function storeUpload($post_field, $response = null, $allowed_mimetypes = null) { //global $xoopsModuleConfig, $xoopsUser, $xoopsDB, $xoopsModule; include_once XHELP_CLASS_PATH . '/uploader.php'; $config =& xhelpGetModuleConfig(); $ticketid = $this->getVar('id'); if (!isset($allowed_mimetypes)) { $hMime =& xhelpGetHandler('mimetype'); $allowed_mimetypes = $hMime->checkMimeTypes(); if (!$allowed_mimetypes) { return false; } } $maxfilesize = $config['xhelp_uploadSize']; $maxfilewidth = $config['xhelp_uploadWidth']; $maxfileheight = $config['xhelp_uploadHeight']; if (!is_dir(XHELP_UPLOAD_PATH)) { mkdir(XHELP_UPLOAD_PATH, 0757); } $uploader = new XoopsMediaUploader(XHELP_UPLOAD_PATH . '/', $allowed_mimetypes, $maxfilesize, $maxfilewidth, $maxfileheight); if ($uploader->fetchMedia($post_field)) { if (!isset($response)) { $uploader->setTargetFileName($ticketid . "_" . $uploader->getMediaName()); } else { $uploader->setTargetFileName($ticketid . "_" . $response . "_" . $uploader->getMediaName()); } if ($uploader->upload()) { $hFile =& xhelpGetHandler('file'); $file =& $hFile->create(); $file->setVar('filename', $uploader->getSavedFileName()); $file->setVar('ticketid', $ticketid); $file->setVar('mimetype', $allowed_mimetypes); $file->setVar('responseid', isset($response) ? intval($response) : 0); if ($hFile->insert($file)) { return $file; } else { return $uploader->getErrors(); } } else { return $uploader->getErrors(); } } }
function createFile($eventId) { $userId = $GLOBALS['xoopsUser'] ? $GLOBALS['xoopsUser']->getVar('uid') : 0; $allowedMimeType = array(); $mimeType = (include XOOPS_ROOT_PATH . '/class/mimetypes.inc.php'); foreach ($GLOBALS['xoopsModuleConfig']['allowed_file_extention'] as $fileExt) { $allowedMimeType[] = $mimeType[$fileExt]; } $uploader = new XoopsMediaUploader(XOOPS_ROOT_PATH . '/uploads/extcal', $allowedMimeType, 3145728); $uploader->setPrefix($userId . '-' . $eventId . '_'); if ($uploader->fetchMedia('event_file')) { if (!$uploader->upload()) { return false; } } else { return false; } $data = array('file_name' => $uploader->getSavedFileName(), 'file_nicename' => $uploader->getMediaName(), 'file_mimetype' => $uploader->getMediaType(), 'file_size' => $_FILES['event_file']['size'], 'file_date' => time(), 'file_approved' => 1, 'event_id' => $eventId, 'uid' => $userId); $file = $this->create(); $file->setVars($data); return $this->insert($file); }
} if (!empty($_POST['uid'])) { $uid = (int) $_POST['uid']; } if (empty($uid) || $xoopsUser->getVar('uid') != $uid) { redirect_header('index.php', 3, _US_NOEDITRIGHT); } if ($xoopsConfigUser['avatar_allow_upload'] == 1 && $xoopsUser->getVar('posts') >= $xoopsConfigUser['avatar_minposts']) { include_once $GLOBALS['xoops']->path('class/uploader.php'); $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH . '/avatars', array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png', 'image/png'), $xoopsConfigUser['avatar_maxsize'], $xoopsConfigUser['avatar_width'], $xoopsConfigUser['avatar_height']); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { $uploader->setPrefix('cavt'); if ($uploader->upload()) { $avt_handler = xoops_getHandler('avatar'); $avatar = $avt_handler->create(); $avatar->setVar('avatar_file', 'avatars/' . $uploader->getSavedFileName()); $avatar->setVar('avatar_name', $xoopsUser->getVar('uname')); $avatar->setVar('avatar_mimetype', $uploader->getMediaType()); $avatar->setVar('avatar_display', 1); $avatar->setVar('avatar_type', 'C'); if (!$avt_handler->insert($avatar)) { @unlink($uploader->getSavedDestination()); } else { $oldavatar = $xoopsUser->getVar('user_avatar'); if (!empty($oldavatar) && false !== strpos(strtolower($oldavatar), 'cavt')) { $avatars = $avt_handler->getObjects(new Criteria('avatar_file', $oldavatar)); if (!empty($avatars) && count($avatars) == 1 && is_object($avatars[0])) { $avt_handler->delete($avatars[0]); $oldavatar_path = realpath(XOOPS_UPLOAD_PATH . '/' . $oldavatar); if (0 === strpos($oldavatar_path, XOOPS_UPLOAD_PATH) && is_file($oldavatar_path)) { unlink($oldavatar_path);
$original_dir = NewsletterCreateDir($dir); $mid_dir = NewsletterCreateDir($dir); $thumb_dir = NewsletterCreateDir($dir); $mid_wh = array(360, 360); $thumb_wh = array(300, 300); $allowed_mimetypes = array('image/gif', 'image/jpeg', 'image/jpg', 'image/png'); $maxfilesize = 500000000; $maxfilewidth = 2000; $maxfileheight = 2000; $uploader = new XoopsMediaUploader($original_dir, $allowed_mimetypes, $maxfilesize, $maxfilewidth, $maxfileheight); if ($uploader->fetchMedia('header_img')) { $uploader->setPrefix('newsletter_header_'); if (!$uploader->upload()) { echo $uploader->getErrors(); } else { $model_obj->setVar('header_img', $uploader->getSavedFileName()); setImageThumb($original_dir, $uploader->getSavedFileName(), $mid_dir, 'mid_' . $uploader->getSavedFileName(), array($mid_wh[0], $mid_wh[1])); setImageThumb($original_dir, $uploader->getSavedFileName(), $thumb_dir, 'thumb_' . $uploader->getSavedFileName(), array($thumb_wh[0], $thumb_wh[1])); if (!empty($header_img)) { unlink(str_replace("\\", "/", realpath($original_dir . $header_img))); unlink(str_replace("\\", "/", realpath($mid_dir . 'mid_' . $header_img))); unlink(str_replace("\\", "/", realpath($thumb_dir . 'thumb_' . $header_img))); } } } } if ($model_handler->insert($model_obj)) { redirect_header('admin.manual.php', 3, '保存成功!'); } else { echo $model_handler->getHtmlErrors(); redirect_header('admin.manual.php', 3, '保存有誤!');
