case 'save_room': $room_name = $_POST['i_room_name']; $data = "'','" . $room_name . "'"; save_room($data); header('location: table.php'); break; case 'save_table': $building_id = $_GET['building_id']; $table_name = $_POST['i_table_name']; $data = "'',\n\t\t\t\t'{$building_id}',\n\t\t\t\t'" . $table_name . "',\n\t\t\t\t'200',\n\t\t\t\t'200',\n\t\t\t\t'2',\n\t\t\t\t'1',\n\t\t\t\t'0',\n\t\t\t\t'1'\n\t\t\t\t"; save_table($data); header("location: table.php?building_id={$building_id}"); break; case 'save_payment': $table_id = $_GET['table_id']; $building_id = $_GET['building_id']; $query = mysql_query("select * \n\t\t\t\t\t\t\t\tfrom transactions_tmp a\n\t\t\t\t\t\t\t\twhere a.table_id = '{$table_id}'\n\t\t\t\t\t\t\t\t"); while ($row = mysql_fetch_array($query)) { $data = "'',\n\t\t\t\t\t'{$table_id}',\n\t\t\t\t\t'" . $row['transaction_date'] . "', \n\t\t\t\t\t'" . $row['transaction_total'] . "'\n\t\t\t"; create_config("transactions", $data); $transaction_id = mysql_insert_id(); $query_detail = mysql_query("select * \n\t\t\t\t\t\t\t\tfrom transaction_tmp_details a\n\t\t\t\t\t\t\t\twhere a.transaction_id = '" . $row['transaction_id'] . "'\n\t\t\t\t\t\t\t\t"); while ($row_detail = mysql_fetch_array($query_detail)) { $data_detail = "'',\n\t\t\t\t\t\t\t\t\t'{$transaction_id}',\n\t\t\t\t\t\t\t\t\t'" . $row_detail['menu_id'] . "',\n\t\t\t\t\t\t\t\t\t'" . $row_detail['transaction_detail_price'] . "',\n\t\t\t\t\t\t\t\t\t'" . $row_detail['transaction_detail_qty'] . "',\n\t\t\t\t\t\t\t\t\t'" . $row_detail['transaction_detail_total'] . "'\n\t\t\t\t\t\t\t\t\t"; create_config("transaction_details", $data_detail); } delete_tmp($table_id); } header("location: table.php?building_id={$building_id}"); break; }
<?php // delete files in a user's .tmp folder require_once $_SERVER['DOCUMENT_ROOT'] . '/include/main_func.php'; auth(); function delete_tmp($deletedir) { if (is_dir($deletedir)) { $handle = opendir($deletedir); $allowed_ext = array('jpg', 'png', 'gif', 'tem', 'zip', 'pca'); while (false !== ($entry = readdir($handle))) { if ($entry != "." && $entry != "..") { $ext = pathinfo($entry, PATHINFO_EXTENSION); $path = $deletedir . '/' . $entry; if (!is_dir($path)) { // && in_array($ext, $allowed_ext)) { unlink($path); } } } closedir($handle); } } delete_tmp(IMAGEBASEDIR . '/.tmp');