public static function __executeFormNew($model, array $data) { $dossier = Kernel::path("uploads"); $fichier = basename($data['name']); $taille_maxi = 100000; //$taille = filesize($data['tmp_name']); $extensions = array('.png', '.gif', '.jpg', '.jpeg'); $extension = strrchr($data['name'], '.'); //Début des vérifications de sécurité... if (!in_array($extension, $extensions)) { return false; } /*if($taille>$taille_maxi) { return false; }*/ if (!isset($erreur)) { //On formate le nom du fichier ici... $fichier = strtr($fichier, 'ÀÁÂÃÄÅÇÈÉÊËÌÍÎÏÒÓÔÕÖÙÚÛÜÝàáâãäåçèéêëìíîïðòóôõöùúûüýÿ', 'AAAAAACEEEEIIIIOOOOOUUUUYaaaaaaceeeeiiiioooooouuuuyy'); $fichier = preg_replace('/([^.a-z0-9]+)/i', '-', $fichier); if (move_uploaded_file($data['tmp_name'], $dossier . $fichier)) { $image = $model->Image->save(array("nom" => str_replace($extension, "", $fichier), "type" => str_replace(".", "", $extension), "width" => "1000")); return $image; } else { return false; } } else { return false; } }
function img($name) { echo '/' . Kernel::path("themes") . 'images/' . $name; }
<meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" > <link type="text/css" rel="stylesheet" href="<?php echo Kernel::path("themes", true); ?> default/css/style.css" /> <script src="<?php echo Kernel::path("themes", true); ?> default/js/jquery.js"></script> <script src="<?php echo Kernel::path("themes", true); ?> default/js/tiny_mce/tiny_mce.js"></script> <script src="<?php echo Kernel::path("themes", true); ?> default/js/functions.js"></script> <script type="text/javascript"> var typeForRefresh = '<?php echo $type; ?> '; var nameForRefresh = '<?php echo $name; ?> '; var urlList = '<?php