$obj = $helper->getHandlerSmilies()->create(); $obj->setVar('smiley_code', Request::getString('smiley_code', '')); $obj->setVar('smiley_emotion', Request::getString('smiley_emotion', '')); $obj->setVar('smiley_display', Request::getBool('smiley_display', 1)); $obj->setVar('smiley_url', 'smilies/' . Request::getPath('smiley_url', '')); $xoops_upload_file = Request::getArray('xoops_upload_file', array()); $mimetypes = array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png', 'image/png'); $upload_size = 500000; $uploader = new XoopsMediaUploader(\XoopsBaseConfig::get('uploads-path') . '/smilies', $mimetypes, $upload_size, null, null); if ($uploader->fetchMedia($xoops_upload_file[0])) { $uploader->setPrefix('smil'); if (!$uploader->upload()) { $msg[] = $uploader->getErrors(); $obj->setVar('smiley_url', 'blank.gif'); } else { $obj->setVar('smiley_url', 'smilies/' . $uploader->getSavedFileName()); } } if ($helper->getHandlerSmilies()->insert($obj)) { $xoops->redirect('xoops_smilies.php', 2, implode('<br />', $msg)); } } $xoopsTpl = new XoopsTpl(); if ($op === 'more') { $xoopsTpl->assign('smileys', Xoops\Module\Helper::getHelper('smilies')->getHandlerSmilies()->getSmilies(0, 0, false)); } else { $xoopsTpl->assign('smileys', Xoops\Module\Helper::getHelper('smilies')->getHandlerSmilies()->getActiveSmilies(false)); } // check user/group $groups = $xoops->getUserGroups(); $gperm_handler = $xoops->getHandlerGroupPermission();
} } if (!empty($_POST["xoops_upload_file"][0])) { include_once XOOPS_ROOT_PATH . "/class/uploader.php"; $link_dir = XOOPS_ROOT_PATH . $xoopsModuleConfig['logo_dir']; $allowed_mimetypes = array('image/gif', 'image/jpeg', 'image/jpg', 'image/png'); $maxfilesize = 500000; $maxfilewidth = 1200; $maxfileheight = 1200; $uploader = new XoopsMediaUploader($link_dir, $allowed_mimetypes, $maxfilesize, $maxfilewidth, $maxfileheight); if ($uploader->fetchMedia('link_image')) { $uploader->setPrefix('link_'); if (!$uploader->upload()) { echo $uploader->getErrors(); } else { $link_obj->setVar('link_image', $uploader->getSavedFileName()); if (!empty($link_image)) { unlink(str_replace("\\", "/", realpath($link_dir . $link_image))); } } } } if ($link_handler->insert($link_obj)) { redirect_header('admin.links.php?sort=' . $sort, 3, $message); } else { redirect_header('admin.links.php?sort=' . $sort, 3, _AM_LINKS_ACTIVEERROR); } break; case 'delete': $link_obj =& $link_handler->get($link_id); if (isset($_REQUEST['ok']) && $_REQUEST['ok'] == 1) {
/** * Guardamos una im?gen */ function rmmfSaveImg() { global $db, $mc; $id = isset($_POST['id']) ? $_POST['id'] : 0; if ($id <= 0) { header('location: index.php'); die; } include_once '../class/work.class.php'; $work = new MFWork($id); if (!$work->getVar('found')) { redirect_header('index.php', 1, _MA_RMMF_ERRNOEXIST); die; } $dir = rmmf_add_slash($mc['storedir']); if (!is_uploaded_file($_FILES['archivo']['tmp_name'])) { redirect_header('index.php?op=imgs&id=' . $id, 1, _MA_RMMF_ERRIMG); die; } include_once XOOPS_ROOT_PATH . '/class/uploader.php'; $upload = new XoopsMediaUploader($mc['storedir'], array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/jpg', 'image/pjpg', 'image/x-png', 'image/png'), 1024 * 1024); $ext = strrchr($_FILES['archivo']['name'], "."); $ext = strtolower($ext); do { $newname = rmmf_make_random(8, 'mfex') . $ext; } while (file_exists($dir . $newname)); $upload->setTargetFileName($newname); $upload->fetchMedia('archivo'); if (!$upload->upload()) { redirect_header("?op=imgs&id=" . $id, 1, $upload->getErrors()); exit; } else { $newname = $upload->getSavedFileName(); } // Redimensionamos las im?genes rmmf_image_resize($dir . $newname, $dir . $newname, $mc['imgw'], $mc['imgh']); if (!is_dir($dir . 'ths/')) { mkdir($dir . 'ths/', 0777); } //rmmf_image_resize($dir . $newname, $dir . 'ths/' . $newname, $mc['thw'], $mc['thh']); resize_then_crop($dir . $newname, $dir . 'ths/' . $newname, $mc['thw'], $mc['thh'], 255, 255, 255); // Guardamos en la base de datos $db->query("INSERT INTO " . $db->prefix("rmmf_images") . " (`archivo`,`work`)\n\t\t\tVALUES ('{$newname}', '{$id}')"); if ($db->error() != '') { redirect_header('index.php?op=imgs&id=' . $id, 2, sprintf(_MA_RMMF_ERRDB, $db->error())); die; } else { redirect_header('index.php?op=imgs&id=' . $id, 2, ''); die; } }
$op = trim($_POST['op']); } $myts =& MyTextSanitizer::getInstance(); if ($admin && $op == 'SmilesAdd') { if (!$GLOBALS['xoopsSecurity']->check()) { redirect_header($current_file, 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors())); } $db =& XoopsDatabaseFactory::getDatabaseConnection(); include_once XOOPS_ROOT_PATH . '/class/uploader.php'; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png', 'image/png'), 100000, 120, 120); $uploader->setPrefix('smil'); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { if (!$uploader->upload()) { $err = $uploader->getErrors(); } else { $smile_url = $uploader->getSavedFileName(); $smile_code = $myts->stripSlashesGPC($_POST['smile_code']); $smile_desc = $myts->stripSlashesGPC($_POST['smile_desc']); $smile_display = intval($_POST['smile_display']) > 0 ? 1 : 0; $newid = $db->genId($db->prefix('smilies') . "_id_seq"); $sql = sprintf("INSERT INTO %s (id, code, smile_url, emotion, display) VALUES (%d, %s, %s, %s, %d)", $db->prefix('smiles'), $newid, $db->quoteString($smile_code), $db->quoteString($smile_url), $db->quoteString($smile_desc), $smile_display); if (!$db->query($sql)) { $err = 'Failed storing smiley data into the database'; } } } else { $err = $uploader->getErrors(); } if (!isset($err)) { unset($_SESSION['XoopsEmotions']); unset($_SESSION['XoopsEmotions_expire']);
