include_once "./default.php"; include_once "./config.php"; $connect = mysqli_connect(DB, DBLOGIN, DBPASS, DBNAME); mysqli_set_charset($connect, 'utf8'); if (isset($_POST['submit']) && filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) { $_POST = m_r_e_sAll($_POST); $_POST = trimAll($_POST); $_POST = htmlAll($_POST); $_POST = clearData($_POST); $name = $_POST['name']; $email = $_POST['email']; $text = $_POST['text']; $date = $_POST['date']; $query = "INSERT INTO gbook VALUES ('','{$name}','{$email}','{$text}','{$date}')"; $res = mysqli_query($connect, $query) or die(mysqli_error()); header("Location:../index.php"); } if (isset($_GET['del'])) { //условие на удаление записи из Gbook $_GET = m_r_e_sAll($_GET); $_GET = trimAll($_GET); $_GET = clearData($_GET); $_GET = htmlAll($_GET); $id = (int) $_GET['del']; if ($id > 0) { $query = "DELETE FROM gbook WHERE id = '{$id}'"; $res = mysqli_query($connect, $query) or die(mysqli_error()); } header("Location:../index.php"); exit; }
<?php define('DB', 'localhost'); define('DBLOGIN', 'user'); define('DBPASS', '111'); define('DBNAME', 'bogdan'); define('DOMAIN', 'http://demo/Bogdan/libs/'); $connect = mysqli_connect(DB, DBLOGIN, DBPASS, DBNAME) or die(mysqli_error()); mysqli_set_charset($connect, 'utf8'); $coil = $_SESSION['user']['id']; if (isset($_SESSION['pass'])) { $new1 = $_SESSION['pass']; unset($_SESSION['pass']); } if (isset($_POST['pass']) && $_POST['pass1'] && filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) { $_POST = trimAll($_POST); $_POST = m_r_e_sAll($_POST); $_POST = htmlAll($_POST); $email = $_POST['email']; $pass = $_POST['pass']; $pass1 = $_POST['pass1']; if ($pass == $pass1) { $pass = md5($pass); //зашифрованный пароль можно использ функцию зашифровки в default myHash } else { $_SESSION['info'] = 'Пароль не правельный'; header("Location: ../settings.php"); } if ($email == $_SESSION['user']['email']) { mysqli_query($connect, "UPDATE capons SET\n pass = '******'\n WHERE id = '{$coil}'\n ") or die(mysqli_error()); // $id = mysqli_insert_id($connect); //функция возвращает ID последнего добавленного элемента в БД - что-бы передать ID для проверки активации
public function nextAddress() { $myrow = mysql_fetch_array($this->result); if ($myrow) { return new Address(trimAll($myrow)); } else { return false; } }
} function get_userinfo() { $filename = "~/.hatebulist"; $str = exec('cat ' . $filename, $output); $userinfo_array = explode(" ", $output[0]); return array('user_name' => $userinfo_array[0], 'api_key' => $userinfo_array[1]); } $user = get_userinfo(); $user_name = $user['user_name']; $api_key = $user['api_key']; #http://d.hatena.ne.jp/i_ogi/20100214/wsse $url = "http://b.hatena.ne.jp/" . $user_name . "/search/json?q=" . $query . "&sort=date&limit=20"; $nonce = md5(mt_rand()); $created = date(DATE_ISO8601); $x_wsse = sprintf('UsernameToken Username="******", PasswordDigest="%s", Nonce="%s", Created="%s"', $user_name, base64_encode(sha1($nonce . $created . $api_key, true)), base64_encode($nonce), $created); $context = stream_context_create(array('http' => array('header' => "X-WSSE: {$x_wsse}\r\n" . "User-Agent: HatebuList.alfredworkflow"))); $file = file_get_contents($url, 0, $context); $json = json_decode($file); $dataList = $json; foreach ($dataList->bookmarks as $data) { $entry = $data->entry; $title = $entry->title; $count = $entry->count; $snippet = trimAll($entry->snippet); $wf_url = $entry->url; $wf_title = $title; $wf_description = $snippet; $wf->result(time(), $wf_url, $wf_title, $wf_description, 'icon.png'); } echo $wf->toxml();
<?php require_once "../config/Autoload.php"; //Autoload class require_once "../libs/datafilter.php"; //form validate $method = $_SERVER['REQUEST_METHOD']; //variable contains the name of the "Request method" if ($method == 'DELETE') { parse_str(file_get_contents("php://input"), $editData); //$editData - variable containe delete Data $editData = trimAll($editData); //validate PUT data $editData = htmlAll($editData); //validate PUT data $deleteCity = Main::deleteData($editData['del_country'], $editData['del_city'], $editData['del_language']); //delete city $editData['info'] = 'Successfully removed'; $lastCity = City::lastCity($editData['del_country']); //if the country have only 1 city delete the country and language if (mysqli_num_rows($lastCity) == 0) { $deleteCountryLanguge = Language::deleteLanguage($editData['del_language']); //delete language $deleteCountry = Country::deleteCountry($editData['del_country']); //delete country $editData['info'] = 'Successfully removed'; } echo json_encode($editData); //send response data to Jquery }
