//--------------------------------------------------------------------------------------------- // // Interception filter // if(!$frontDoor) die('No direct access to pagecontroller allowed!'); //--------------------------------------------------------------------------------------------- // // creating objects // $pc = new CPageController(); $db = new CDatabaseController(); //-------------------------------------------------------------------------------------------- // // taking care of variables // $idUser = $pc->SessionIsSetOrSetDefault('idUser'); $idArticle = $pc->PostIsSetOrSetDefault('idArticle'); $idFile = $pc->PostIsSetOrSetDefault('idFile'); $delete = $pc->PostIsSetOrSetDefault('updateOrDelete'); $tblAttachment = DBT_Attachment; $spAttachFile = DBSP_PAttachFile;
$failRedirect = "?p=accounts"; $redirect = "?p=accounts"; $userId = $_SESSION['idUser']; //--------------------------------------------------------------------------------------------- // // preparing and performing query // $result = ARRAY(); $spUpdatePassword = DBSP_PUpdatePassword; $spUpdateEmail = DBSP_PUpdateEmail; $spUpdateAvatar = DBSP_PUpdateAvatar; $spUpdateGravatar = DBSP_PUpdateGravatar; $db = new CDatabaseController(); $mysqli = $db->connectToDatabase(); //--------------------------------------------------------------------------------------------- // // changing password // if($submit == "changepwd") { $password = isset($_POST['userPwd']) ? $_POST['userPwd'] : ''; $passwordConfirm = isset($_POST['confPwd']) ? $_POST['confPwd'] : ''; $pc->CheckPassword($password, $passwordConfirm, $failRedirect);
public function CreateLinksToArticles() { $spShowTopics = DBSP_PShowTopics; $db = new CDatabaseController(); $topicsList = <<< EOD <h3>Senaste artiklar</h3> <hr class='artNav' /> EOD; $query = "call {$spShowTopics}();"; $mysqli = $db->connectToDatabase(); $res = $db->performDirectQuery($query); //------------------------------ retrieving and performing query while($row = $res->fetch_object()) { $articleId = $row->idTopic; $articleTitle = $row->title; $topicsList .= <<< EOD <a href='?m=tuna&p=showtopic&articleId={$articleId}' class='articleNav'>{$articleTitle}</a> <br /> EOD; } return $topicsList; }
$articleId = isset($_GET['articleId']) ? $_GET['articleId'] : 0; $postId = isset($_GET['postId']) ? $_GET['postId'] : 0; $tblTopic = DBT_Topic; $topicId = ($postId != 0) ? $postId : $articleId; $parentId = ($postId == 0) ? $postId : $articleId; // db -table $tblTopic = DBT_Topic; //--------------------------------------------------------------------------------------------- // // quering database // $query = "SELECT * FROM {$tblTopic} WHERE idTopic = {$topicId};"; $db = new CDatabaseController(); $mysqli = $db->connectToDatabase(); $res = $db->performDirectQuery($query); $row = $res->fetch_object(); $title = $row->topicTitle; $content = $row->topicText; $res->close(); $mysqli->close(); if(isset($_GET['articleTitle'])) { $articleTitle = isset($_GET['articleTitle']) ? $_GET['articleTitle'] : '';
$query = <<< EOD CALL {$spInsertFile}('{$idUser}', '{$file_name}', '{$uniqueName}', '{$path}', '{$size}', '{$mimetype}'); EOD; $db->performDirectMultiQuery($query); $mysqli->close(); } } } else { $error = $_FILES['file']['error']; echo $error; } } else if($submitAction == 'multiplefiles') { $nr = 1; $db = new CDatabaseController(); $mysqli = $db->ConnectToDatabase(); $tblFile = DBT_File; $spInsertFile = DBSP_PInsertFile; foreach($_FILES["file"]["name"] as $key =>$name) { if($name != "") { $temp_dir = $_FILES["file"]["tmp_name"][$key]; $file_name = basename($_FILES["file"]["name"][$key]); $size = $_FILES['file']['size'][$key]; $mimetype = $_FILES['file']['type'][$key]; // set unique name $uniqueName = strtolower($accountUser) . time() . $nr; $path = $target . $uniqueName; if(move_uploaded_file($temp_dir, $target . $uniqueName)) {
require_once(TP_SQLPATH . 'SQLCoreArticle.php'); $queryCode .= $queryArticle; $queryInfo .= "<h2 class='installh2'>Installation av Core-Article</h2><pre>" . $queryArticle . "</pre><br />"; } else { $queryInfo .= "<h2 class='installh2'>Installation av Core-Article</h2><br /><p class='alertInstall'>Disabled</p><br />"; } if ($tunatalk == "tunatalk" || $custom == "custom") { require_once(TP_SQLPATH . 'SQLTunatalk.php'); $queryCode .= $queryTunatalk; $queryInfo .= "<h2 class='installh2'>Installation av Tunatalk</h2><pre>" . $queryTunatalk . "</pre><br />"; } else { $queryInfo .= "<h2 class='installh2'>Installation av Tunatalk</h2><br /><p class='alertInstall'>Disabled</p><br />"; } $db = new CDatabaseController(); $mysqli = $db->connectToDatabase(); $res = $db->performDirectMultiQuery($queryCode); $mysqli->close(); $centerBody = <<< EOD <br /> {$queryInfo} <br /> EOD; $subHeader = "<div class='adRightTurquoise'><a href='' class='big'>Kontrollpanel</a></div><h1>Installation av databas</h1>"; $leftBody = "";
// ------------------------------------------------------------------------------------------- // // Prepare and perform a SQL query. // $queryCode = "install"; $queryCodeArticle = "articleTable"; $queryCodeProcedures = "installProcedures"; $queryCodeTemporary = "tempInstall"; $queryCodeTunaTalk = "tunatalk"; $queryCodeFilesArchive = "filesArchive"; $db = new CDatabaseController(); $mysqli = $db->connectToDatabase(); $res = $db->performMultiQuery($queryCode); $query = $db->loadQuery($queryCode); $mysqli->close(); /* $mysqli = $db->connectToDatabase(); $res = $db->performMultiQuery($queryCodeArticle); $query2 = $db->loadQuery($queryCodeArticle); $mysqli->close(); $mysqli = $db->connectToDatabase(); $res = $db->performMultiQuery($queryCodeProcedures); $query3 = $db->loadQuery($queryCodeProcedures); $mysqli->close();