Esempio n. 1
0
/**
* 그룹 등록
* @class admin.site
* @param
		$data: 자료
		-is_check: 입력변수 체크 여부
* @return Array 등록된 그룹 자료
*/
function addSite($data, $param = '')
{
    global $mini;
    $param = param($param);
    def($param['is_check'], 1);
    //// 변수 체크
    if ($param['is_check']) {
        checkFieldSite($data);
        // 권한체크
        checkAdmin("\n\t\t\t\t\tmode: admin\n\t\t\t\t\ttype: ajax\n\t\t\t\t");
    }
    //// 기본변수 여부 체크
    if (!isset($data['name'])) {
        __error('그룹 이름을 입력해 주세요');
    }
    //// 기본변수 입력
    $data['date'] = $mini['date'];
    unset($data['mode']);
    unset($data['script']);
    //// 이름 중복 체크
    if (sql("SELECT COUNT(*) FROM {$mini['name']['site']} WHERE name='{$data['name']}'")) {
        __error('중복된 그룹이름 입니다.');
    }
    //// 쿼리
    sql("INSERT INTO {$mini['name']['site']} " . query($data, 'insert'));
    $data['no'] = getLastId($mini['name']['site'], "name='{$data['name']}' and date='{$data['date']}'");
    //// 로그 기록
    addLog("\n\t\t\tmode: site_add\n\t\t\tfield1: {$data['no']}\n\t\t");
    return $data;
}
Esempio n. 2
0
function getIt()
{
    if (isset($GLOBALS["HTTP_RAW_POST_DATA"])) {
        $number = getLastId();
        $sitrng = "poczekalnia/z" . "{$number}" . ".png";
        // Get the data
        $imageData = $GLOBALS['HTTP_RAW_POST_DATA'];
        // Remove the headers (data:,) part.
        // A real application should use them according to needs such as to check image type
        $filteredData = substr($imageData, strpos($imageData, ",") + 1);
        // Need to decode before saving since the data we received is already base64 encoded
        $unencodedData = base64_decode($filteredData);
        //echo "unencodedData".$unencodedData;
        // Save file. This example uses a hard coded filename for testing,
        // but a real application can specify filename in POST variable
        $fp = fopen($sitrng, 'wb');
        fwrite($fp, $unencodedData);
        fclose($fp);
        add($sitrng, $_COOKIE['words'], $_COOKIE['author'], $_COOKIE['nick'], $_COOKIE['book'], $_COOKIE['tag']);
        setcookie("words", "", time());
        $files = glob('upload/*');
        // get all file names
        foreach ($files as $file) {
            // iterate files
            if (is_file($file)) {
                unlink($file);
            }
            // delete file
        }
    }
}
Esempio n. 3
0
/**
 * Creating short url
 */
function insertUrl($longUrl, $pdo)
{
    if ($shotUrl = isUrlDbExist($longUrl, $pdo)) {
        return $shotUrl;
    }
    $shortCode = genShortCode(getLastId($pdo));
    $table = TAB_NAME;
    $q = $pdo->prepare("INSERT INTO {$table}(short_url, long_url) VALUES ('{$shortCode}', '{$longUrl}')");
    $q->execute();
    return $shortCode;
}
Esempio n. 4
0
function waitForEvent($from = null)
{
    $id = $from ?: getLastId();
    $timer = time();
    while (!($events = getLastEvents($id))) {
        sleep(1);
        if (time() - $timer >= 5) {
            return [];
        }
    }
    return $events;
}
Esempio n. 5
0
function createUser($db, $user, $pass)
{
    $error = false;
    $user = pg_escape_string($user);
    $pass = pg_escape_string($pass);
    $query = pg_query($db, "INSERT INTO userbase (pwd, username) VALUES ('{$pass}', '{$user}')");
    $last_uid = getLastId($db);
    echo $last_uid;
    $last_uid++;
    pg_query($db, "INSERT INTO uif (uid, username) VALUES ('{$last_uid}', '{$user}')");
    return $last_uid;
}
function addUser($userName, $userPassword)
{
    global $db;
    $id = getLastId() + 1;
    $sql = 'INSERT INTO ajax_chat_users(
								userID,
								userName,
								password)
				VALUES (
					' . $id . ',
					' . $db->makeSafe($userName) . ',
					' . $db->makeSafe(md5($userPassword)) . '
				);';
    $result = $db->sqlQuery($sql);
    if ($result->error()) {
        echo $result->getError();
        die;
    }
}
Esempio n. 7
0
 public function update()
 {
     function getLastId()
     {
         $Model = new Model();
         $Model->query("select last_insert_id() as last");
         $result = $Model->query("select last_insert_id() as last");
         return $result[0]["last"];
     }
     $Article = new Model('Article');
     $Article->create();
     $Article->blar_modify_time = date("Y-m-d H:i:s");
     $Article->save();
     $blar_id = $Article->blar_id;
     $At = new Model("article_tags");
     $At->where("blar_id=" . $blar_id)->delete();
     $blta_name = $_POST["blta_name"];
     if (isset($blta_name) && !empty($blta_name)) {
         $blta_name = str_replace(',', ',', $blta_name);
         $arr_blta_name = split(",", $blta_name);
         $Tags = new Model('Tags');
         foreach ($arr_blta_name as $tag) {
             $tagResult = $Tags->where("blta_name='" . $tag . "'")->select();
             if (isset($tagResult) && !empty($tagResult)) {
                 $blta_id = $tagResult[0]["blta_id"];
             } else {
                 $Tags->blta_name = $tag;
                 $Tags->add();
                 $blta_id = getLastId();
             }
             $ArticleTags = new Model("article_tags");