/** * checkRequirement taking a String with course Requirements. E.g: * 'MATH 1104' * 'MATH 1003, SYSC 4000 and SYSC 1009' * '(SYSC 1003 and SYSC 1005) and SYSC 4000 and SYSC 1009 or (SYSC 1003 and SYSC 1005)' * * @param [String] $requirement [description] * @param [List] $completedCourses [description] * @return [type] [description] */ function checkRequirement($requirement, $completedCourses) { $requirement = trimAll($requirement); if ($requirement == '') { return ''; } while (findBracket($requirement)) { $callback = new MyCallback($completedCourses); $requirement = preg_replace_callback(BRACKETREG, array($callback, 'callbackFunction'), $requirement); } //No Bracket from here if (isCourse($requirement)) { //return true for completed this course if (in_array($requirement, $completedCourses)) { return True; } else { return False; } } $checkResult = checkOrAnd($requirement); if ($checkResult == '') { // TODO; need to think about this.. // SPecial Requirements // Giving a Message if (strpos($requirement, 'permission of the department')) { // Special requirement $isEligible = true; // Message to ..... // echo "MEssage"; } } else { if ($checkResult == 'and none') { $req = '/(,|and|AND|And)/'; $arr = preg_split($req, $requirement); foreach ($arr as $a) { $a = trim($a); if ($a == 'False' or $a != '' and !checkRequirement($a, $completedCourses)) { return False; } } return True; } else { if ($checkResult == 'or none') { $req = '/(,|or|OR|Or)/'; $arr = preg_split($req, $requirement); foreach ($arr as $a) { $a = trim($a); if ($a == 'True' or checkRequirement($a, $completedCourses)) { return True; } } return False; } else { if ($checkResult == 'or and') { $andIndex = strpos($requirement, 'and'); $orStatement = checkRequirement(substr($requirement, 0, $andIndex), $completedCourses); if ($orStatement) { return True; } else { return checkRequirement(substr($requirement, $andIndex), $completedCourses); } } else { if ($checkResult == 'and or') { $orIndex = strpos($requirement, "or"); $orStatement = checkRequirement(substr($requirement, 0, $orIndex), $completedCourses); if (!$orStatement) { return False; } $orStatement = $orStatement ? 'True' : 'False'; return checkRequirement($orStatement . " " . substr($requirement, $orIndex), $completedCourses); } } } } } return True; }
<?php #Прокидываем запрос на проверку юзверя if (!empty($_SESSION['user'])) { $check_bd = q("\n SELECT *\n FROM `users`\n WHERE `id` = '" . ms($_SESSION['user']['id']) . "'\n LIMIT 1\n "); if (mysqli_num_rows($check_bd)) { $_SESSION['user'] = mysqli_fetch_assoc($check_bd); #Если юзверь забанен - выгоняем его. if ($_SESSION['user']['active'] == 2) { include_once './modules/cab/exit.php'; exit; } } } elseif (isset($_COOKIE['id'], $_COOKIE['hash'])) { #Проверяем на куки #Чистим от пробелов и экранируем кавычки перед запросом $check = ms(trimAll($_COOKIE)); #Проверяем полученные куки и браузер юзверя на соответсвие в бд $check_bd = q("\n SELECT *\n FROM `users`\n WHERE `hash` = '" . $check['hash'] . "'\n AND `id` = '" . $check['id'] . "'\n AND `agent` = '" . $_SERVER['HTTP_USER_AGENT'] . "'\n "); #Если такой пользователь есть, то авторизуем его. if (mysqli_num_rows($check_bd)) { $_SESSION['user'] = mysqli_fetch_assoc($check_bd); } }
} } else { if (isset($_REQUEST['all'])) { include "include/view.w.php"; $sql = "SELECT * FROM {$base_from_where} order by lastname, firstname"; $result = mysql_query($sql, $db); $cnt = 0; echo "<h1>" . ucfmsg('ADDRESS_BOOK') . ($group ? " " . msg('FOR') . " <i>{$group}</i></h1>" : "</h1>"); ?> <table id="view"> <?php $only_phones = isset($_REQUEST['phones']); $addr_per_line = $only_phones ? 4 : 3; while ($r = mysql_fetch_array($result)) { $r = trimAll($r); $address = new Address($r); if ($address->hasPhone() || !$only_phones) { if ($cnt % (2 * $addr_per_line) == 0) { echo "<tr class='odd'>"; } if ($cnt % (2 * $addr_per_line) == $addr_per_line) { echo "<tr class='even'>"; } echo "<td valign='top'>"; showOneEntry($r, $only_phones); echo "</td>"; $cnt++; if ($cnt % $addr_per_line == 0) { echo "</tr>"; }
function makeDegreesSQL($id) { //remove whitespace, then remove empty trimAll($this->Majors); trimAll($this->Minors); $this->Majors = array_filter($this->Majors); $this->Minors = array_filter($this->Minors); if (count($this->Majors) + count($this->Minors) == 0) { return ""; } //TODO: I think this is only supposed to add degrees that exist in the Degrees table... $sql = "INSERT INTO `UserDegrees` (UserID, DegName, IsMajor) VALUES "; foreach ($this->Majors as $deg) { sanitizeIn($deg); //TODO: checkme!!! Does this work properly? $sql = $sql . "('" . $id . "', '" . $deg . "', 1), "; } foreach ($this->Minors as $deg) { sanitizeIn($deg); //TODO: checkme!!! Does this work properly? $sql = $sql . "('" . $id . "', '" . $deg . "', 0), "; } return substr($sql, 0, -2); }