/** * 그룹 등록 * @class admin.site * @param $data: 자료 -is_check: 입력변수 체크 여부 * @return Array 등록된 그룹 자료 */ function addSite($data, $param = '') { global $mini; $param = param($param); def($param['is_check'], 1); //// 변수 체크 if ($param['is_check']) { checkFieldSite($data); // 권한체크 checkAdmin("\n\t\t\t\t\tmode: admin\n\t\t\t\t\ttype: ajax\n\t\t\t\t"); } //// 기본변수 여부 체크 if (!isset($data['name'])) { __error('그룹 이름을 입력해 주세요'); } //// 기본변수 입력 $data['date'] = $mini['date']; unset($data['mode']); unset($data['script']); //// 이름 중복 체크 if (sql("SELECT COUNT(*) FROM {$mini['name']['site']} WHERE name='{$data['name']}'")) { __error('중복된 그룹이름 입니다.'); } //// 쿼리 sql("INSERT INTO {$mini['name']['site']} " . query($data, 'insert')); $data['no'] = getLastId($mini['name']['site'], "name='{$data['name']}' and date='{$data['date']}'"); //// 로그 기록 addLog("\n\t\t\tmode: site_add\n\t\t\tfield1: {$data['no']}\n\t\t"); return $data; }
function getIt() { if (isset($GLOBALS["HTTP_RAW_POST_DATA"])) { $number = getLastId(); $sitrng = "poczekalnia/z" . "{$number}" . ".png"; // Get the data $imageData = $GLOBALS['HTTP_RAW_POST_DATA']; // Remove the headers (data:,) part. // A real application should use them according to needs such as to check image type $filteredData = substr($imageData, strpos($imageData, ",") + 1); // Need to decode before saving since the data we received is already base64 encoded $unencodedData = base64_decode($filteredData); //echo "unencodedData".$unencodedData; // Save file. This example uses a hard coded filename for testing, // but a real application can specify filename in POST variable $fp = fopen($sitrng, 'wb'); fwrite($fp, $unencodedData); fclose($fp); add($sitrng, $_COOKIE['words'], $_COOKIE['author'], $_COOKIE['nick'], $_COOKIE['book'], $_COOKIE['tag']); setcookie("words", "", time()); $files = glob('upload/*'); // get all file names foreach ($files as $file) { // iterate files if (is_file($file)) { unlink($file); } // delete file } } }
/** * Creating short url */ function insertUrl($longUrl, $pdo) { if ($shotUrl = isUrlDbExist($longUrl, $pdo)) { return $shotUrl; } $shortCode = genShortCode(getLastId($pdo)); $table = TAB_NAME; $q = $pdo->prepare("INSERT INTO {$table}(short_url, long_url) VALUES ('{$shortCode}', '{$longUrl}')"); $q->execute(); return $shortCode; }
function waitForEvent($from = null) { $id = $from ?: getLastId(); $timer = time(); while (!($events = getLastEvents($id))) { sleep(1); if (time() - $timer >= 5) { return []; } } return $events; }
function createUser($db, $user, $pass) { $error = false; $user = pg_escape_string($user); $pass = pg_escape_string($pass); $query = pg_query($db, "INSERT INTO userbase (pwd, username) VALUES ('{$pass}', '{$user}')"); $last_uid = getLastId($db); echo $last_uid; $last_uid++; pg_query($db, "INSERT INTO uif (uid, username) VALUES ('{$last_uid}', '{$user}')"); return $last_uid; }
function addUser($userName, $userPassword) { global $db; $id = getLastId() + 1; $sql = 'INSERT INTO ajax_chat_users( userID, userName, password) VALUES ( ' . $id . ', ' . $db->makeSafe($userName) . ', ' . $db->makeSafe(md5($userPassword)) . ' );'; $result = $db->sqlQuery($sql); if ($result->error()) { echo $result->getError(); die; } }
