//---------------------------------------------------------------------------------------------
//
// Interception filter
//
if(!$frontDoor)
die('No direct access to pagecontroller allowed!');
//---------------------------------------------------------------------------------------------
//
// creating objects
//
$pc = new CPageController();
$db = new CDatabaseController();
//--------------------------------------------------------------------------------------------
//
// taking care of variables
//
$idUser = $pc->SessionIsSetOrSetDefault('idUser');
$idArticle = $pc->PostIsSetOrSetDefault('idArticle');
$idFile = $pc->PostIsSetOrSetDefault('idFile');
$delete = $pc->PostIsSetOrSetDefault('updateOrDelete');
$tblAttachment = DBT_Attachment;
$spAttachFile = DBSP_PAttachFile;
$failRedirect = "?p=accounts";
$redirect = "?p=accounts";
$userId = $_SESSION['idUser'];
//---------------------------------------------------------------------------------------------
//
// preparing and performing query
//
$result = ARRAY();
$spUpdatePassword = DBSP_PUpdatePassword;
$spUpdateEmail = DBSP_PUpdateEmail;
$spUpdateAvatar = DBSP_PUpdateAvatar;
$spUpdateGravatar = DBSP_PUpdateGravatar;
$db = new CDatabaseController();
$mysqli = $db->connectToDatabase();
//---------------------------------------------------------------------------------------------
//
// changing password
//
if($submit == "changepwd") {
$password = isset($_POST['userPwd']) ? $_POST['userPwd'] : '';
$passwordConfirm = isset($_POST['confPwd']) ? $_POST['confPwd'] : '';
$pc->CheckPassword($password, $passwordConfirm, $failRedirect);
public function CreateLinksToArticles() {
$spShowTopics = DBSP_PShowTopics;
$db = new CDatabaseController();
$topicsList = <<< EOD
<h3>Senaste artiklar</h3>
<hr class='artNav' />
EOD;
$query = "call {$spShowTopics}();";
$mysqli = $db->connectToDatabase();
$res = $db->performDirectQuery($query);
//------------------------------ retrieving and performing query
while($row = $res->fetch_object()) {
$articleId = $row->idTopic;
$articleTitle = $row->title;
$topicsList .= <<< EOD
<a href='?m=tuna&p=showtopic&articleId={$articleId}' class='articleNav'>{$articleTitle}</a>
<br />
EOD;
}
return $topicsList;
}
$articleId = isset($_GET['articleId']) ? $_GET['articleId'] : 0;
$postId = isset($_GET['postId']) ? $_GET['postId'] : 0;
$tblTopic = DBT_Topic;
$topicId = ($postId != 0) ? $postId : $articleId;
$parentId = ($postId == 0) ? $postId : $articleId;
// db -table
$tblTopic = DBT_Topic;
//---------------------------------------------------------------------------------------------
//
// quering database
//
$query = "SELECT * FROM {$tblTopic} WHERE idTopic = {$topicId};";
$db = new CDatabaseController();
$mysqli = $db->connectToDatabase();
$res = $db->performDirectQuery($query);
$row = $res->fetch_object();
$title = $row->topicTitle;
$content = $row->topicText;
$res->close();
$mysqli->close();
if(isset($_GET['articleTitle'])) {
$articleTitle = isset($_GET['articleTitle']) ? $_GET['articleTitle'] : '';
$query = <<< EOD
CALL {$spInsertFile}('{$idUser}', '{$file_name}', '{$uniqueName}', '{$path}', '{$size}', '{$mimetype}');
EOD;
$db->performDirectMultiQuery($query);
$mysqli->close();
}
}
} else {
$error = $_FILES['file']['error'];
echo $error;
}
} else if($submitAction == 'multiplefiles') {
$nr = 1;
$db = new CDatabaseController();
$mysqli = $db->ConnectToDatabase();
$tblFile = DBT_File;
$spInsertFile = DBSP_PInsertFile;
foreach($_FILES["file"]["name"] as $key =>$name) {
if($name != "") {
$temp_dir = $_FILES["file"]["tmp_name"][$key];
$file_name = basename($_FILES["file"]["name"][$key]);
$size = $_FILES['file']['size'][$key];
$mimetype = $_FILES['file']['type'][$key];
// set unique name
$uniqueName = strtolower($accountUser) . time() . $nr;
$path = $target . $uniqueName;
if(move_uploaded_file($temp_dir, $target . $uniqueName)) {
require_once(TP_SQLPATH . 'SQLCoreArticle.php');
$queryCode .= $queryArticle;
$queryInfo .= "<h2 class='installh2'>Installation av Core-Article</h2><pre>" . $queryArticle . "</pre><br />";
} else {
$queryInfo .= "<h2 class='installh2'>Installation av Core-Article</h2><br /><p class='alertInstall'>Disabled</p><br />";
}
if ($tunatalk == "tunatalk" || $custom == "custom") {
require_once(TP_SQLPATH . 'SQLTunatalk.php');
$queryCode .= $queryTunatalk;
$queryInfo .= "<h2 class='installh2'>Installation av Tunatalk</h2><pre>" . $queryTunatalk . "</pre><br />";
} else {
$queryInfo .= "<h2 class='installh2'>Installation av Tunatalk</h2><br /><p class='alertInstall'>Disabled</p><br />";
}
$db = new CDatabaseController();
$mysqli = $db->connectToDatabase();
$res = $db->performDirectMultiQuery($queryCode);
$mysqli->close();
$centerBody = <<< EOD
<br />
{$queryInfo}
<br />
EOD;
$subHeader = "<div class='adRightTurquoise'><a href='' class='big'>Kontrollpanel</a></div><h1>Installation av databas</h1>";
$leftBody = "";
// ------------------------------------------------------------------------------------------- // // Prepare and perform a SQL query. // $queryCode = "install"; $queryCodeArticle = "articleTable"; $queryCodeProcedures = "installProcedures"; $queryCodeTemporary = "tempInstall"; $queryCodeTunaTalk = "tunatalk"; $queryCodeFilesArchive = "filesArchive"; $db = new CDatabaseController(); $mysqli = $db->connectToDatabase(); $res = $db->performMultiQuery($queryCode); $query = $db->loadQuery($queryCode); $mysqli->close(); /* $mysqli = $db->connectToDatabase(); $res = $db->performMultiQuery($queryCodeArticle); $query2 = $db->loadQuery($queryCodeArticle); $mysqli->close(); $mysqli = $db->connectToDatabase(); $res = $db->performMultiQuery($queryCodeProcedures); $query3 = $db->loadQuery($queryCodeProcedures); $mysqli->close();
