$file = $dataMap['file']; $imageHandler = new eZImageAliasHandler( $file ); $alias = $imageHandler->imageAlias( 'fmc' ); $filePath = $alias["full_path"]; } $fileHandler = eZClusterFileHandler::instance($filePath); $extension = substr($filePath, strripos($filePath, '.') + 1); if ( $fileHandler->fileExists($filePath) ) { $image = true; } } } } else { exitError('Not an image object given'); } } if ( $image && isset($fileHandler) && $fileHandler ) { header('Content-Type: image/' . $extension); header('Content-Length: ' . $fileHandler->size()); $fileHandler->passthrough(); eZExecution::cleanExit(); } exitError();
function upload_img($filename, $config, $urlpath = false, $folderpath, $Current_image = null) { $CI =& get_instance(); if (empty($filename) || empty($config)) { return false; } list($ancho, $alto, $tipo, $atributos) = @getimagesize($_FILES[$filename]['tmp_name']); $limits = $CI->config->item($config); if ($ancho >= $limits['width'] && $alto >= $limits['height']) { $gconfig = $CI->config->item('img_config'); if (!empty($limits['allowed_types'])) { $gconfig['allowed_types'] = $limits['allowed_types']; } $CI->load->library('upload', $gconfig); if (!$CI->upload->do_upload($filename)) { $err = $CI->upload->display_errors(); if ($urlpath) { set_error($err, $urlpath, true, 2); } else { exitError("003"); } } else { $imgdata = array('upload_data' => $CI->upload->data()); $user_path = $CI->config->item('imgrack_apath') . "/" . $folderpath; $ifinalname = rand(0, 99) . time() . $imgdata['upload_data']['file_ext']; $finalname = $user_path . "/" . $ifinalname; if (!empty($Current_image)) { unlink($user_path . "/" . $Current_image); } if ($ancho == $limits['width'] && $alto == $limits['height']) { if (!copy($imgdata['upload_data']['full_path'], $finalname)) { deleteTmpImage($imgdata['upload_data']['full_path']); if ($urlpath) { set_error('019', $urlpath, false, 2); } else { exitError("019"); } } else { deleteTmpImage($imgdata['upload_data']['full_path']); return $ifinalname; } } else { if ($limits['maxsize']) { if (empty($CI->image_moo)) { $CI->load->library('image_moo'); } $avatar_thumb = $CI->image_moo->load($imgdata['upload_data']['full_path'])->set_background_colour("#000")->resize_crop($limits['width'], $limits['height'])->save($finalname); deleteTmpImage($imgdata['upload_data']['full_path']); if (empty($CI->image_moo->error)) { return $ifinalname; } else { if ($urlpath) { set_error('019', $urlpath, false, 2); } else { exitError("019"); } } } else { if (!copy($imgdata['upload_data']['full_path'], $finalname)) { deleteTmpImage($imgdata['upload_data']['full_path']); if ($urlpath) { set_error('019', $urlpath, false, 2); } else { exitError("019"); } } else { deleteTmpImage($imgdata['upload_data']['full_path']); return $ifinalname; } } } } } else { if ($urlpath) { set_error('022', $urlpath, false, 2); } else { exitError("022"); } } echo "asasdasda"; }
<?php require_once "common.php"; session_start(); if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['submit'])) { //Clean and set variables $username = cookInput($_POST['username']); $password = cookInput($_POST['password']); $login_sql = "SELECT pw_en, email, perm, u_id FROM usr WHERE email='{$username}';"; $login_run = mysqli_query($con, $login_sql); $login_res = mysqli_fetch_assoc($login_run); $pw_en = $login_res['pw_en']; if ($login_res['email'] == $username) { if (password_verify($password, $pw_en)) { $_SESSION['logged_in'] = $login_res['email']; $_SESSION['perm'] = $login_res['perm']; $_SESSION['id'] = $login_res['u_id']; header("Location: ../../manage/profile.php"); mysqli_close($con); exit; } else { $_SESSION['loginStatus'] = "<p>Username or password is incorrect</p>"; exitError("login.php"); } } else { $_SESSION['loginStatus'] = "<p>Username or password is incorrect</p>"; exitError("login.php"); } } else { exitError("index.php"); }
$query_sql .= " OR yr='{$yr}'"; if (!empty($priceMin)) { $query_sql .= "AND price>='{$priceMin}'"; } if (!empty($priceMax)) { $query_sql .= "AND price<='{$priceMax}'"; } } elseif (!empty($priceMin)) { $query_sql .= " OR price>='{$priceMin}'"; if (!empty($priceMax)) { $query_sql .= "AND price<='{$priceMax}'"; } } elseif (!empty($priceMax)) { $query_sql .= " OR price<='{$priceMax}'"; } else { $_SESSION['searchErr'] = "Please enter what you're looking for, or choose a filter option."; exitError("../../browse.php"); } // Return results $query_run = mysqli_query($con, $query_sql); $query_res = mysqli_num_rows($query_run); if ($query_res >= 1) { $_SESSION['search_string'] = "{$query_sql}"; exitError("../../browse.php"); } else { $_SESSION['searchErr'] = "Search failed, please try again."; exitError("../../browse.php"); } } else { exitError("../../index.php"); }