protected function handle_file_upload($uploaded_file, $name, $size, $type, $error, $index = null, $content_range = null) { // $file = parent::handle_file_upload($uploaded_file, $name, $size, $type, $error, $index, $content_range); $file = new \stdClass(); $file->name = $name; $file->size = $size; // $file->content = json_encode($uploaded_file); $file->content = str_replace(array('"', '\\'), "", $uploaded_file); if (file_exists($file->content)) { $test = file_get_contents($file->content); $file->description = strlen($test); } $file->labbarcode = $_GET['labbarcode']; $file->urid = $_GET['urid']; //print_r($file); //require_once('functions.php'); if (empty($file->error)) { //AES_ENCRYPT(content, "basbas") $sql = 'INSERT INTO `' . $this->options['db_table'] . '` (`name`, `size`, `urid`, `labbarcode`, `description`, `content`)' . ' VALUES (?, ?, ?, ?, ?, aes_encrypt(?, "' . Config::filePictureKey() . '"))'; $query = $this->db->prepare($sql); $query->bind_param('siisss', $file->name, $file->size, $file->urid, $file->labbarcode, $file->description, $test); $query->execute(); $file->id = $this->db->insert_id; } return $file; }
function getRespondentsByBarcode($user, $searchterm) { global $db; $respondents = array(); $query = 'select primkey from ' . Config::dbSurveyData() . '_lab where aes_decrypt(barcode, \'' . Config::filePictureKey() . '\') = \'' . prepareDatabaseString($searchterm) . '\' or aes_decrypt(labbarcode, \'' . Config::filePictureKey() . '\') = \'' . prepareDatabaseString($searchterm) . '\''; //echo $query; $result = $db->selectQuery($query); while ($row = $db->getRow($result)) { if ($row['primkey'] != '') { $respondents[] = new Respondent($row['primkey']); } } if (sizeof($respondents) == 0) { //nothing found yet global $survey; $query = 'select primkey from ' . Config::dbSurveyData() . '_data where variablename="bs021" and cast(aes_decrypt(answer, \'' . $survey->getDataEncryptionKey() . '\') as char) = \'' . prepareDatabaseString($searchterm) . '\''; $result = $db->selectQuery($query); if ($result != null && $db->getNumberOfRows($result) > 0) { $row = $db->getRow($result); $respondents[] = new Respondent($row['primkey']); } } return $respondents; }
$result = $db->selectQuery($query); if ($result != null && $db->getNumberOfRows($result) > 0) { $row = $db->getRow($result); ob_clean(); header('Content-type: image/jpg'); if ($row['picture'] != null) { print $row['picture1']; } else { //display 'empty' image ob_clean(); header('Content-type: image/jpg'); echo file_get_contents('../../images/nopicture.png'); } exit; } else { //display 'empty' image ob_clean(); header('Content-type: image/jpg'); echo file_get_contents('../../images/nopicture.png'); exit; } } else { //store $query = 'replace into ' . Config::dbSurveyData() . '_pictures (primkey, variablename, picture) VALUES ('; $query .= '"' . addslashes($id) . '", '; $query .= '"' . addslashes($fieldname) . '", '; //$query .= '"' . addslashes(base64_decode(implode("", $_POST))) . '") '; $query .= 'AES_ENCRYPT("' . addslashes(base64_decode(implode("", $_POST))) . '", "' . Config::filePictureKey() . '")) '; $db->executeQuery($query); } }
function hasPicture($fieldname) { global $db; $query = 'select *, AES_DECRYPT(picture, \'' . Config::filePictureKey() . '\') as picture1 from ' . Config::dbSurveyData() . '_pictures where primkey=\'' . $this->getPrimkey() . '\' and variablename = \'' . $fieldname . '\''; $result = $db->selectQuery($query); if ($result != null) { $row = $db->getRow($result); if ($row['picture'] != null) { return true; } } return false; }
function showRespondentDownloadFile($id) { global $db; $user = new User($_SESSION['URID']); //CHECK ON USER!!!! $query = 'select *, AES_DECRYPT(content, "' . Config::filePictureKey() . '") as content from ' . Config::dbSurveyData() . '_files where id="' . $id . '"'; $result = $db->selectQuery($query); if ($result != null) { ob_clean(); $row = $db->getRow($result); ob_clean(); header('Content-type: image/png'); print $row['content']; exit; } echo Language::labelNurseErrorFileDownload(); }