if ($op == 'avatarupload') { if (!$xoopsGTicket->check(true, 'avatarupload', false)) { redirect_header(XOOPS_URL . '/', 3, $xoopsGTiket->getErrors()); exit; } if ($myxoopsConfigUser['avatar_allow_upload'] == 1 && $u_obj->getVar('posts', 's') >= $myxoopsConfigUser['avatar_minposts']) { include_once XOOPS_ROOT_PATH . '/class/uploader.php'; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png', 'image/png'), $myxoopsConfigUser['avatar_maxsize'], $myxoopsConfigUser['avatar_width'], $myxoopsConfigUser['avatar_height']); $uploader->setAllowedExtensions(array('gif', 'jpeg', 'jpg', 'png')); $xoops_upload_file = $formdata->getValueArray('post', 'xoops_upload_file', 's', true); if ($uploader->fetchMedia($xoops_upload_file[0])) { $uploader->setPrefix('cavt'); if ($uploader->upload()) { $avt_handler =& xoops_gethandler('avatar'); $avatar =& $avt_handler->create(); $avatar->setVar('avatar_file', $uploader->getSavedFileName()); $avatar->setVar('avatar_name', $u_obj->getVar('uname', 'n'), true); // not gpc $avatar->setVar('avatar_mimetype', $uploader->getMediaType()); $avatar->setVar('avatar_display', 1); $avatar->setVar('avatar_type', 'C'); if (!$avt_handler->insert($avatar)) { @unlink($uploader->getSavedDestination()); } else { $oldavatar = $u_obj->getVar('user_avatar', 's'); if (!empty($oldavatar) && $oldavatar != 'blank.gif' && !preg_match('/^savt/', strtolower($oldavatar))) { $avatars =& $avt_handler->getObjects(new Criteria('avatar_file', $oldavatar)); $avt_handler->delete($avatars[0]); $oldavatar_path = str_replace("\\", '/', realpath(XOOPS_UPLOAD_PATH . '/' . $oldavatar)); if (0 === strpos($oldavatar_path, XOOPS_UPLOAD_PATH) && is_file($oldavatar_path)) { unlink($oldavatar_path);
if (!empty($_FILES['cat_image']['name'])) { include_once XOOPS_ROOT_PATH . '/class/uploader.php'; $allowed_mimetypes = array('image/gif', 'image/jpeg', 'image/jpg', 'image/png', 'image/x-png'); $maxfilesize = 500000; $maxfilewidth = 1200; $maxfileheight = 1200; $uploader = new XoopsMediaUploader($upload_path, $allowed_mimetypes, $maxfilesize, $maxfilewidth, $maxfileheight); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { $uploader->setPrefix('cat_'); if (!$uploader->upload()) { $error_upload = $uploader->getErrors(); } elseif (file_exists($uploader->getSavedDestination())) { if ($cat_obj->getVar("cat_image")) { @unlink($upload_path . '/' . $cat_obj->getVar("cat_image")); } $cat_obj->setVar('cat_image', $uploader->getSavedFileName()); } } } // delete iamge if (isset($_POST['delete_image']) && empty($_FILES['cat_image']['name'])) { @unlink($upload_path . '/' . $cat_obj->getVar("cat_image")); $cat_obj->setVar('cat_image', ''); } // insert object if ($cat_id = $category_handler->insert($cat_obj)) { redirect_header('admin.category.php', 3, '保存成功'); } break; case 'delete': $cat_obj =& $category_handler->get($cat_id);
$obj = $userrank_Handler->create(); } $obj->setVar("rank_title", $_POST["rank_title"]); $obj->setVar("rank_min", $_POST["rank_min"]); $obj->setVar("rank_max", $_POST["rank_max"]); $verif_rank_special = $_POST["rank_special"] == 1 ? "1" : "0"; $obj->setVar("rank_special", $verif_rank_special); $uploader_rank_img = new XoopsMediaUploader(\XoopsBaseConfig::get('uploads-url') . '/ranks', $mimetypes, $upload_size, null, null); if ($uploader_rank_img->fetchMedia("rank_image")) { $uploader_rank_img->setPrefix("rank"); $uploader_rank_img->fetchMedia("rank_image"); if (!$uploader_rank_img->upload()) { $errors = $uploader_rank_img->getErrors(); $xoops->redirect("javascript:history.go(-1)", 3, $errors); } else { $obj->setVar("rank_image", 'ranks/' . $uploader_rank_img->getSavedFileName()); } } else { $obj->setVar("rank_image", 'ranks/' . $_POST["rank_image"]); } if ($userrank_Handler->insert($obj)) { $xoops->redirect("userrank.php", 2, _AM_USERRANK_SAVE); } break; // Delete userrank // Delete userrank case 'userrank_delete': $admin_page->addItemButton(_AM_USERRANK_ADD, './userrank.php?op=userrank_new', 'add'); $admin_page->addItemButton(_AM_USERRANK_LIST, './userrank.php', 'list'); $admin_page->renderButton(); $rank_id = $system->cleanVars($_REQUEST, 'rank_id', 0, 'int');
function addFolder($language_text = false) { global $xoopsUser, $xoopsConfig, $xoopsModule, $xoopsModuleConfig, $myts, $smartmedia_folder_handler; include_once XOOPS_ROOT_PATH . "/class/uploader.php"; $max_size = 10000000; $max_imgwidth = 1000; $max_imgheight = 1000; $allowed_mimetypes = smartmedia_getAllowedMimeTypes(); $upload_msgs = array(); $folderid = isset($_POST['folderid']) ? intval($_POST['folderid']) : 0; if (isset($_POST['languageid'])) { $languageid = $_POST['languageid']; } elseif (isset($_POST['default_languageid'])) { $languageid = $_POST['default_languageid']; } else { $languageid = $xoopsModuleConfig['default_language']; } if ($folderid != 0) { $folderObj = $smartmedia_folder_handler->get($folderid, $languageid); } else { $folderObj = $smartmedia_folder_handler->create(); } if (!