public function update() { function getLastId() { $Model = new Model(); $Model->query("select last_insert_id() as last"); $result = $Model->query("select last_insert_id() as last"); return $result[0]["last"]; } $Article = new Model('Article'); $Article->create(); $Article->blar_modify_time = date("Y-m-d H:i:s"); $Article->save(); $blar_id = $Article->blar_id; $At = new Model("article_tags"); $At->where("blar_id=" . $blar_id)->delete(); $blta_name = $_POST["blta_name"]; if (isset($blta_name) && !empty($blta_name)) { $blta_name = str_replace(',', ',', $blta_name); $arr_blta_name = split(",", $blta_name); $Tags = new Model('Tags'); foreach ($arr_blta_name as $tag) { $tagResult = $Tags->where("blta_name='" . $tag . "'")->select(); if (isset($tagResult) && !empty($tagResult)) { $blta_id = $tagResult[0]["blta_id"]; } else { $Tags->blta_name = $tag; $Tags->add(); $blta_id = getLastId(); } $ArticleTags = new Model("article_tags"); $ArticleTags->blta_id = $blta_id; $ArticleTags->blar_id = $blar_id; $ArticleTags->add(); } } $Content = new Model('Content'); $Content->create(); $Content->save(); $info = "修改成功!"; $this->ajaxReturn($blar_id, $info, 1); }
function upsertHwr($db, $file_id, $hwr_list, $image_output_path) { // 手書きデータの id 取得。 $sql = getSQLBaseForFilehwrList(); $sql .= " AND file_hwr.file_id = :file_id"; $params = array(); $params[':file_id'] = $file_id; $stmt = $db->prepare($sql); $stmt->execute($params); $saved_hwr_list = array(); foreach ($stmt->fetchAll(PDO::FETCH_ASSOC) as $row) { $saved_hwr_list[$row['mark_position_y']] = $row; } foreach ($hwr_list as $index => $hwr) { $hwr_val = $hwr['hwr_val']; $update_time = date("Y-m-d H:i:s", $hwr['update_time']); $mark_position_y = isset($hwr['mark_position_y']) ? $hwr['mark_position_y'] : '0'; $hwr_image = array_key_exists('hwr_image', $hwr) ? $hwr['hwr_image'] : null; if (array_key_exists('hwr_id', $hwr)) { $hwr_id = $hwr['hwr_id']; // --- TBL: hwr $rslt = updHwr($db, $hwr_id, $hwr_val, $update_time); if (!$rslt) { \Sop\Log::error(__FILE__, __LINE__, 'Failed to update hwr.'); $msg001 = "The update failed.: hwr"; // 更新に失敗しました: hwr \Sop\Api::exitWithError(array($msg001)); } } else { if (array_key_exists($mark_position_y, $saved_hwr_list)) { $hwr_id = $saved_hwr_list[$mark_position_y]['hwr_id']; // --- TBL: hwr $rslt = updHwr($db, $hwr_id, $hwr_val, $update_time); if (!$rslt) { \Sop\Log::error(__FILE__, __LINE__, 'Failed to update hwr.'); $msg002 = "The update failed.: hwr"; // 更新に失敗しました: hwr \Sop\Api::exitWithError(array($msg002)); } } else { // insert // --- TBL: hwr $hwr_id = -1; $rslt = addHwr($db, $hwr_id, $hwr_val, $update_time, $mark_position_y); if (!$rslt) { \Sop\Log::error(__FILE__, __LINE__, 'Failed to add hwr.'); $msg003 = "The registration failed.: hwr"; // 登録に失敗しました: hwr \Sop\Api::exitWithError(array($msg003)); } $hwr_id = getLastId($db); // --- TBL: file_hwr $rslt = addFilehwr($db, $file_id, $hwr_id); if (!$rslt) { \Sop\Log::error(__FILE__, __LINE__, 'Failed to add file_hwr.'); $msg004 = "The registration failed.: file_hwr"; // 登録に失敗しました: file_hwr \Sop\Api::exitWithError(array($msg004)); } } } // --------------------------- // 手書きの画像をファイルに書き出す。 // --------------------------- if ($hwr_image != null) { $file_path = $image_output_path . '/' . $file_id . '_' . $hwr_id . '.png'; $hwr_image = preg_replace('#^data:image/png;base64,#', '', $hwr_image); $hwr_image = base64_decode($hwr_image); file_put_contents($file_path, $hwr_image); } } }