             $ArticleTags->blta_id = $blta_id;
             $ArticleTags->blar_id = $blar_id;
             $ArticleTags->add();
         }
     }
     $Content = new Model('Content');
     $Content->create();
     $Content->save();
     $info = "修改成功!";
     $this->ajaxReturn($blar_id, $info, 1);
 }
Esempio n. 8
0
function upsertHwr($db, $file_id, $hwr_list, $image_output_path)
{
    // 手書きデータの id 取得。
    $sql = getSQLBaseForFilehwrList();
    $sql .= " AND file_hwr.file_id = :file_id";
    $params = array();
    $params[':file_id'] = $file_id;
    $stmt = $db->prepare($sql);
    $stmt->execute($params);
    $saved_hwr_list = array();
    foreach ($stmt->fetchAll(PDO::FETCH_ASSOC) as $row) {
        $saved_hwr_list[$row['mark_position_y']] = $row;
    }
    foreach ($hwr_list as $index => $hwr) {
        $hwr_val = $hwr['hwr_val'];
        $update_time = date("Y-m-d H:i:s", $hwr['update_time']);
        $mark_position_y = isset($hwr['mark_position_y']) ? $hwr['mark_position_y'] : '0';
        $hwr_image = array_key_exists('hwr_image', $hwr) ? $hwr['hwr_image'] : null;
        if (array_key_exists('hwr_id', $hwr)) {
            $hwr_id = $hwr['hwr_id'];
            // --- TBL: hwr
            $rslt = updHwr($db, $hwr_id, $hwr_val, $update_time);
            if (!$rslt) {
                \Sop\Log::error(__FILE__, __LINE__, 'Failed to update hwr.');
                $msg001 = "The update failed.: hwr";
                // 更新に失敗しました: hwr
                \Sop\Api::exitWithError(array($msg001));
            }
        } else {
            if (array_key_exists($mark_position_y, $saved_hwr_list)) {
                $hwr_id = $saved_hwr_list[$mark_position_y]['hwr_id'];
                // --- TBL: hwr
                $rslt = updHwr($db, $hwr_id, $hwr_val, $update_time);
                if (!$rslt) {
                    \Sop\Log::error(__FILE__, __LINE__, 'Failed to update hwr.');
                    $msg002 = "The update failed.: hwr";
                    // 更新に失敗しました: hwr
                    \Sop\Api::exitWithError(array($msg002));
                }
            } else {
                // insert
                // --- TBL: hwr
                $hwr_id = -1;
                $rslt = addHwr($db, $hwr_id, $hwr_val, $update_time, $mark_position_y);
                if (!$rslt) {
                    \Sop\Log::error(__FILE__, __LINE__, 'Failed to add hwr.');
                    $msg003 = "The registration failed.: hwr";
                    // 登録に失敗しました: hwr
                    \Sop\Api::exitWithError(array($msg003));
                }
                $hwr_id = getLastId($db);
                // --- TBL: file_hwr
                $rslt = addFilehwr($db, $file_id, $hwr_id);
                if (!$rslt) {
                    \Sop\Log::error(__FILE__, __LINE__, 'Failed to add file_hwr.');
                    $msg004 = "The registration failed.: file_hwr";
                    // 登録に失敗しました: file_hwr
                    \Sop\Api::exitWithError(array($msg004));
                }
            }
        }
        // ---------------------------
        // 手書きの画像をファイルに書き出す。
        // ---------------------------
        if ($hwr_image != null) {
            $file_path = $image_output_path . '/' . $file_id . '_' . $hwr_id . '.png';
            $hwr_image = preg_replace('#^data:image/png;base64,#', '', $hwr_image);
            $hwr_image = base64_decode($hwr_image);
            file_put_contents($file_path, $hwr_image);
        }
    }
}
Esempio n. 9
0
/** 파일정보를 DB에 추가한다
 * @class write 
 * @param
		$data: chkFile 후에 넘어온 데이터
		-id: 게시판번호. 없으면 mini[board]의 정보를 활용
		-target_member: 회원번호. 없으면 mini[member]의 정보를 활용
		-target: 대상자료번호
		-target_pos: 대상게시물번호(댓글일때만)
		-mode: post|comment|memo|box
 * @return Array
 */
function addFile($data, $param = '')
{
    global $mini;
    $param = param($param);
    $ins = array();
    if (!empty($param['id'])) {
        def($ins['id'], $param['id']);
    }
    if (!empty($data['id'])) {
        def($ins['id'], $data['id']);
    }
    if (!empty($mini['board']['no'])) {
        def($ins['id'], $mini['board']['no']);
    }
    if (!empty($param['target_member'])) {
        def($ins['target_member'], $param['target_member']);
    }
    if (!empty($data['target_member']) && !empty($mini['member']['level_admin'])) {
        def($ins['target_member'], $data['target_member']);
    }
    if (!empty($mini['member']['no'])) {
        def($ins['target_member'], $mini['member']['no']);
    }
    if (!empty($data['ip']) && !empty($mini['member']['level_admin'])) {
        def($ins['ip'], $data['ip']);
    }
    def($ins['ip'], $mini['ip']);
    if (!empty($data['date']) && !empty($mini['member']['level_admin'])) {
        def($ins['date'], $data['date']);
    }
    def($ins['date'], $mini['date']);
    if (!empty($param['mode'])) {
        def($ins['mode'], $param['mode']);
    }
    if (!empty($data['mode'])) {
        def($ins['mode'], $data['mode']);
    }
    def($ins['mode'], '');
    if (!empty($param['target'])) {
        def($ins['target'], $param['target']);
    }
    if (!empty($data['target'])) {
        def($ins['target'], $data['target']);
