$file = $dataMap['file'];
$imageHandler = new eZImageAliasHandler( $file );
$alias = $imageHandler->imageAlias( 'fmc' );
$filePath = $alias["full_path"];
}
$fileHandler = eZClusterFileHandler::instance($filePath);
$extension = substr($filePath, strripos($filePath, '.') + 1);
if ( $fileHandler->fileExists($filePath) )
{
$image = true;
}
}
}
}
else
{
exitError('Not an image object given');
}
}
if ( $image && isset($fileHandler) && $fileHandler )
{
header('Content-Type: image/' . $extension);
header('Content-Length: ' . $fileHandler->size());
$fileHandler->passthrough();
eZExecution::cleanExit();
}
exitError();
function upload_img($filename, $config, $urlpath = false, $folderpath, $Current_image = null)
{
$CI =& get_instance();
if (empty($filename) || empty($config)) {
return false;
}
list($ancho, $alto, $tipo, $atributos) = @getimagesize($_FILES[$filename]['tmp_name']);
$limits = $CI->config->item($config);
if ($ancho >= $limits['width'] && $alto >= $limits['height']) {
$gconfig = $CI->config->item('img_config');
if (!empty($limits['allowed_types'])) {
$gconfig['allowed_types'] = $limits['allowed_types'];
}
$CI->load->library('upload', $gconfig);
if (!$CI->upload->do_upload($filename)) {
$err = $CI->upload->display_errors();
if ($urlpath) {
set_error($err, $urlpath, true, 2);
} else {
exitError("003");
}
} else {
$imgdata = array('upload_data' => $CI->upload->data());
$user_path = $CI->config->item('imgrack_apath') . "/" . $folderpath;
$ifinalname = rand(0, 99) . time() . $imgdata['upload_data']['file_ext'];
$finalname = $user_path . "/" . $ifinalname;
if (!empty($Current_image)) {
unlink($user_path . "/" . $Current_image);
}
if ($ancho == $limits['width'] && $alto == $limits['height']) {
if (!copy($imgdata['upload_data']['full_path'], $finalname)) {
deleteTmpImage($imgdata['upload_data']['full_path']);
if ($urlpath) {
set_error('019', $urlpath, false, 2);
} else {
exitError("019");
}
} else {
deleteTmpImage($imgdata['upload_data']['full_path']);
return $ifinalname;
}
} else {
if ($limits['maxsize']) {
if (empty($CI->image_moo)) {
$CI->load->library('image_moo');
}
$avatar_thumb = $CI->image_moo->load($imgdata['upload_data']['full_path'])->set_background_colour("#000")->resize_crop($limits['width'], $limits['height'])->save($finalname);
deleteTmpImage($imgdata['upload_data']['full_path']);
if (empty($CI->image_moo->error)) {
return $ifinalname;
} else {
if ($urlpath) {
set_error('019', $urlpath, false, 2);
} else {
exitError("019");
}
}
} else {
if (!copy($imgdata['upload_data']['full_path'], $finalname)) {
deleteTmpImage($imgdata['upload_data']['full_path']);
if ($urlpath) {
set_error('019', $urlpath, false, 2);
} else {
exitError("019");
}
} else {
deleteTmpImage($imgdata['upload_data']['full_path']);
return $ifinalname;
}
}
}
}
} else {
if ($urlpath) {
set_error('022', $urlpath, false, 2);
} else {
exitError("022");
}
}
echo "asasdasda";
}
<?php
require_once "common.php";
session_start();
if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['submit'])) {
//Clean and set variables
$username = cookInput($_POST['username']);
$password = cookInput($_POST['password']);
$login_sql = "SELECT pw_en, email, perm, u_id FROM usr WHERE email='{$username}';";
$login_run = mysqli_query($con, $login_sql);
$login_res = mysqli_fetch_assoc($login_run);
$pw_en = $login_res['pw_en'];
if ($login_res['email'] == $username) {
if (password_verify($password, $pw_en)) {
$_SESSION['logged_in'] = $login_res['email'];
$_SESSION['perm'] = $login_res['perm'];
$_SESSION['id'] = $login_res['u_id'];
header("Location: ../../manage/profile.php");
mysqli_close($con);
exit;
} else {
$_SESSION['loginStatus'] = "<p>Username or password is incorrect</p>";
exitError("login.php");
}
} else {
$_SESSION['loginStatus'] = "<p>Username or password is incorrect</p>";
exitError("login.php");
}
} else {
exitError("index.php");
}
$query_sql .= " OR yr='{$yr}'";
if (!empty($priceMin)) {
$query_sql .= "AND price>='{$priceMin}'";
}
if (!empty($priceMax)) {
$query_sql .= "AND price<='{$priceMax}'";
}
} elseif (!empty($priceMin)) {
$query_sql .= " OR price>='{$priceMin}'";
if (!empty($priceMax)) {
$query_sql .= "AND price<='{$priceMax}'";
}
} elseif (!empty($priceMax)) {
$query_sql .= " OR price<='{$priceMax}'";
} else {
$_SESSION['searchErr'] = "Please enter what you're looking for, or choose a filter option.";
exitError("../../browse.php");
}
// Return results
$query_run = mysqli_query($con, $query_sql);
$query_res = mysqli_num_rows($query_run);
if ($query_res >= 1) {
$_SESSION['search_string'] = "{$query_sql}";
exitError("../../browse.php");
} else {
$_SESSION['searchErr'] = "Search failed, please try again.";
exitError("../../browse.php");
}
} else {
exitError("../../index.php");
}