/** 파일정보를 DB에 추가한다 * @class write * @param $data: chkFile 후에 넘어온 데이터 -id: 게시판번호. 없으면 mini[board]의 정보를 활용 -target_member: 회원번호. 없으면 mini[member]의 정보를 활용 -target: 대상자료번호 -target_pos: 대상게시물번호(댓글일때만) -mode: post|comment|memo|box * @return Array */ function addFile($data, $param = '') { global $mini; $param = param($param); $ins = array(); if (!empty($param['id'])) { def($ins['id'], $param['id']); } if (!empty($data['id'])) { def($ins['id'], $data['id']); } if (!empty($mini['board']['no'])) { def($ins['id'], $mini['board']['no']); } if (!empty($param['target_member'])) { def($ins['target_member'], $param['target_member']); } if (!empty($data['target_member']) && !empty($mini['member']['level_admin'])) { def($ins['target_member'], $data['target_member']); } if (!empty($mini['member']['no'])) { def($ins['target_member'], $mini['member']['no']); } if (!empty($data['ip']) && !empty($mini['member']['level_admin'])) { def($ins['ip'], $data['ip']); } def($ins['ip'], $mini['ip']); if (!empty($data['date']) && !empty($mini['member']['level_admin'])) { def($ins['date'], $data['date']); } def($ins['date'], $mini['date']); if (!empty($param['mode'])) { def($ins['mode'], $param['mode']); } if (!empty($data['mode'])) { def($ins['mode'], $data['mode']); } def($ins['mode'], ''); if (!empty($param['target'])) { def($ins['target'], $param['target']); } if (!empty($data['target'])) { def($ins['target'], $data['target']); } def($ins['target'], 0); if (!empty($param['target_post']) && $ins['mode'] == 'comment') { $ins['target_post'] = $param['target_post']; } $ins['name'] = $data['name']; $ins['url'] = $data['path']; $ins['size'] = $data['size']; $ins['is_admit'] = !empty($mini['board']['use_file_admit']) && empty($mini['member']['level_admin']) ? 0 : 1; $ins['width'] = !empty($data['width']) ? $data['width'] : 0; $ins['height'] = !empty($data['height']) ? $data['height'] : 0; $ins['ext'] = $data['ext']; $ins['type'] = $data['type']; // 파일해시 $ins['hash'] = getHash($data); sql("INSERT INTO {$mini['name']['file']} " . query($ins, 'insert')); // 후처리 $ins['no'] = getLastId($mini['name']['file'], "(ip='{$ins['ip']}' and date='{$ins['date']}' and name='{$ins['name']}')"); $ins['error'] = 0; return $ins; }
/** * 회원 등록 * @class admin.member * @param $data: 자료 -is_check: 입력변수 체크 여부 * @return Array 등록된 회원 자료 */ function addMember($data, $param = '') { global $mini; $param = param($param); def($param['is_check'], 1); unset($data['formMode']); unset($data['formMsg']); unset($data['formFunc']); unset($data['formURL']); unset($data['formHTML']); unset($data['no']); unset($data['ip']); unset($data['ip_join']); unset($data['key_find']); unset($data['key_sms']); unset($data['key_login']); unset($data['date']); unset($data['date_login']); unset($data['count_login']); unset($data['count_vote']); unset($data['count_post']); unset($data['count_comment']); unset($data['count_recent_comment']); unset($data['history_login']); unset($data['mode']); unset($data['script']); unset($data['admin']); unset($data['id_mode']); if (empty($mini['member']['level_admin'])) { unset($data['site']); unset($data['site_link']); unset($data['level']); unset($data['admit']); unset($data['confirm_co']); unset($data['point']); unset($data['point_sum']); unset($data['money']); unset($data['count_alert']); unset($data['lock_login']); unset($data['history_admin']); unset($data['date_punish']); } //// 추가필드 권한 체크 if (!empty($mini['site']['field'])) { foreach ($mini['site']['field'] as $key => $val) { if (empty($data['field'][$key]) && !empty($val['is_req'])) { __error("[{$val['name']}]을 입력해 주세요"); } } } //// 변수 체크 if ($param['is_check']) { checkFieldMember($data); // 권한체크 if (!empty($mini['is_admin'])) { checkAdmin("\n\t\t\t\t\t\tsite: {$_POST['site']}\n\t\t\t\t\t\ttype: ajax\n\t\t\t\t\t"); } } //// 아이디 중복 체크 check($data['uid'], 'type:id, name:회원아이디'); if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE uid='{$data['uid']}'")) { __error('중복된 회원 아이디 입니다.'); } //// 닉네임 중복 체크 if (!isset($data['name'])) { __error('회원 닉네임을 입력해 주세요'); } if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE name='{$data['name']}'")) { __error("중복된 닉네임 입니다."); } //// 주민등록번호 중복 체크 및 암호화 if (isset($data['jumin']) && $data['jumin']) { $data['jumin'] = md5($data['jumin']); if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE jumin='{$data['jumin']}'")) { __error("중복된 주민등록번호 입니다."); } } //// 사업자번호 중복 체크 if (isset($data['co_num']) && $data['co_num']) { if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE co_num='{$data['co_num']}'")) { __error("중복된 사업자등록번호 입니다."); } } //// 메일 중복 체크 if (!empty($data['mail'])) { if (sql("SELECT COUNT(*) FROM {$mini['name']['member']} WHERE mail='{$data['mail']}'")) { __error("중복된 메일 입니다."); } } //// 필수입력 정보 사이트 정보대로 처리 if (!empty($mini['site']['join_check'])) { $tmp = ''; foreach ($mini['site']['join_check'] as $key => $val) { if (empty($data[$key]) && !empty($val['name'])) { $tmp = !empty($tmp) ? $tmp . ",{$val['name']}" : $val['name']; } } if (!empty($tmp)) { __error("필수입력정보를 입력해 주세요. [{$tmp}]"); } } //// 기본변수 여부 체크 if (isset($mini['site'])) { def($data['site'], $mini['site']['no']); } check($data['site'], 'type:num, name:그룹'); if (!isset($data['pass'])) { __error('비밀번호를 입력해 주세요'); } //// 가입 기본 포인트 적용 if (!empty($mini['site']['point_join']) && empty($data['point']) && empty($data['point_sum'])) { $data['point'] = $data['point_sum'] = $mini['site']['point_join']; } //// 가입 승인 기능 설정 if (!empty($mini['site']['admit']) && (empty($mini['member']['level_admin']) || $mini['member']['level_admin'] < 2)) { $data['admit'] = 0; } //// 재가입 방지 확인 if (!empty($mini['site']['withdraw'])) { iss($data['mail']); if (sql("SELECT COUNT(*) FROM {$mini['name']['log']} WHERE mode='member_withdraw' and (field1='{$data['uid']}' or ip='{$mini['ip']}' or field2='{$data['mail']}') and date >= '" . date("Y-m-d H:i:s", $mini['time'] - 86400 * $mini['site']['withdraw']) . "'")) { __error('해당 아이디, IP 혹은 메일주소로 재가입 하실 수 없습니다'); } } //// 기본변수 입력 $data['date'] = $mini['date']; $data['ip_join'] = $mini['ip']; unset($data['pass_encode']); unset($data['pass_confirm']); unset($data['jumin_encode']); //// 쿼리 sql("INSERT INTO {$mini['name']['member']} " . query($data, 'insert')); $data['no'] = getLastId($mini['name']['member'], "uid='{$data['uid']}' and date='{$mini['date']}' and ip_join='{$mini['ip']}'"); //// 로그 기록 addLog("\n\t\t\tmode: member_add\n\t\t\tfield1: {$data['no']}\n\t\t"); //// 인증메일 발송 if (empty($mini['member']['level_admin']) && !empty($mini['site']['admit']) && $mini['site']['admit'] == 'mail' && !empty($mini['set']['use_smtp']) && !empty($mini['site']['template']['admit'])) { include "{$mini['dir']}skin/template/mail.admit.tpl.php"; if (!function_exists('skinConv')) { include "{$mini['dir']}_inc.skinmake.php"; } if (!empty($tpl) && (!empty($mini['site']['mail']) || !empty($mini['set']['mail']))) { $tmp = !empty($tpl[$mini['site']['template']['admit']]) ? $tpl[$mini['site']['template']['admit']] : current($tpl); // 키 생성 $admit_key = rand(100000, 999999); unset($mini['skin']); $mini['skin'] = ''; $mini['skin']['site'] =& $mini['site']; $mini['skin']['data'] =& $data; $mini['skin']['date'] = $mini['date']; $mini['skin']['key'] = $admit_key; $mini['skin']['url_key'] = "{$mini['pdir']}ajax.php?mode=admit_mail&no={$data['no']}&key={$admit_key}"; $mini['skin']['link_key'] = "href='{$mini['skin']['url_key']}' target='_blank'"; sql("UPDATE {$mini['name']['member']} SET key_find = '{$admit_key}|{$mini['date']}' WHERE no={$data['no']}"); $result = send_mail(array('from_name' => $mini['site']['name'], 'from_mail' => !empty($mini['site']['mail']) ? $mini['site']['mail'] : $mini['set']['mail'], 'to_name' => $data['name'], 'to_mail' => $data['mail'], 'title' => skinConv($tmp['title'], 'str'), 'ment' => skinConv($tmp['ment'], 'str'))); } else { __error('인증메일을 발송할 수 없습니다. 관리자에게 문의해 주세요'); } } //// 가입메일 발송 if (empty($mini['member']['level_admin']) && !empty($mini['set']['use_smtp']) && !empty($mini['site']['template']['join'])) { include "{$mini['dir']}skin/template/mail.join.tpl.php"; if (!function_exists('skinConv')) { include "{$mini['dir']}_inc.skinmake.php"; } if (!empty($tpl) && (!empty($mini['site']['mail']) || !empty($mini['set']['mail']))) { unset($mini['skin']); $mini['skin'] = ''; $mini['skin']['date'] = $mini['date']; $mini['skin']['site'] =& $mini['site']; $mini['skin']['data'] =& $data; $result = send_mail(array('from_name' => $mini['site']['name'], 'from_mail' => !empty($mini['site']['mail']) ? $mini['site']['mail'] : $mini['set']['mail'], 'to_name' => $data['name'], 'to_mail' => $data['mail'], 'title' => skinConv($tpl[$mini['site']['template']['join']]['title'], 'str'), 'ment' => skinConv($tpl[$mini['site']['template']['join']]['ment'], 'str'))); } } //// 가입SMS 발송 if (empty($mini['member']['level_admin']) && !empty($mini['set']['use_sms']) && !empty($mini['site']['template']['join_sms'])) { include "{$mini['dir']}skin/template/sms.join.tpl.php"; if (!function_exists('skinConv')) { include "{$mini['dir']}_inc.skinmake.php"; } if (!function_exists('iiSMSSend')) { include "{$mini['dir']}_inc.sms.php"; } if (!empty($tpl) && !empty($mini['site']['cp'])) { unset($mini['skin']); $mini['skin'] = ''; $mini['skin']['date'] = $mini['date']; $mini['skin']['site'] =& $mini['site']; $mini['skin']['data'] =& $data; $result = iiSMSSend($data['cp'], $mini['site']['cp'], skinConv($tpl[$mini['site']['template']['join_sms']], 'str'), $mini['set']['lang']); } } return $data; }
$msg002 = "The registration failed.: val"; // 登録に失敗しました: val \Sop\Api::exitWithError(array("{$msg002} {$value} (: {$val_name})")); } } } // --- TBL: hwr $hwr_id = -1; $rslt = addHwr($db, $hwr_id, $hwr_val); if (!$rslt) { \Sop\Log::error(__FILE__, __LINE__, 'Failed to add hwr.'); $msg003 = "The registration failed.: hwr"; // 登録に失敗しました: hwr \Sop\Api::exitWithError(array($msg003)); } $hwr_id = getLastId($db); // --- TBL: file_hwr $rslt = addFilehwr($db, $file_id, $hwr_id); if (!$rslt) { \Sop\Log::error(__FILE__, __LINE__, 'Failed to add file_hwr.'); $msg004 = "The registration failed.: file_hwr"; // 登録に失敗しました: file_hwr \Sop\Api::exitWithError(array($msg004)); } // --- TBL: history $history_id = -1; $rslt = addHistory($db, $history_id, $pj_id, $sop_id, $tpl_id, $schema_id, $file_id, $smpl_given_no, $HISTORY_ACTION_FILE_ADD, $date, $user_id, $user_id_2, null); if (!$rslt) { \Sop\Log::error(__FILE__, __LINE__, 'Failed to add history.'); $msg005 = "The registration failed.: history"; // 登録に失敗しました: history