$language_text) { /* // Upload lr_image if ( $_FILES['lr_image_file']['name'] != "" ) { $filename = $_POST["xoops_upload_file"][0] ; if( !empty( $filename ) || $filename != "" ) { if( $_FILES[$filename]['tmp_name'] == "" || ! is_readable( $_FILES[$filename]['tmp_name'] ) ) { $upload_msgs[_AM_SMEDIA_FILEUPLOAD_ERROR]; } else { $uploader = new XoopsMediaUploader(smartmedia_getImageDir('folder'), $allowed_mimetypes, $max_size, $max_imgwidth, $max_imgheight); if( $uploader->fetchMedia( $filename ) && $uploader->upload() ) { $folderObj->setVar('image_lr', $uploader->getSavedFileName()); } else { $upload_msgs[_AM_SMEDIA_FILEUPLOAD_ERROR]; } } } } else { $folderObj->setVar('image_lr', $_POST['image_lr']); } */ // Upload hr_image if ($_FILES['hr_image_file']['name'] != "") { $filename = $_POST["xoops_upload_file"][0]; if (!empty($filename) || $filename != "") { if ($_FILES[$filename]['tmp_name'] == "" || !is_readable($_FILES[$filename]['tmp_name'])) { $upload_msgs[_AM_SMEDIA_FILEUPLOAD_ERROR]; } else { $uploader = new XoopsMediaUploader(smartmedia_getImageDir('folder'), $allowed_mimetypes, $max_size, $max_imgwidth, $max_imgheight); if ($uploader->fetchMedia($filename) && $uploader->upload()) { $folderObj->setVar('image_hr', $uploader->getSavedFileName()); } else { $upload_msgs[_AM_SMEDIA_FILEUPLOAD_ERROR]; } } } } else { $folderObj->setVar('image_hr', $_POST['image_hr']); } $folderObj->setVar('statusid', isset($_POST['statusid']) ? intval($_POST['statusid']) : 0); $folderObj->setVar('categoryid', isset($_POST['categoryid']) ? intval($_POST['categoryid']) : 0); $folderObj->setVar('new_category', isset($_POST['category_action']) ? $_POST['category_action'] == 'add' : false); $folderObj->setVar('weight', isset($_POST['weight']) ? intval($_POST['weight']) : 1); $folderObj->setVar('default_languageid', isset($_POST['default_languageid']) ? $_POST['default_languageid'] : $xoopsModuleConfig['default_language']); $folderObj->setTextVar('languageid', isset($_POST['default_languageid']) ? $_POST['default_languageid'] : $xoopsModuleConfig['default_language']); } else { $folderObj->setTextVar('languageid', $languageid); } $folderObj->setTextVar('languageid', $languageid); $folderObj->setTextVar('title', $_POST['title']); $folderObj->setTextVar('short_title', $_POST['short_title']); $folderObj->setTextVar('summary', $_POST['summary']); $folderObj->setTextVar('description', $_POST['description']); $folderObj->setTextVar('meta_description', $_POST['meta_description']); if ($folderObj->isNew()) { $redirect_msg = _AM_SMEDIA_FOLDER_CREATED; $redirect_to = 'folder.php'; } else { if ($language_text) { $redirect_to = 'folder.php?op=mod&folderid=' . $folderObj->folderid(); } else { $redirect_to = 'folder.php'; } $redirect_msg = _AM_SMEDIA_FOLDER_MODIFIED; } if (!$folderObj->store()) { redirect_header("javascript:history.go(-1)", 3, _AM_SMEDIA_FOLDER_SAVE_ERROR . smartmedia_formatErrors($folderObj->getErrors())); exit; } redirect_header($redirect_to, 2, $redirect_msg); exit; }
$error_msg .= XoopsLocale::E_YOU_NEED_A_POSITIVE_INTEGER . '<br />'; $obj->setVar("banner_imptotal", 0); } else { $obj->setVar("banner_imptotal", Request::getInt('imptotal', 0)); } $obj->setVar("banner_clickurl", Request::getString('clickurl', '')); $obj->setVar("banner_htmlbanner", Request::getInt('htmlbanner', 0)); $obj->setVar("banner_htmlcode", Request::getString('htmlcode', '')); $uploader_banners_img = new XoopsMediaUploader($xoops_upload_path . '/banners', $mimetypes, $upload_size, null, null); if ($uploader_banners_img->fetchMedia("banners_imageurl")) { $uploader_banners_img->setPrefix("banner"); $uploader_banners_img->fetchMedia("banners_imageurl"); if (!$uploader_banners_img->upload()) { $error_msg .= $uploader_banners_img->getErrors(); } else { $obj->setVar("banner_imageurl", $xoops_upload_url . '/banners/' . $uploader_banners_img->getSavedFileName()); } } else { if ($_POST["banners_imageurl"] === 'blank.gif') { $obj->setVar("banner_imageurl", Request::getString('imageurl', '')); } else { $obj->setVar("banner_imageurl", $xoops_upload_url . '/banners/' . Request::getString('banners_imageurl', '')); } } if ($error_msg == '') { if ($banner_Handler->insert($obj)) { $xoops->redirect("banners.php", 2, XoopsLocale::S_ITEM_SAVED); } $error_msg .= $obj->getHtmlErrors(); } $admin_page->addItemButton(_AM_BANNERS_BANNERS_LIST, 'banners.php', 'application-view-detail');
if (!empty($_POST['uid'])) { $uid = intval($_POST['uid']); } if (empty($uid) || $GLOBALS['xoopsUser']->getVar('uid') != $uid) { redirect_header('index.php', 3, _US_NOEDITRIGHT); exit; } if ($GLOBALS['xoopsConfigUser']['avatar_allow_upload'] == 1 && $GLOBALS['xoopsUser']->getVar('posts') >= $GLOBALS['xoopsConfigUser']['avatar_minposts']) { include_once $GLOBALS['xoops']->path('class/uploader.php'); $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png', 'image/png'), $GLOBALS['xoopsConfigUser']['avatar_maxsize'], $GLOBALS['xoopsConfigUser']['avatar_width'], $GLOBALS['xoopsConfigUser']['avatar_height']); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { $uploader->setPrefix('cavt'); if ($uploader->upload()) { $avt_handler =& xoops_gethandler('avatar'); $avatar =& $avt_handler->create(); $avatar->setVar('avatar_file', $uploader->getSavedFileName()); $avatar->setVar('avatar_name', $GLOBALS['xoopsUser']->getVar('uname')); $avatar->setVar('avatar_mimetype', $uploader->getMediaType()); $avatar->setVar('avatar_display', 1); $avatar->setVar('avatar_type', 'C'); if (!$avt_handler->insert($avatar)) { @unlink($uploader->getSavedDestination()); } else { $oldavatar = $GLOBALS['xoopsUser']->getVar('user_avatar'); if (!empty($oldavatar) && preg_match("/^cavt/", strtolower($oldavatar))) { $avatars = $avt_handler->getObjects(new Criteria('avatar_file', $oldavatar)); if (!empty($avatars) && count($avatars) == 1 && is_object($avatars[0])) { $avt_handler->delete($avatars[0]); $oldavatar_path = str_replace("\\", "/", realpath(XOOPS_UPLOAD_PATH . '/' . $oldavatar)); if (0 === strpos($oldavatar_path, XOOPS_UPLOAD_PATH) && is_file($oldavatar_path)) { unlink($oldavatar_path);