    }
    def($ins['target'], 0);
    if (!empty($param['target_post']) && $ins['mode'] == 'comment') {
        $ins['target_post'] = $param['target_post'];
    }
    $ins['name'] = $data['name'];
    $ins['url'] = $data['path'];
    $ins['size'] = $data['size'];
    $ins['is_admit'] = !empty($mini['board']['use_file_admit']) && empty($mini['member']['level_admin']) ? 0 : 1;
    $ins['width'] = !empty($data['width']) ? $data['width'] : 0;
    $ins['height'] = !empty($data['height']) ? $data['height'] : 0;
    $ins['ext'] = $data['ext'];
    $ins['type'] = $data['type'];
    // 파일해시
    $ins['hash'] = getHash($data);
    sql("INSERT INTO {$mini['name']['file']} " . query($ins, 'insert'));
    // 후처리
    $ins['no'] = getLastId($mini['name']['file'], "(ip='{$ins['ip']}' and date='{$ins['date']}' and name='{$ins['name']}')");
    $ins['error'] = 0;
    return $ins;
}
Esempio n. 10
0
/**
* 회원 등록
* @class admin.member
* @param
		$data: 자료
		-is_check: 입력변수 체크 여부
* @return Array 등록된 회원 자료
*/
function addMember($data, $param = '')
{
    global $mini;
    $param = param($param);
    def($param['is_check'], 1);
    unset($data['formMode']);
    unset($data['formMsg']);
    unset($data['formFunc']);
    unset($data['formURL']);
    unset($data['formHTML']);
    unset($data['no']);
    unset($data['ip']);
    unset($data['ip_join']);
    unset($data['key_find']);
    unset($data['key_sms']);
    unset($data['key_login']);
    unset($data['date']);
    unset($data['date_login']);
    unset($data['count_login']);
    unset($data['count_vote']);
    unset($data['count_post']);
    unset($data['count_comment']);
    unset($data['count_recent_comment']);
    unset($data['history_login']);
    unset($data['mode']);
    unset($data['script']);
    unset($data['admin']);
    unset($data['id_mode']);
    if (empty($mini['member']['level_admin'])) {
        unset($data['site']);
        unset($data['site_link']);
        unset($data['level']);
        unset($data['admit']);
        unset($data['confirm_co']);
        unset($data['point']);
        unset($data['point_sum']);
        unset($data['money']);
        unset($data['count_alert']);
        unset($data['lock_login']);
        unset($data['history_admin']);
        unset($data['date_punish']);
    }
    //// 추가필드 권한 체크
    if (!empty($mini['site']['field'])) {
        foreach ($mini['site']['field'] as $key => $val) {
            if (empty($data['field'][$key]) && !empty($val['is_req'])) {
                __error("[{$val['name']}]을 입력해 주세요");
            }
        }
    }
    //// 변수 체크
    if ($param['is_check']) {
        checkFieldMember($data);
        // 권한체크
        if (!empty($mini['is_admin'])) {
            checkAdmin("\n\t\t\t\t\t\tsite: {$_POST['site']}\n\t\t\t\t\t\ttype: ajax\n\t\t\t\t\t");
        }
    }
    //// 아이디 중복 체크
    check($data['uid'], 'type:id, name:회원아이디');
    if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE uid='{$data['uid']}'")) {
        __error('중복된 회원 아이디 입니다.');
    }
    //// 닉네임 중복 체크
    if (!isset($data['name'])) {
        __error('회원 닉네임을 입력해 주세요');
    }
    if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE name='{$data['name']}'")) {
        __error("중복된 닉네임 입니다.");
    }
    //// 주민등록번호 중복 체크 및 암호화
    if (isset($data['jumin']) && $data['jumin']) {
        $data['jumin'] = md5($data['jumin']);
        if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE jumin='{$data['jumin']}'")) {
            __error("중복된 주민등록번호 입니다.");
        }
    }
    //// 사업자번호 중복 체크
    if (isset($data['co_num']) && $data['co_num']) {
        if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE co_num='{$data['co_num']}'")) {
            __error("중복된 사업자등록번호 입니다.");
        }
    }
    //// 메일 중복 체크
    if (!empty($data['mail'])) {
        if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE mail='{$data['mail']}'")) {
            __error("중복된 메일 입니다.");
        }
    }
    //// 필수입력 정보 사이트 정보대로 처리
    if (!empty($mini['site']['join_check'])) {
        $tmp = '';
        foreach ($mini['site']['join_check'] as $key => $val) {
            if (empty($data[$key]) && !empty($val['name'])) {
                $tmp = !empty($tmp) ? $tmp . ",{$val['name']}" : $val['name'];
            }
        }
        if (!empty($tmp)) {
            __error("필수입력정보를 입력해 주세요. [{$tmp}]");
        }
    }
    //// 기본변수 여부 체크
    if (isset($mini['site'])) {
        def($data['site'], $mini['site']['no']);
    }
    check($data['site'], 'type:num, name:그룹');
    if (!isset($data['pass'])) {
        __error('비밀번호를 입력해 주세요');
    }
    //// 가입 기본 포인트 적용
    if (!empty($mini['site']['point_join']) && empty($data['point']) && empty($data['point_sum'])) {
        $data['point'] = $data['point_sum'] = $mini['site']['point_join'];
    }
    //// 가입 승인 기능 설정
    if (!empty($mini['site']['admit']) && (empty($mini['member']['level_admin']) || $mini['member']['level_admin'] < 2)) {
        $data['admit'] = 0;
    }
    //// 재가입 방지 확인
    if (!empty($mini['site']['withdraw'])) {
        iss($data['mail']);