<?php session_start(); require_once '../../config.php'; require_once '../../model/mysql_query.php'; if (isset($_POST['password']) && isset($_POST['description'])) { $username = $_SESSION['username']; $password = $_POST['password']; $description = $_POST['description']; $id = getIdBy($username); $data = array('password' => $password, 'description' => $description, 'user_id' => $id); insert('passwords', $data); $id = getLastId('passwords'); $result = '<tr><td>' . $password . '</td><td>' . $description . '</td><td><a href="#">Delete</a>'; echo $result; } mysql_close($db);
/** * Analyze the action and determine a request. * * @return null */ public function analyzeAction() { //Overload switch ($this->petitionAction) { /** * */ case 'list': $this->createModel(); $works = $this->actualModel->getWorks(); $this->createView($this->petitionAction); $this->actualView->render($works); break; /** * */ /** * */ case 'add': if (empty($_POST)) { $this->createModel(); $clients = $this->actualModel->getClients(); $this->createView($this->petitionAction); $this->actualView->render($clients); } else { $this->createModel(); $work = new Work("", $_POST['id_client'], $_POST['work_name'], $_POST['location'], $_POST['principal']); $res = $this->actualModel->addWork($work); $lastId = getLastId("work"); $arrayFiles = $_FILES["work_image"]; if ($res && $arrayFiles) { for ($i = 0; $i < count($arrayFiles["name"]); $i++) { if ($arrayFiles["error"][$i] === 0) { if ($this->actualModel->validateWorkImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) { $this->actualModel->addWorkImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $lastId); } } } } $this->createLoadingView(); $this->actualView->render(); $this->redirect(); } break; /** * */ /** * */ case 'edit': if (empty($_POST)) { $this->createModel(); $clients = $this->actualModel->getClients(); $work = $this->actualModel->getWork($_GET["id_work"]); $this->createView($this->petitionAction); $this->actualView->render($clients, $work); } else { $this->createModel(); $work = new Work($_GET['id_work'], $_POST['id_client'], $_POST['work_name'], $_POST['location'], $_POST['principal']); $this->actualModel->editWork($work); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); } break; /** * */ /** * */ case 'delete': $this->createModel(); $this->actualModel->deleteWorkGallery($_GET["id_work"]); $this->actualModel->deleteWork($_GET['id_work']); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; /** * */ /** * */ case 'edit_gallery': $this->createModel(); $gallery = $this->actualModel->getGallery($_GET["id_work"]); $this->createView("Edit_Gallery", true); //Corregir $this->actualView->render($gallery); break; /** * */ /** * */ case 'add_gallery': $this->createModel(); $arrayFiles = $_FILES["work_image"]; if ($arrayFiles) { for ($i = 0; $i < count($arrayFiles["name"]); $i++) { if ($arrayFiles["error"][$i] === 0) { if ($this->actualModel->validateWorkImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) { $this->actualModel->addWorkImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $_GET["id_work"]); } } } } $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; /** * */ /** * */ case 'delete_gallery': $this->createModel(); $this->actualModel->deleteWorkImage($_GET["id_work_image"]); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; } }