include XOOPS_ROOT_PATH . '/footer.php'; } if ($op == 'avatarupload') { if (!is_object($xoopsUser) || $xoopsUser->getVar('uid') != $uid) { redirect_header('index.php', 3, _US_NOEDITRIGHT); exit; } if ($xoopsConfigUser['avatar_allow_upload'] == 1 && $xoopsUser->getVar('posts') >= $xoopsConfigUser['avatar_minposts']) { include_once XOOPS_ROOT_PATH . '/class/uploader.php'; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png', 'image/png'), $xoopsConfigUser['avatar_maxsize'], $xoopsConfigUser['avatar_width'], $xoopsConfigUser['avatar_height']); if ($uploader->fetchMedia($HTTP_POST_VARS['xoops_upload_file'][0])) { $uploader->setPrefix('cavt'); if ($uploader->upload()) { $avt_handler =& xoops_gethandler('avatar'); $avatar =& $avt_handler->create(); $avatar->setVar('avatar_file', $uploader->getSavedFileName()); $avatar->setVar('avatar_name', $xoopsUser->getVar('uname')); $avatar->setVar('avatar_mimetype', $uploader->getMediaType()); $avatar->setVar('avatar_display', 1); $avatar->setVar('avatar_type', 'C'); if (!$avt_handler->insert($avatar)) { @unlink($uploader->getSavedDestination()); } else { $oldavatar = $xoopsUser->getVar('user_avatar'); if ($oldavatar && $oldavatar != 'blank.gif' && !preg_match("/^savt/", strtolower($oldavatar))) { $avatars =& $avt_handler->getObjects(new Criteria('avatar_file', $oldavatar)); $avt_handler->delete($avatars[0]); @unlink('uploads/' . $oldavatar); } $sql = sprintf("UPDATE %s SET user_avatar = '%s' WHERE uid = %u", $xoopsDB->prefix('users'), $uploader->getSavedFileName(), $xoopsUser->getVar('uid')); $xoopsDB->query($sql);
$xoops->redirect('/index.php', 3, XoopsLocale::E_NO_ACCESS_PERMISSION); exit; } $uploader_avatars_img = new XoopsMediaUploader(\XoopsBaseConfig::get('uploads-path') . '/avatars', $mimetypes, $upload_size, $width, $height); $obj = $avatar_Handler->create(); $error_msg = ''; if ($uploader_avatars_img->fetchMedia('user_avatar')) { $uploader_avatars_img->setPrefix('savt'); $uploader_avatars_img->fetchMedia('user_avatar'); if (!$uploader_avatars_img->upload()) { $error_msg .= $uploader_avatars_img->getErrors(); $obj->setVar('avatar_file', 'avatars/blank.gif'); } else { $obj->setVar('avatar_name', $xoops->user->getVar('uname')); $obj->setVar('avatar_mimetype', $uploader_avatars_img->getMediaType()); $obj->setVar('avatar_file', 'avatars/' . $uploader_avatars_img->getSavedFileName()); $obj->setVar('avatar_display', 1); $obj->setVar('avatar_type', 'C'); if ($error_msg == '') { if ($avatar_Handler->insert($obj)) { $oldavatar = $xoops->user->getVar('user_avatar'); $criteria = new CriteriaCompo(); $criteria->add(new Criteria('avatar_type', 'C')); $criteria->add(new Criteria('avatar_file', $oldavatar)); $avatars = $avatar_Handler->getObjects($criteria); if (!empty($avatars) && count($avatars) == 1 && is_object($avatars[0])) { $avatar_Handler->delete($avatars[0]); $xoops_upload_path = \XoopsBaseConfig::get('uploads-path'); $oldavatar_path = realpath($xoops_upload_path . '/' . $oldavatar); if (0 === strpos($oldavatar_path, realpath($xoops_upload_path)) && is_file($oldavatar_path)) { unlink($oldavatar_path);
if ($uploader->fetchMedia($xoops_upload_file[0])) { $uploader->setPrefix('img'); if (!$uploader->upload()) { $error_message .= $uploader->getErrors(); $obj->setVar('image_name', 'blank.gif'); $obj->setVar('image_mimetype', 'image/gif'); } else { $error = false; $obj->setVar('image_mimetype', $uploader->getMediaType()); if ($category->getVar('imgcat_storetype') == 'db' && $isnew) { $fp = @fopen($uploader->getSavedDestination(), 'rb'); $fbinary = @fread($fp, filesize($uploader->getSavedDestination())); @fclose($fp); $image_body = $fbinary; } else { $obj->setVar('image_name', 'images/' . $uploader->getSavedFileName()); } } } } if ($error == true) { $xoops->tpl()->assign('error_message', $error_message); } else { if ($image_id = $helper->getHandlerImages()->insert($obj)) { if ($category->getVar('imgcat_storetype') == 'db' && $isnew) { $imagebody = $helper->getHandlerImagesBody()->get($image_id); if (!is_object($imagebody)) { $imagebody = $helper->getHandlerImagesBody()->create(); $imagebody->setVar('image_id', $image_id); } $imagebody->setVar('image_body', $image_body);