        if (sql("SELECT COUNT(*) FROM {$mini['name']['log']} WHERE mode='member_withdraw' and (field1='{$data['uid']}' or ip='{$mini['ip']}' or field2='{$data['mail']}') and date >= '" . date("Y-m-d H:i:s", $mini['time'] - 86400 * $mini['site']['withdraw']) . "'")) {
            __error('해당 아이디, IP 혹은 메일주소로 재가입 하실 수 없습니다');
        }
    }
    //// 기본변수 입력
    $data['date'] = $mini['date'];
    $data['ip_join'] = $mini['ip'];
    unset($data['pass_encode']);
    unset($data['pass_confirm']);
    unset($data['jumin_encode']);
    //// 쿼리
    sql("INSERT INTO {$mini['name']['member']} " . query($data, 'insert'));
    $data['no'] = getLastId($mini['name']['member'], "uid='{$data['uid']}' and date='{$mini['date']}' and ip_join='{$mini['ip']}'");
    //// 로그 기록
    addLog("\n\t\t\tmode: member_add\n\t\t\tfield1: {$data['no']}\n\t\t");
    //// 인증메일 발송
    if (empty($mini['member']['level_admin']) && !empty($mini['site']['admit']) && $mini['site']['admit'] == 'mail' && !empty($mini['set']['use_smtp']) && !empty($mini['site']['template']['admit'])) {
        include "{$mini['dir']}skin/template/mail.admit.tpl.php";
        if (!function_exists('skinConv')) {
            include "{$mini['dir']}_inc.skinmake.php";
        }
        if (!empty($tpl) && (!empty($mini['site']['mail']) || !empty($mini['set']['mail']))) {
            $tmp = !empty($tpl[$mini['site']['template']['admit']]) ? $tpl[$mini['site']['template']['admit']] : current($tpl);
            // 키 생성
            $admit_key = rand(100000, 999999);
            unset($mini['skin']);
            $mini['skin'] = '';
            $mini['skin']['site'] =& $mini['site'];
            $mini['skin']['data'] =& $data;
            $mini['skin']['date'] = $mini['date'];
            $mini['skin']['key'] = $admit_key;
            $mini['skin']['url_key'] = "{$mini['pdir']}ajax.php?mode=admit_mail&no={$data['no']}&key={$admit_key}";
            $mini['skin']['link_key'] = "href='{$mini['skin']['url_key']}' target='_blank'";
            sql("UPDATE {$mini['name']['member']} SET key_find = '{$admit_key}|{$mini['date']}' WHERE no={$data['no']}");
            $result = send_mail(array('from_name' => $mini['site']['name'], 'from_mail' => !empty($mini['site']['mail']) ? $mini['site']['mail'] : $mini['set']['mail'], 'to_name' => $data['name'], 'to_mail' => $data['mail'], 'title' => skinConv($tmp['title'], 'str'), 'ment' => skinConv($tmp['ment'], 'str')));
        } else {
            __error('인증메일을 발송할 수 없습니다. 관리자에게 문의해 주세요');
        }
    }
    //// 가입메일 발송
    if (empty($mini['member']['level_admin']) && !empty($mini['set']['use_smtp']) && !empty($mini['site']['template']['join'])) {
        include "{$mini['dir']}skin/template/mail.join.tpl.php";
        if (!function_exists('skinConv')) {
            include "{$mini['dir']}_inc.skinmake.php";
        }
        if (!empty($tpl) && (!empty($mini['site']['mail']) || !empty($mini['set']['mail']))) {
            unset($mini['skin']);
            $mini['skin'] = '';
            $mini['skin']['date'] = $mini['date'];
            $mini['skin']['site'] =& $mini['site'];
            $mini['skin']['data'] =& $data;
            $result = send_mail(array('from_name' => $mini['site']['name'], 'from_mail' => !empty($mini['site']['mail']) ? $mini['site']['mail'] : $mini['set']['mail'], 'to_name' => $data['name'], 'to_mail' => $data['mail'], 'title' => skinConv($tpl[$mini['site']['template']['join']]['title'], 'str'), 'ment' => skinConv($tpl[$mini['site']['template']['join']]['ment'], 'str')));
        }
    }
    //// 가입SMS 발송
    if (empty($mini['member']['level_admin']) && !empty($mini['set']['use_sms']) && !empty($mini['site']['template']['join_sms'])) {
        include "{$mini['dir']}skin/template/sms.join.tpl.php";
        if (!function_exists('skinConv')) {
            include "{$mini['dir']}_inc.skinmake.php";
        }
        if (!function_exists('iiSMSSend')) {
            include "{$mini['dir']}_inc.sms.php";
        }
        if (!empty($tpl) && !empty($mini['site']['cp'])) {
            unset($mini['skin']);
            $mini['skin'] = '';
            $mini['skin']['date'] = $mini['date'];
            $mini['skin']['site'] =& $mini['site'];
            $mini['skin']['data'] =& $data;
            $result = iiSMSSend($data['cp'], $mini['site']['cp'], skinConv($tpl[$mini['site']['template']['join_sms']], 'str'), $mini['set']['lang']);
        }
    }
    return $data;
}
Esempio n. 11
0
             $msg002 = "The registration failed.: val";
             // 登録に失敗しました: val
             \Sop\Api::exitWithError(array("{$msg002} {$value} (: {$val_name})"));
         }
     }
 }
 // --- TBL: hwr
 $hwr_id = -1;
 $rslt = addHwr($db, $hwr_id, $hwr_val);
 if (!$rslt) {
     \Sop\Log::error(__FILE__, __LINE__, 'Failed to add hwr.');
     $msg003 = "The registration failed.: hwr";
     // 登録に失敗しました: hwr
     \Sop\Api::exitWithError(array($msg003));
 }
 $hwr_id = getLastId($db);
 // --- TBL: file_hwr
 $rslt = addFilehwr($db, $file_id, $hwr_id);
 if (!$rslt) {
     \Sop\Log::error(__FILE__, __LINE__, 'Failed to add file_hwr.');
     $msg004 = "The registration failed.: file_hwr";