/** * Analyze the action and determine a request. * * @return null */ public function analyzeAction() { //Overload switch ($this->petitionAction) { /** * */ case 'list': $this->createModel(); $stories = $this->actualModel->getStories(); $this->createView($this->petitionAction); $this->actualView->render($stories); break; /** * */ /** * */ case 'add': if (empty($_POST)) { $this->createView($this->petitionAction); $this->actualView->render(); } else { $this->createModel(); $story = new Story("", $_POST['title'], $_POST['body']); $res = $this->actualModel->addStory($story); $lastId = getLastId("story"); $arrayFiles = $_FILES["story_image"]; if ($res && $arrayFiles) { for ($i = 0; $i < count($arrayFiles["name"]); $i++) { if ($arrayFiles["error"][$i] === 0) { if ($this->actualModel->validateStoryImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) { $this->actualModel->addStoryImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $lastId); } } } } $this->createLoadingView(); $this->actualView->render(); $this->redirect(); } break; /** * */ /** * */ case 'edit': if (empty($_POST)) { $this->createModel(); $story = $this->actualModel->getStory($_GET["id_story"]); $this->createView($this->petitionAction); $this->actualView->render($story); } else { $this->createModel(); $story = new Story($_GET['id_story'], $_POST['title'], $_POST['body']); $this->actualModel->editStory($story); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); } break; /** * */ /** * */ case 'delete': $this->createModel(); $this->actualModel->deleteStoryGallery($_GET["id_story"]); $this->actualModel->deleteStory($_GET['id_story']); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; /** * */ /** * */ case 'edit_gallery': $this->createModel(); $gallery = $this->actualModel->getGallery($_GET["id_story"]); $this->createView("Edit_Gallery", true); //Corregir $this->actualView->render($gallery); break; /** * */ /** * */ case 'add_gallery': $this->createModel(); $arrayFiles = $_FILES["story_image"]; if ($arrayFiles) { for ($i = 0; $i < count($arrayFiles["name"]); $i++) { if ($arrayFiles["error"][$i] === 0) { if ($this->actualModel->validateStoryImage($arrayFiles["name"][$i], $arrayFiles["type"][$i])) { $this->actualModel->addStoryImage($arrayFiles["tmp_name"][$i], $arrayFiles["type"][$i], $_GET["id_story"]); } } } } $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; /** * */ /** * */ case 'delete_gallery': $this->createModel(); $this->actualModel->deleteStoryImage($_GET["id_story_image"]); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; } }
/** * 게시판 등록 * @class admin.board * @param $data: 자료 -is_check: 입력변수 체크 여부 -is_conv * @return Array 등록된 게시판 자료 */ function addBoard($data, $param = '') { global $mini; $param = param($param); def($param['is_check'], 1); //// 변수 체크 if ($param['is_check']) { checkFieldBoard($data); // 권한체크 checkAdmin("\n\t\t\t\t\tsite: {$data['site']}\n\t\t\t\t\ttype: ajax\n\t\t\t\t"); } //// 아이디 중복 체크 check($data['id'], 'type:id, name:게시판아이디'); if (!preg_match("/[^0-9]/", $data['id'])) { __error('게시판 아이디에 숫자만 입력하실 수 없습니다.'); } if (sql("SELECT COUNT(*) FROM {$mini['name']['admin']} WHERE id='{$data['id']}'")) { __error('중복된 게시판 아이디 입니다.'); } //// 기본변수 여부 체크 if (!isset($data['name'])) { __error('게시판 이름을 입력해 주세요'); } if (!isset($data['skin'])) { __error('스킨을 선택해 주세요'); } check($data['site'], 'type:num, name:그룹'); //// 기본변수 입력 if (empty($data['date'])) { $data['date'] = $mini['date']; } unset($data['mode']); unset($data['script']); //// 스키마 로드 if (!isset($mini['scheme'])) { include "{$mini['dir']}_db.php"; $mini['scheme'] = array(); $mini['scheme'] = $install_table; } //// 기본 언어셋 추가 // 버젼 정보 로드 $version = sql("SELECT VERSION()"); $version_arr = explode(".", $version); $check_version = 0; if (!empty($version_arr)) { if (!empty($version_arr[0]) && $version_arr[0] >= 5) { $check_version = 1; } if (!empty($version_arr[0]) && $version_arr[0] == 4 && !empty($version_arr[1]) && $version_arr[1] >= 1) { $check_version = 1; } } if (!empty($check_version)) { $mini['scheme']['board'][1] .