//***************刪除舊的 上傳新的
if (mysql_affected_rows() > 0) {
//刪除舊的照片圖檔
if (!empty($_SESSION['PHOTOfilename'])) {
if (@unlink($upload_dir . $_SESSION['PHOTOfilename']) && @unlink($thumb_dir . $_SESSION['PHOTOfilename'])) {
$message = "已經成功刪除圖檔(" . $upload_dir . $_SESSION['PHOTOfilename'] . ' 與 ' . $thumb_dir . $_SESSION['PHOTOfilename'] . ")";
echo "<script type='text/javascript'>alert('" . $message . "');</script>";
} else {
$message = "無法刪除照片檔案,請自行刪除(" . $upload_dir . $_SESSION['PHOTOfilename'] . ' 與 ' . $thumb_dir . $_SESSION['PHOTOfilename'] . ")";
echo "<script type='text/javascript'>alert('" . $message . "');</script>";
}
}
if (!empty($sourcefile)) {
//上傳新的照片圖檔
if (move_uploaded_file($_FILES['newproductphoto']['tmp_name'], $upload_dir . $sourcefile)) {
$err = mkthumb($upload_dir . $sourcefile, $thumb_dir . $sourcefile, 168);
if ($err != 'ok') {
echo '圖檔壓縮錯誤<br>';
}
}
}
}
}
$SQLStr = "update 商品 set 商品.商品名稱='" . $_POST['newproductname'] . "', 商品.單價=" . $_POST['newproductprice'] . " where 商品.代號=" . $_POST['updproductno'];
echo $_SESSION['OPERATION'] . "<p>SQL=" . $SQLStr . "</p>";
//可刪
$rs = mysql_query($SQLStr);
if (mysql_error()) {
die("修改商品 發生錯誤 " . mysql_error());
} else {
echo "修改" . mysql_affected_rows() . "筆";
<?php
require_once '../header_php.php';
?>
<?php
if ($action == "photo_edit" && $photoid) {
@mysql_query("UPDATE photos SET caption=\"{$photo_caption}\" WHERE photoid=\"{$photoid}\"");
if (is_uploaded_file($_FILES['photo_name']['tmp_name'])) {
@move_uploaded_file($_FILES['photo_name']['tmp_name'], $_SERVER['DOCUMENT_ROOT'] . "/gallery/gallery_{$photoid}.jpg");
mkthumb("gallery_{$photoid}.jpg", 200);
}
@mysql_query("DELETE FROM photos_categories WHERE photoid='{$photoid}'");
if ($category1) {
@mysql_query("INSERT INTO photos_categories (photoid,categoryid) VALUES ('{$photoid}','{$category1}')");
}
if ($category2 && $category2 != $category1) {
@mysql_query("INSERT INTO photos_categories (photoid,categoryid) VALUES ('{$photoid}','{$category2}')");
}
if ($category3 && $category3 != $category2 && $category3 != $category1) {
@mysql_query("INSERT INTO photos_categories (photoid,categoryid) VALUES ('{$photoid}','{$category3}')");
}
}
$photorow = mysql_fetch_array(mysql_unbuffered_query("SELECT * FROM photos WHERE photoid='{$photoid}'"));
?>
} else {
$file_type = strtolower(substr(strrchr($real_file, '.'), 1));
if (!in_array($file_type, $types)) {
$error[] = "_FILETYPENOTALLOWED";
}
}
//check filesize
if ($_FILES['filename']['size'] >= $config->max_file_size * 1024 * 1024) {
$error[] = "_FILETOBIG";
}
//move file to dir and generate thumb if needed
if (!$error) {
$temp_file = md5(microtime() . uniqid(rand(), true)) . "_" . $bid;
if (move_uploaded_file($_FILES['filename']['tmp_name'], "include/files/" . $temp_file)) {
if (extension_loaded("gd")) {
mkthumb($temp_file);
}
} else {
$error[] = "_FILEUPLOADFAIL";
}
}
//save file to db
if (!$error) {
//save it to db
$query = mysql_query("INSERT INTO `" . $config->db_prefix . "_files` (`upload_time`,`down_count`,`bid`,`demo_file`,`demo_real`,`comment`,`name`,`email`,`file_size`,`addr`) \n\t\t\t\tVALUES (UNIX_TIMESTAMP(),0," . $bid . ",'" . $temp_file . "','" . $real_file . "','" . $comment . "','" . $name . "','" . $email . "'," . $_FILES['filename']['size'] . ",'" . $_SERVER["REMOTE_ADDR"] . "')") or die(mysql_error());
$msg_demo = "_FILEUPLOADSUCCESS";
}
new_captcha();
$smarty->assign("upload_error", $error);
$smarty->assign("demo_layer", 1);
}