     // 登録に失敗しました: file_hwr
     \Sop\Api::exitWithError(array($msg004));
 }
 // --- TBL: history
 $history_id = -1;
 $rslt = addHistory($db, $history_id, $pj_id, $sop_id, $tpl_id, $schema_id, $file_id, $smpl_given_no, $HISTORY_ACTION_FILE_ADD, $date, $user_id, $user_id_2, null);
 if (!$rslt) {
     \Sop\Log::error(__FILE__, __LINE__, 'Failed to add history.');
     $msg005 = "The registration failed.: history";
     // 登録に失敗しました: history
Esempio n. 12
0
<?php

session_start();
require_once '../../config.php';
require_once '../../model/mysql_query.php';
if (isset($_POST['password']) && isset($_POST['description'])) {
    $username = $_SESSION['username'];
    $password = $_POST['password'];
    $description = $_POST['description'];
    $id = getIdBy($username);
    $data = array('password' => $password, 'description' => $description, 'user_id' => $id);
    insert('passwords', $data);
    $id = getLastId('passwords');
    $result = '<tr><td>' . $password . '</td><td>' . $description . '</td><td><a href="#">Delete</a>';
    echo $result;
}
mysql_close($db);
Esempio n. 13
0
 /**
  * Analyze the action and determine a request.
  *
  * @return null
  */
 public function analyzeAction()
 {
     //Overload
     switch ($this->petitionAction) {
         /**
          * 
          */
         case 'list':
             $this->createModel();
             $works = $this->actualModel->getWorks();
             $this->createView($this->petitionAction);
             $this->actualView->render($works);
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'add':
             if (empty($_POST)) {
                 $this->createModel();
                 $clients = $this->actualModel->getClients();
                 $this->createView($this->petitionAction);
                 $this->actualView->render($clients);
             } else {
                 $this->createModel();
                 $work = new Work("", $_POST['id_client'], $_POST['work_name'], $_POST['location'], $_POST['principal']);
                 $res = $this->actualModel->addWork($work);
                 $lastId = getLastId("work");
                 $arrayFiles = $_FILES["work_image"];
                 if ($res && $arrayFiles) {
                     for ($i = 0; $i < count($arrayFiles["name"]); $i++) {
                         if ($arrayFiles["error"][$i] === 0) {
                             if ($this->actualModel->validateWorkImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) {
                                 $this->actualModel->addWorkImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $lastId);
                             }
                         }
                     }
                 }
                 $this->createLoadingView();
                 $this->actualView->render();
                 $this->redirect();
             }
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'edit':
             if (empty($_POST)) {
                 $this->createModel();
                 $clients = $this->actualModel->getClients();
                 $work = $this->actualModel->getWork($_GET["id_work"]);
                 $this->createView($this->petitionAction);
                 $this->actualView->render($clients, $work);
             } else {
                 $this->createModel();
                 $work = new Work($_GET['id_work'], $_POST['id_client'], $_POST['work_name'], $_POST['location'], $_POST['principal']);
                 $this->actualModel->editWork($work);
                 $this->createLoadingView();
                 $this->actualView->render();
                 $this->redirect();
             }
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'delete':
             $this->createModel();
             $this->actualModel->deleteWorkGallery($_GET["id_work"]);
             $this->actualModel->deleteWork($_GET['id_work']);
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'edit_gallery':
             $this->createModel();
             $gallery = $this->actualModel->getGallery($_GET["id_work"]);
             $this->createView("Edit_Gallery", true);
             //Corregir
             $this->actualView->render($gallery);
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'add_gallery':
             $this->createModel();
             $arrayFiles = $_FILES["work_image"];
             if ($arrayFiles) {
                 for ($i = 0; $i < count($arrayFiles["name"]); $i++) {
                     if ($arrayFiles["error"][$i] === 0) {
                         if ($this->actualModel->validateWorkImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) {
                             $this->actualModel->addWorkImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $_GET["id_work"]);
                         }
                     }
                 }
             }
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'delete_gallery':
             $this->createModel();
             $this->actualModel->deleteWorkImage($_GET["id_work_image"]);
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
     }
 }
Esempio n. 14
0
 /**
  * Analyze the action and determine a request.