$allowed_mimetypes = array('image/gif', 'image/jpeg', 'image/jpg', 'image/png'); $maxfilesize = 50000000; $maxfilewidth = 1200; $maxfileheight = 1200; $uploader = new XoopsMediaUploader($files_dir, $allowed_mimetypes, $maxfilesize, $maxfilewidth, $maxfileheight); foreach ($_POST["xoops_upload_file"] as $k => $v) { if ($uploader->fetchMedia($v)) { $uploader->setPrefix('case_gallery_'); if (!$uploader->upload()) { echo $uploader->getErrors(); } else { $image_obj =& $images_handler->create(); $image_obj->setVar('case_id', $case_id); $image_obj->setVar('image_title', $_POST["xoops_upload_file_name"][$k - 1]); $image_obj->setVar('image_desc', $_POST["xoops_upload_file_desc"][$k - 1]); $image_obj->setVar('image_file', $uploader->getSavedFileName()); $images_handler->insert($image_obj); setImageThumb($files_dir . "/", $uploader->getSavedFileName(), $files_dir . "/", 'mid_' . $uploader->getSavedFileName(), array($mid_wh[0], $mid_wh[1])); setImageThumb($files_dir . "/", $uploader->getSavedFileName(), $files_dir . "/", 'thumb_' . $uploader->getSavedFileName(), array($thumb_wh[0], $thumb_wh[1])); } unset($pic_obj); } } } $del_image_ids = !empty($_POST['del_image_ids']) ? $_POST['del_image_ids'] : ''; if (!empty($del_image_ids)) { if (is_array($del_image_ids)) { $del_image_ids = implode(',', $del_image_ids); } $criteria = new CriteriaCompo(); $criteria->add(new Criteria('case_id', $case_id), 'AND');
global $xoopsModuleConfig; $max_size = 10000000; $max_imgwidth = $xoopsModuleConfig['img_max_width']; $max_imgheight = $xoopsModuleConfig['img_max_height']; $allowed_mimetypes = null; //smartpartner_getAllowedMimeTypes(); include_once XOOPS_ROOT_PATH . "/class/uploader.php"; if ($_FILES[$filename]['tmp_name'] == "" || !is_readable($_FILES[$filename]['tmp_name'])) { redirect_header('javascript:history.go(-1)', 2, _CO_SPARTNER_FILE_UPLOAD_ERROR); exit; } $uploader = new XoopsMediaUploader(smartpartner_getImageDir(), $allowed_mimetypes, $max_size, $max_imgwidth, $max_imgheight); // TODO : prefix the image file with the partnerid, but for that we need to first save the partner to get partnerid... // $uploader->setTargetFileName($partnerObj->partnerid() . "_" . $_FILES['logo_file']['name']); if ($uploader->fetchMedia($filename) && $uploader->upload()) { $partnerObj->setVar('image', $uploader->getSavedFileName()); } else { redirect_header('javascript:history.go(-1)', 2, _CO_SPARTNER_FILE_UPLOAD_ERROR . $uploader->getErrors()); exit; } } } else { $partnerObj->setVar('image', $_POST['image']); } // Putting the values in the partner object $partnerObj->setVar('id', isset($_POST['id']) ? intval($_POST['id']) : 0); $partnerObj->setVar('categoryid', isset($_POST['categoryid']) ? implode('|', $_POST['categoryid']) : array(0)); $partnerObj->setVar('status', isset($_POST['status']) ? intval($_POST['status']) : 0); $partnerObj->setVar('title', $_POST['title']); $partnerObj->setVar('summary', $_POST['summary']); $partnerObj->setVar('image_url', $_POST['image_url']);
$allowed_mimetypes = $att_handler->getTypes(); $maxfilesize = 50000000; $uploader = new XoopsMediaUploader($files_dir, $allowed_mimetypes, $maxfilesize); foreach ($_POST["xoops_upload_file"] as $k => $v) { if ($uploader->fetchMedia($v)) { $uploader->setPrefix('support_'); if (!$uploader->upload()) { echo $uploader->getErrors(); } else { $att_obj =& $att_handler->create(); $att_obj->setVar('res_id', $res_id); if (!empty($xoopsUser)) { $att_obj->setVar('uid', $xoopsUser->getVar("uid")); } $att_obj->setVar("att_filename", $uploader->getMediaName()); $att_obj->setVar("att_attachment", $uploader->getSavedFileName()); $att_obj->setVar("att_type", $uploader->getMediaType()); $att_obj->setVar("att_size", $uploader->getMediaSize()); $att_obj->setVar("grate_time", time()); $att_obj->setVar("update_time", time()); $att_handler->insert($att_obj); $att_num = $att_num + 1; } unset($att_obj); } } //update resources res_attachment $res_obj =& $resources_handler->get($res_id); $res_obj->setVar('res_attachment', $att_num); $resources_handler->insert($res_obj); }
/** * @param string $post_field * @param array $allowed_mimetypes * @param array $errors * * @return bool */ public function storeUpload($post_field, $allowed_mimetypes = array(), &$errors) { $itemid = $this->getVar('itemid'); if (empty($allowed_mimetypes)) { $allowed_mimetypes = $this->publisher->getMimetypeHandler()->getArrayByType(); } $maxfilesize = $this->publisher->getConfig('maximum_filesize'); $maxfilewidth = $this->publisher->getConfig('maximum_image_width'); $maxfileheight = $this->publisher->getConfig('maximum_image_height'); if (!is_dir(PublisherUtils::getUploadDir())) { mkdir(PublisherUtils::getUploadDir(), 0757); } $uploader = new XoopsMediaUploader(PublisherUtils::getUploadDir() . '/', $allowed_mimetypes, $maxfilesize, $maxfilewidth, $maxfileheight); if ($uploader->fetchMedia($post_field)) { $uploader->setTargetFileName($itemid . "_" . $uploader->getMediaName()); if ($uploader->upload()) { $this->setVar('filename', $uploader->getSavedFileName()); if ($this->getVar('name') == '') { $this->setVar('name', $this->getNameFromFilename()); } $this->setVar('mimetype', $uploader->getMediaType()); return true; } else { $errors = array_merge($errors, $uploader->getErrors(false)); return false; } } else { $errors = array_merge($errors, $uploader->getErrors(false)); return false; } }
} if (isset($_FILES['mp3file'])) { /* sets the value for admin uploads */ $usertype = 1; /* -- */ /* checks the mimetype of the file and if the user is allowed to upload this one */ $allowed_mimetypes = retdebasermime($_FILES['mp3file']['name'], $usertype); /* -- */ /* reads the maximum size for uploads defined in preferences */ $maxfilesize = $xoopsModuleConfig['debasermaxsize']; /* -- */ $uploaddir = XOOPS_ROOT_PATH . '/modules/debaser/upload/'; $uploader = new XoopsMediaUploader($uploaddir, $allowed_mimetypes, $maxfilesize); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { if (!$uploader->upload()) { @unlink($uploaddir . $uploader->getSavedFileName()); $errors = $uploader->getErrors(); redirect_header("upload.php", 2, $errors); } else { } $filename = $uploader->getSavedFileName(); $filepath = $uploaddir . $uploader->getSavedFileName(); $mimetyp = debasermimecompare(); require_once '../class/getid3/getid3.php'; $getID3 = new getID3(); $ThisFileInfo = $getID3->analyze($filepath); getid3_lib::CopyTagsToComments($ThisFileInfo); include XOOPS_ROOT_PATH . '/modules/debaser/include/readinfo.php'; if ($title == '') { $title = basename($filepath, "." . $mimetyp); }
