlUpdateField .= " image='" . $file_nameInputAvatar . "' ";
//xoa file cu
if ($rowMemberIdInfo['image'] != '') {
@unlink($rowMemberIdInfo['image']);
}
}
}
if ($sqlUpdateField != '') {
$sqlUpdate = "update " . $tableMemberId . " set {$sqlUpdateField} where id='" . $idMember . "'";
$sqlUpdate1 = "update " . $tableMember . " set {$sqlUpdateField} where id_code='" . $idMember . "'";
@mysql_query($sqlUpdate, $conn);
@mysql_query($sqlUpdate1, $conn);
}
chmod($path, 0701);
}
} else {
if (file_exists('../' . $r['image'])) {
@unlink('../' . $r['image']);
}
$sqlUpdateField = " image='' ";
}
// KET THUC THEM HINH image
//THEM HINH ImgLarge
if ($_POST['chkClearImgLarge'] == '') {
$filename = $_FILES['txtImageLarge']['name'];
$extlarge = end(explode(".", $filename));
$file_name = removeSpecial(current(explode(".", $filename)), $ojer, $ojers);
$file_nameInput = "{$path}/" . $nameImage . time() . "_l" . $oldid . "." . $extlarge;
$file_nameInput1 = "{$pathdb}/" . $nameImage . time() . "_l" . $oldid . "." . $extlarge;
if (makeUpload($_FILES['txtImageLarge'], $file_nameInput)) {
@chmod($file_nameInput, 0777);
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
}
$sqlUpdateField .= " image_large='{$file_nameInput1}' ";
if (file_exists('../' . $r['image_large'])) {
@unlink('../' . $r['image_large']);
}
}
} else {
if (file_exists('../' . $r['image_large'])) {
@unlink('../' . $r['image_large']);
}
if ($sqlUpdateField != "") {
$sqlUpdateField .= ",";