  *
  * @return null
  */
 public function analyzeAction()
 {
     //Overload
     switch ($this->petitionAction) {
         /**
          * 
          */
         case 'list':
             $this->createModel();
             $stories = $this->actualModel->getStories();
             $this->createView($this->petitionAction);
             $this->actualView->render($stories);
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'add':
             if (empty($_POST)) {
                 $this->createView($this->petitionAction);
                 $this->actualView->render();
             } else {
                 $this->createModel();
                 $story = new Story("", $_POST['title'], $_POST['body']);
                 $res = $this->actualModel->addStory($story);
                 $lastId = getLastId("story");
                 $arrayFiles = $_FILES["story_image"];
                 if ($res && $arrayFiles) {
                     for ($i = 0; $i < count($arrayFiles["name"]); $i++) {
                         if ($arrayFiles["error"][$i] === 0) {
                             if ($this->actualModel->validateStoryImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) {
                                 $this->actualModel->addStoryImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $lastId);
                             }
                         }
                     }
                 }
                 $this->createLoadingView();
                 $this->actualView->render();
                 $this->redirect();
             }
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'edit':
             if (empty($_POST)) {
                 $this->createModel();
                 $story = $this->actualModel->getStory($_GET["id_story"]);
                 $this->createView($this->petitionAction);
                 $this->actualView->render($story);
             } else {
                 $this->createModel();
                 $story = new Story($_GET['id_story'], $_POST['title'], $_POST['body']);
                 $this->actualModel->editStory($story);
                 $this->createLoadingView();
                 $this->actualView->render();
                 $this->redirect();
             }
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'delete':
             $this->createModel();
             $this->actualModel->deleteStoryGallery($_GET["id_story"]);
             $this->actualModel->deleteStory($_GET['id_story']);
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'edit_gallery':
             $this->createModel();
             $gallery = $this->actualModel->getGallery($_GET["id_story"]);
             $this->createView("Edit_Gallery", true);
             //Corregir
             $this->actualView->render($gallery);
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'add_gallery':
             $this->createModel();
             $arrayFiles = $_FILES["story_image"];
             if ($arrayFiles) {
                 for ($i = 0; $i < count($arrayFiles["name"]); $i++) {
                     if ($arrayFiles["error"][$i] === 0) {
                         if ($this->actualModel->validateStoryImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) {
                             $this->actualModel->addStoryImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $_GET["id_story"]);
                         }
                     }
                 }
             }
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'delete_gallery':
             $this->createModel();
             $this->actualModel->deleteStoryImage($_GET["id_story_image"]);
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
     }
 }
Esempio n. 15
0
/**
* 게시판 등록
* @class admin.board
* @param
		$data: 자료
		-is_check: 입력변수 체크 여부
		-is_conv
* @return Array 등록된 게시판 자료
*/
function addBoard($data, $param = '')
{
    global $mini;
    $param = param($param);
    def($param['is_check'], 1);
    //// 변수 체크
    if ($param['is_check']) {
        checkFieldBoard($data);
        // 권한체크
        checkAdmin("\n\t\t\t\t\tsite: {$data['site']}\n\t\t\t\t\ttype: ajax\n\t\t\t\t");
    }
    //// 아이디 중복 체크
    check($data['id'], 'type:id, name:게시판아이디');
    if (!preg_match("/[^0-9]/", $data['id'])) {
        __error('게시판 아이디에 숫자만 입력하실 수 없습니다.');
    }
    if (sql("SELECT COUNT(*) FROM {$mini['name']['admin']} WHERE id='{$data['id']}'")) {
        __error('중복된 게시판 아이디 입니다.');
    }
    //// 기본변수 여부 체크
    if (!isset($data['name'])) {
        __error('게시판 이름을 입력해 주세요');
    }
    if (!isset($data['skin'])) {
        __error('스킨을 선택해 주세요');
    }
    check($data['site'], 'type:num, name:그룹');
    //// 기본변수 입력
    if (empty($data['date'])) {
        $data['date'] = $mini['date'];
    }
    unset($data['mode']);
    unset($data['script']);
    //// 스키마 로드
    if (!isset($mini['scheme'])) {
        include "{$mini['dir']}_db.php";
        $mini['scheme'] = array();
        $mini['scheme'] = $install_table;
    }
    //// 기본 언어셋 추가
    // 버젼 정보 로드
    $version = sql("SELECT VERSION()");
    $version_arr = explode(".", $version);
    $check_version = 0;
    if (!empty($version_arr)) {
        if (!empty($version_arr[0]) && $version_arr[0] >= 5) {
            $check_version = 1;
        }
        if (!empty($version_arr[0]) && $version_arr[0] == 4 && !empty($version_arr[1]) && $version_arr[1] >= 1) {
            $check_version = 1;
        }
    }
    if (!empty($check_version)) {
        $mini['scheme']['board'][1] .= " DEFAULT CHARACTER SET utf8";
        $mini['scheme']['cmt'][1] .= " DEFAULT CHARACTER SET utf8";
    }
    //// 쿼리
    sql("INSERT INTO {$mini['name']['admin']} " . query($data, 'insert'));
    $data['no'] = getLastId($mini['name']['admin']);
    $table_board = str_replace("[:table:]", $mini['name']['board'] . $data['no'], $mini['scheme']['board'][1]);