if (!empty($filename) || $filename != "") { global $xoopsModuleConfig; $max_size = 10000000; $max_imgwidth = $xoopsModuleConfig['img_max_width']; $max_imgheight = $xoopsModuleConfig['img_max_height']; $allowed_mimetypes = smartclient_getAllowedMimeTypes(); include_once XOOPS_ROOT_PATH . "/class/uploader.php"; if ($_FILES[$filename]['tmp_name'] == "" || !is_readable($_FILES[$filename]['tmp_name'])) { redirect_header('javascript:history.go(-1)', 2, _CO_SCLIENT_FILE_UPLOAD_ERROR); exit; } $uploader = new XoopsMediaUploader(smartclient_getImageDir(), $allowed_mimetypes, $max_size, $max_imgwidth, $max_imgheight); // TODO : prefix the image file with the clientid, but for that we need to first save the client to get clientid... // $uploader->setTargetFileName($clientObj->clientid() . "_" . $_FILES['logo_file']['name']); if ($uploader->fetchMedia($filename) && $uploader->upload()) { $clientObj->setVar('image', $uploader->getSavedFileName()); } else { redirect_header('javascript:history.go(-1)', 2, _CO_SCLIENT_FILE_UPLOAD_ERROR . $uploader->getErrors()); exit; } } } else { $clientObj->setVar('image', $_POST['image']); } // Putting the values in the client object $clientObj->setVar('id', isset($_POST['id']) ? intval($_POST['id']) : 0); $clientObj->setVar('status', isset($_POST['status']) ? intval($_POST['status']) : 0); $clientObj->setVar('title', $_POST['title']); $clientObj->setVar('summary', $_POST['summary']); $clientObj->setVar('image_url', $_POST['image_url']); $clientObj->setVar('description', $_POST['description']);
if (!is_object($imgcat)) { redirect_header($current_file . "?target=" . $target, 3); } include_once XOOPS_ROOT_PATH . "/class/uploader.php"; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array("image/gif", "image/jpeg", "image/pjpeg", "image/x-png", "image/png", "image/bmp"), $imgcat->getVar("imgcat_maxsize"), $imgcat->getVar("imgcat_maxwidth"), $imgcat->getVar("imgcat_maxheight")); $uploader->setPrefix("img"); $err = array(); $ucount = count($_POST["xoops_upload_file"]); for ($i = 0; $i < $ucount; $i++) { if ($uploader->fetchMedia($_POST["xoops_upload_file"][$i])) { if (!$uploader->upload()) { $err[] = $uploader->getErrors(); } else { $image_handler =& xoops_gethandler("image"); $image =& $image_handler->create(); $image->setVar("image_name", $uploader->getSavedFileName()); $image->setVar("image_nicename", $image_nicename); $image->setVar("image_mimetype", $uploader->getMediaType()); $image->setVar("image_created", time()); $image_display = empty($image_display) ? 0 : 1; $image->setVar("image_display", $image_display); $image->setVar("image_weight", $image_weight); $image->setVar("imgcat_id", $imgcat_id); if ($imgcat->getVar("imgcat_storetype") == "db") { $fp = @fopen($uploader->getSavedDestination(), "rb"); $fbinary = @fread($fp, filesize($uploader->getSavedDestination())); @fclose($fp); $image->setVar("image_body", $fbinary, true); @unlink($uploader->getSavedDestination()); } if (!$image_handler->insert($image)) {
} } if (!empty($_POST["xoops_upload_file"])) { include_once XOOPS_ROOT_PATH . "/class/uploader.php"; $logo_dir = XOOPS_ROOT_PATH . "/uploads/"; $allowed_mimetypes = array('image/gif', 'image/jpeg', 'image/jpg', 'image/png'); $maxfilesize = 500000; $maxfilewidth = 2200; $maxfileheight = 2200; $uploader = new XoopsMediaUploader($logo_dir, $allowed_mimetypes, $maxfilesize, $maxfilewidth, $maxfileheight); if ($uploader->fetchMedia('greenep_logo')) { $uploader->setPrefix('greenep_'); if (!$uploader->upload()) { echo $uploader->getErrors(); } else { $greenep_obj->setVar('greenep_logo', $uploader->getSavedFileName()); if (!empty($greenep_logo)) { unlink(str_replace("\\", "/", realpath($logo_dir . $greenep_logo))); } } } } if ($greenep_handler->insert($greenep_obj)) { redirect_header('admin.greenep.php', 3, _AM_CATALOG_ACTIVSUCCESS); } else { redirect_header('admin.greenep.php', 3, _AM_CATALOG_ACTIVEERROR); } break; case "delete": $greenep_obj =& $greenep_handler->get($greenep_id); $greenep_logo = $greenep_obj->getVar('greenep_logo');
$avt_handler =& xoops_gethandler('avatar'); // Get avatar id $avatar_id = system_CleanVars($_POST, 'avatar_id', 0, 'int'); if ($avatar_id > 0) { $avatar =& $avt_handler->get($avatar_id); } else { $avatar =& $avt_handler->create(); } $err = array(); if ($uploader->fetchMedia('avatar_file')) { $uploader->setPrefix('savt'); if (!$uploader->upload()) { $err[] = $uploader->getErrors(); } else { $avatar->setVars($_POST); $avatar->setVar('avatar_file', 'avatars/' . $uploader->getSavedFileName()); $avatar->setVar('avatar_mimetype', $uploader->getMediaType()); $avatar->setVar('avatar_type', 's'); if (!$avt_handler->insert($avatar)) { $err[] = sprintf(_FAILSAVEIMG, $avatar->getVar('avatar_name')); } } } else { $file = system_CleanVars($_REQUEST, 'avatar_file', 'blank.gif', 'string'); $avatar->setVars($_REQUEST); $avatar->setVar('avatar_file', 'avatars/' . $file); if (!$avt_handler->insert($avatar)) { $err[] = sprintf(_FAILSAVEIMG, $avatar->getVar('avatar_name')); } } if (count($err) > 0) {