    $table_cmt = str_replace("[:table:]", $mini['name']['cmt'] . $data['no'], $mini['scheme']['cmt'][1]);
    //// 게시판 생성 쿼리
    sql($table_board);
    sql($table_cmt);
    //// 로그 기록
    addLog("\n\t\t\tmode: board_add\n\t\t\tfield1: {$data['no']}\n\t\t");
    return $data;
}
Esempio n. 16
0
if ($conn->connect_error) {
    die("Connection failed: " . $conn->connect_error);
}
if ($value == "DELETE") {
    $sql = "SELECT * FROM Poczekalnia WHERE Id={$id}";
    $result = $conn->query($sql);
    $row = $result->fetch_assoc();
    unlink($row["Sciezka"]);
    $sql = "DELETE FROM Poczekalnia WHERE Id={$id}";
    $conn->query($sql);
} else {
    $sql = "SELECT * FROM Poczekalnia WHERE Id={$id}";
    $result = $conn->query($sql);
    $row = $result->fetch_assoc();
    if ($result->num_rows > 0) {
        $nextIdToMain = getLastId();
        $newFileName = "main/a" . $nextIdToMain . ".php";
        $neImageName = "main/a" . $nextIdToMain . ".png";
        $cytat = $row['Cytat'];
        copy($row["Sciezka"], $neImageName);
        unlink($row["Sciezka"]);
        $neImageName = "../main/a" . $nextIdToMain . ".png";
        $sql = "INSERT INTO Glowna (Id, Grafika, Cytat, Strona)\n    VALUES ( NULL, '{$neImageName}', '{$cytat}', '{$newFileName}')";
        $conn->query($sql);
        $sql = "DELETE FROM Poczekalnia WHERE Id={$id}";
        $conn->query($sql);
        $myfile = fopen($newFileName, "w") or die("Unable to open file!");
        $getTop .= file_get_contents('addedFileTop.txt');
        $getBot .= file_get_contents('addedFileBottom.txt');
        $txt = "<p></p>";
        $txt .= $getTop . "if( \$row['Strona'] == '" . $newFileName . $getBot;
function addAnswers($answer)
{
    $questionId = getLastId();
    foreach ($answer as $a) {
        addAnswer($a, $questionId);
    }
}
Esempio n. 18
0
$razao = $_POST['fornecedor_razao'];
$rua = $_POST['fornecedor_rua'];
$numero = $_POST['fornecedor_numero'];
$complemento = $_POST['fornecedor_complemento'];
$cep = $_POST['fornecedor_cep'];
$bairro = $_POST['fornecedor_bairro'];
$cidade = $_POST['fornecedor_cidade'];
$uf = $_POST['fornecedor_uf'];
$pais = $_POST['fornecedor_pais'];
$fone = $_POST['fornecedor_fone'];
$email = $_POST['fornecedor_email'];
$cnpj = limparCaracteres($cnpj);
if (!validarEmail($email)) {
    exit('Email digitado inválido');
}
$id = getLastId();
$fone = limparCaracteres($fone);
$cep = limparCaracteres($cep);
if ($stmt = $db->prepare("INSERT INTO fornecedores(forn_id, forn_cnpj, forn_razaosoc, forn_rua, forn_numero, forn_complemento, forn_cep, forn_bairro,\n                                        forn_cidade, forn_uf, forn_pais, forn_fone, forn_email) VALUES (?, ?, ?, ?, ?, ? ,?, ? ,? ,? ,? ,? , ?)")) {
    $stmt->bind_param('isssissssssss', $id, $cnpj, $razao, $rua, $numero, $complemento, $cep, $bairro, $cidade, $uf, $pais, $fone, $email);
    if ($stmt->execute()) {
        echo '<script>
                        alert("Dados cadastrados com sucesso");
                        window.location.href = "listar_fornecedores.php";
                    </script>
                ';
    } else {
        die('Erro: ( ' . $db->errno . ' ) ' . $db->error);
    }
} else {
    printf("Erro ao preparar statement: %s\n", $db->error);
// Initialize error log
$errorLogName = "get-scopus-records_errorLog_" . $dateTime . ".txt";
$errorLogFile = fopen("logs/" . $errorLogName, "a");
ini_set("log_errors", 1);
ini_set("error_log", $errorLogName);
// Record start of process
$eventDescription = "Pull NEW publications for all current faculty, verify EXISTING records are valid";
$eventStart = date("Y-m-d H:i:s");
// Specify end date -- last day of previous closing quarter
$endDate = date("Y-m-d", strtotime("2015-06-30"));
$startProcess = "INSERT INTO events_master (eventType,eventDescription,eventStart,date_threshold,processLogFile,errorLogFile) VALUES('publication_data_full_update','{$eventDescription}','{$eventStart}','{$endDate}','{$outputFileName}','{$errorLogName}')";
if (!runQuery($con, $startProcess)) {
    printFile($outputFile, "MySQL Error: " . mysqli_error($con) . "\n");
    printFile($errorLogFile, "MySQL Error: " . mysqli_error($con) . "\n");
}
$processNumber = getLastId($con);
printFile($outputFile, "Process start: " . $eventStart . "\n");
// Create an array of faculty Scopus IDs to search, indexed by internetID
$facultyIdArray = array();
$facultysql = "SELECT internetID FROM faculty_data WHERE status_current = 1";
$result = runQuery($con, $facultysql);
while ($row = mysqli_fetch_array($result)) {
    $thisInternetId = $row['internetID'];
    $facultyIdArray[$thisInternetId] = array();
    // Exclude NULLs for the lookup - they are present in the table to ensure faculty display correctly on the web
    $scopusid_sql = "SELECT idValue FROM faculty_identifiers WHERE idType = 'scopus_id' AND internetID = '{$thisInternetId}' AND idValue IS NOT NULL AND idValue <> ''";
    $subresult = runQuery($con, $scopusid_sql);
    while ($subrow = mysqli_fetch_assoc($subresult)) {
        $facultyIdArray[$thisInternetId][] = $subrow['idValue'];
    }
    mysqli_free_result($subresult);
Esempio n. 20
0
        echo "<tr>";
        // Colonna ID scontrino
		echo "<td class=\"FacetDataTD\" align=\"center\"><a class=\"btn btn-xs btn-default btn-edit\" href=\"admin_scontr.php?Update&id_tes=".$row['id_tes']."\"><i class=\"glyphicon glyphicon-edit\"></i>&nbsp;".$row["id_tes"]."</a></td>";
        // Colonna data emissione
		echo "<td class=\"FacetDataTD\" align=\"center\">".gaz_format_date($row['datemi'])."</td>";
		// Colonna numero documento
        echo "<td class=\"FacetDataTD\" align=\"center\">".$row["numdoc"]." &nbsp;</td>";
		// Colonna fattura
        echo "<td class=\"FacetDataTD\" align=\"center\">$invoice</td>";
        echo "<td class=\"FacetDataTD\" align=\"center\">".$status." &nbsp;</td>";
        echo '<td class="FacetDataTD" align="right" style="font-weight=bolt;">';
        echo gaz_format_number($tot_tes);
        echo "\t </td>\n";
        // Colonna Elimina
		if ($row["id_con"] == 0) {
           if (getLastId($row['datemi'],$row['seziva']) == $row["id_tes"]) {
               echo "<td class=\"FacetDataTD\" align=\"center\"><a class=\"btn btn-xs btn-default btn-elimina\" href=\"delete_docven.php?id_tes=".$row['id_tes']."\"><i class=\"glyphicon glyphicon-remove\"></i></a></td>";
           } else {
               echo "<td class=\"FacetDataTD\" align=\"center\"><button class=\"btn btn-xs btn-default btn-elimina disabled\"><i class=\"glyphicon glyphicon-remove\"></i></button></td>";
           }
        } else {
           echo "<td class=\"FacetDataTD\" align=\"center\"><button class=\"btn btn-xs btn-default btn-elimina disabled\"><i class=\"glyphicon glyphicon-remove\"></i></button></td>";
        }
		// Colonna invia a ECR
        echo "<td class=\"FacetDataTD\" align=\"center\"><a class=\"btn btn-xs btn-primary btn-ecr\" href=\"resend_to_ecr.php?id_tes=".$row['id_tes']."\" >".$script_transl['send']."</a>";
        echo "</tr>\n";
}
?>
</form>
</table>
</body>
Esempio n. 21
0
 /**
  * Analyze the action and determine a request.
  *
  * @return null
  */
 public function analyzeAction()
 {
     //Overload
     switch ($this->petitionAction) {
         /**
          * 
          */
         case 'list':
             $this->createModel();
             $posts = $this->actualModel->getPosts();
             $this->createView($this->petitionAction);
             $this->actualView->render($posts);
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'add':
             if (empty($_POST)) {
                 $this->createView($this->petitionAction);
                 $this->actualView->render();
             } else {
                 $this->createModel();
                 $post = new Post("", $_POST['title'], $_POST['headline'], $_POST['date'], $_POST['body'], $_POST['source'], "", "", $_POST['category']);
                 $res = $this->actualModel->addPost($post);
                 $lastId = getLastId("post");
                 $arrayFiles = $_FILES["post_image"];
                 if ($res && $arrayFiles) {
                     if ($arrayFiles["error"] === 0) {
                         if ($this->actualModel->validatePostImage($arrayFiles["name"], $arrayFiles["type"])) {
                             $this->actualModel->addPostImage($arrayFiles["tmp_name"], $arrayFiles["type"], $lastId);
                         }
                     }
                 }
                 $this->createLoadingView();
                 $this->actualView->render();
                 $this->redirect();
             }
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'edit':
             if (empty($_POST)) {
                 $this->createModel();
                 $post = $this->actualModel->getPost($_GET["id_post"]);
                 $this->createView($this->petitionAction);
                 $this->actualView->render($post);
             } else {
                 $this->createModel();
                 $post = new Post($_GET['id_post'], $_POST['title'], $_POST['headline'], $_POST['date'], $_POST['body'], $_POST['source'], "", "", $_POST['category']);
                 $this->actualModel->editPost($post);
                 $this->createLoadingView();
                 $this->actualView->render();
                 $this->redirect();
             }
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'delete':
             $this->createModel();
             $this->actualModel->deletePost($_GET['id_post']);
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'edit_image':
             $this->createModel();
             $post = $this->actualModel->getPost($_GET["id_post"]);
             $this->createView($this->petitionAction, true);
             $this->actualView->render($post);
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'add_image':
             $this->createModel();
             $arrayFiles = $_FILES["post_image"];
             if ($arrayFiles["error"] === 0) {
                 if ($this->actualModel->validatePostImage($arrayFiles["name"], $arrayFiles["type"])) {
                     $this->actualModel->addPostImage($arrayFiles["tmp_name"], $arrayFiles["type"], $_GET["id_post"]);
                 }
             }
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
             /**
              * 
              */
         /**
          * 
          */
         case 'delete_image':
             $this->createModel();
             $this->actualModel->deletePostImage($_GET["id_post"]);
             $this->createLoadingView();
             $this->actualView->render();
             $this->redirect();
             break;
     }
 }
Esempio n. 22
0
<?php

require 'config/initialize.php';
mustBeGuest();
if (isset($_POST['authForm'])) {
    $username = sanitizeString($_POST['username'], $connection);
    $fullName = sanitizeString($_POST['fullName'], $connection);
    $password = sanitizeString($_POST['password'], $connection);
    if ($username == "" || $fullName == "" || $password == "" || !ctype_alnum($username)) {
        header("location: register.php");
    } else {
        $user = queryDatabase("SELECT username FROM user WHERE username='******'", $connection);
        if ($user->num_rows) {
            header("location: register.php");
        } else {
            // constString + newUserId + password
            $newUserId = getLastId($connection) + 1;
            $password = generatePassword($newUserId, $password);
            $password = password_hash($password, PASSWORD_BCRYPT);
            registerUser($username, $fullName, $password, $connection);
            header('Location: authenticate.php');
        }
    }
}
view('auth/register');