if (!is_object($imagecategory)) { redirect_header('admin.php?fct=images', 1); } include_once XOOPS_ROOT_PATH . '/class/uploader.php'; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png', 'image/png', 'image/bmp'), $imagecategory->getVar('imgcat_maxsize'), $imagecategory->getVar('imgcat_maxwidth'), $imagecategory->getVar('imgcat_maxheight')); $uploader->setPrefix('img'); $err = array(); $ucount = count($_POST['xoops_upload_file']); for ($i = 0; $i < $ucount; $i++) { if ($uploader->fetchMedia($_POST['xoops_upload_file'][$i])) { if (!$uploader->upload()) { $err[] = $uploader->getErrors(); } else { $image_handler =& xoops_gethandler('image'); $image =& $image_handler->create(); $image->setVar('image_name', $uploader->getSavedFileName()); $image->setVar('image_nicename', $image_nicename); $image->setVar('image_mimetype', $uploader->getMediaType()); $image->setVar('image_created', time()); $image_display = empty($image_display) ? 0 : 1; $image->setVar('image_display', $image_display); $image->setVar('image_weight', $image_weight); $image->setVar('imgcat_id', $imgcat_id); if ($imagecategory->getVar('imgcat_storetype') == 'db') { $fp = @fopen($uploader->getSavedDestination(), 'rb'); $fbinary = @fread($fp, filesize($uploader->getSavedDestination())); @fclose($fp); $image->setVar('image_body', $fbinary, true); @unlink($uploader->getSavedDestination()); } if (!$image_handler->insert($image)) {
$path = MARTIN_ROOT_PATH . '/images/hotelicon/'; $FileTypeUpload = array("image/jpg", "image/png", "image/gif", "image/jpeg"); $uploader = new XoopsMediaUploader($path, $FileTypeUpload, 2048 * 1024); if ($uploader->fetchMedia($_POST["xoops_upload_file"][0])) { $uploader->ext = strtolower(ltrim(strrchr($uploader->getMediaName(), '.'), '.')); $SaveFileName = time() . rand(1000, 10000) . "." . $uploader->ext; $uploader->setTargetFileName($SaveFileName); if (!$uploader->upload()) { xoops_error($uploader->getErrors()); exit; } elseif (file_exists($uploader->getSavedDestination())) { //delete images if (!empty($hotel_icon)) { unlink(MARTIN_ROOT_PATH . '/images/hotelicon/' . $hotel_icon); } $hotel_icon = $uploader->getSavedFileName(); } } else { xoops_error($uploader->getErrors()); } } //echo $hotel_icon;exit; $hotel_icon = empty($hotel_icon) ? 'hotel.jpg' : $hotel_icon; $HotelObj->setVar('hotel_icon', $hotel_icon); //得到图片 $images = array(); if (!empty($_POST['FileData']) && is_array($_POST['FileData'])) { foreach ($_POST['FileData'] as $key => $Value) { if ($id > 0 && file_exists($FilePath . $key)) { $images[] = array('filename' => $key, 'alt' => $Value); continue;
if (preg_match('/^\\d+$/', $_POST["avatar_weight"]) == false) { $error_msg .= XoopsLocale::E_YOU_NEED_A_POSITIVE_INTEGER . '<br />'; $obj->setVar("avatar_weight", 0); } else { $obj->setVar("avatar_weight", Request::getInt('avatar_weight', 0)); } $obj->setVar('avatar_type', 'C'); if ($uploader_avatars_img->fetchMedia('avatar_file')) { $uploader_avatars_img->setPrefix('savt'); $uploader_avatars_img->fetchMedia('avatar_file'); if (!$uploader_avatars_img->upload()) { $error_msg .= $uploader_avatars_img->getErrors(); $obj->setVar('avatar_file', 'avatars/blank.gif'); } else { $obj->setVar('avatar_mimetype', $uploader_avatars_img->getMediaType()); $obj->setVar('avatar_file', 'avatars/' . $uploader_avatars_img->getSavedFileName()); } } else { $file = Request::getString('avatar_file', 'blank.gif'); $obj->setVar('avatar_file', 'avatars/' . $file); } if ($error_msg == '') { if ($avatar_Handler->insert($obj)) { $xoops->redirect('avatar_custom.php', 2, XoopsLocale::S_ITEM_SAVED); } $error_msg .= $obj->getHtmlErrors(); } $admin_page->addItemButton(AvatarsLocale::LIST_OF_AVATARS, 'avatar_custom.php', 'application-view-detail'); $admin_page->renderButton(); $xoops->tpl()->assign('info_msg', $xoops->alert('info', $info_msg, XoopsLocale::INFORMATION_FOR_UPLOADS)); $xoops->tpl()->assign('error_msg', $xoops->alert('error', $error_msg, XoopsLocale::ERRORS));
case "RankForumSave": $rank_id = isset($_POST['rank_id']) ? intval($_POST['rank_id']) : 0; if ($rank_id <= 0 | !$GLOBALS['xoopsSecurity']->check()) { redirect_header("admin.php?fct=userrank", 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors())); } $db =& Database::getInstance(); $myts =& MyTextSanitizer::getInstance(); $rank_special = isset($_POST['rank_special']) && intval($_POST['rank_special']) ? 1 : 0; $rank_title = $myts->stripSlashesGPC($_POST['rank_title']); $delete_old_image = false; include_once XOOPS_ROOT_PATH . '/class/uploader.php'; $uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png'), 100000, 120, 120); $uploader->setPrefix('rank'); if ($uploader->fetchMedia($_POST['xoops_upload_file'][0])) { if ($uploader->upload()) { $rank_image = $uploader->getSavedFileName(); $delete_old_image = true; } } if ($rank_special > 0) { $_POST['rank_min'] = $_POST['rank_max'] = -1; } $sql = "UPDATE " . $db->prefix("ranks") . " SET rank_title = " . $db->quoteString($rank_title) . ", rank_min = " . intval($_POST['rank_min']) . ", rank_max = " . intval($_POST['rank_max']) . ", rank_special = " . $rank_special; if ($delete_old_image) { $sql .= ", rank_image = " . $db->quoteString($rank_image); } $sql .= " WHERE rank_id = " . $rank_id; if (!$db->query($sql)) { xoops_cp_header(); xoops_error('Failed storing rank data into the database'); xoops_cp_footer();