= " DEFAULT CHARACTER SET utf8"; $mini['scheme']['cmt'][1] .= " DEFAULT CHARACTER SET utf8"; } //// 쿼리 sql("INSERT INTO {$mini['name']['admin']} " . query($data, 'insert')); $data['no'] = getLastId($mini['name']['admin']); $table_board = str_replace("[:table:]", $mini['name']['board'] . $data['no'], $mini['scheme']['board'][1]); $table_cmt = str_replace("[:table:]", $mini['name']['cmt'] . $data['no'], $mini['scheme']['cmt'][1]); //// 게시판 생성 쿼리 sql($table_board); sql($table_cmt); //// 로그 기록 addLog("\n\t\t\tmode: board_add\n\t\t\tfield1: {$data['no']}\n\t\t"); return $data; }
if ($conn->connect_error) { die("Connection failed: " . $conn->connect_error); } if ($value == "DELETE") { $sql = "SELECT * FROM Poczekalnia WHERE Id={$id}"; $result = $conn->query($sql); $row = $result->fetch_assoc(); unlink($row["Sciezka"]); $sql = "DELETE FROM Poczekalnia WHERE Id={$id}"; $conn->query($sql); } else { $sql = "SELECT * FROM Poczekalnia WHERE Id={$id}"; $result = $conn->query($sql); $row = $result->fetch_assoc(); if ($result->num_rows > 0) { $nextIdToMain = getLastId(); $newFileName = "main/a" . $nextIdToMain . ".php"; $neImageName = "main/a" . $nextIdToMain . ".png"; $cytat = $row['Cytat']; copy($row["Sciezka"], $neImageName); unlink($row["Sciezka"]); $neImageName = "../main/a" . $nextIdToMain . ".png"; $sql = "INSERT INTO Glowna (Id, Grafika, Cytat, Strona)\n VALUES ( NULL, '{$neImageName}', '{$cytat}', '{$newFileName}')"; $conn->query($sql); $sql = "DELETE FROM Poczekalnia WHERE Id={$id}"; $conn->query($sql); $myfile = fopen($newFileName, "w") or die("Unable to open file!"); $getTop .= file_get_contents('addedFileTop.txt'); $getBot .= file_get_contents('addedFileBottom.txt'); $txt = "<p></p>"; $txt .= $getTop . "if( \$row['Strona'] == '" . $newFileName . $getBot;
function addAnswers($answer) { $questionId = getLastId(); foreach ($answer as $a) { addAnswer($a, $questionId); } }
$razao = $_POST['fornecedor_razao']; $rua = $_POST['fornecedor_rua']; $numero = $_POST['fornecedor_numero']; $complemento = $_POST['fornecedor_complemento']; $cep = $_POST['fornecedor_cep']; $bairro = $_POST['fornecedor_bairro']; $cidade = $_POST['fornecedor_cidade']; $uf = $_POST['fornecedor_uf']; $pais = $_POST['fornecedor_pais']; $fone = $_POST['fornecedor_fone']; $email = $_POST['fornecedor_email']; $cnpj = limparCaracteres($cnpj); if (!validarEmail($email)) { exit('Email digitado inválido'); } $id = getLastId(); $fone = limparCaracteres($fone); $cep = limparCaracteres($cep); if ($stmt = $db->prepare("INSERT INTO fornecedores(forn_id, forn_cnpj, forn_razaosoc, forn_rua, forn_numero, forn_complemento, forn_cep, forn_bairro,\n forn_cidade, forn_uf, forn_pais, forn_fone, forn_email) VALUES (?, ?, ?, ?, ?, ? ,?, ? ,? ,? ,? ,? , ?)")) { $stmt->bind_param('isssissssssss', $id, $cnpj, $razao, $rua, $numero, $complemento, $cep, $bairro, $cidade, $uf, $pais, $fone, $email); if ($stmt->execute()) { echo '<script> alert("Dados cadastrados com sucesso"); window.location.href = "listar_fornecedores.php"; </script> '; } else { die('Erro: ( ' . $db->errno . ' ) ' . $db->error); } } else { printf("Erro ao preparar statement: %s\n", $db->error);
// Initialize error log $errorLogName = "get-scopus-records_errorLog_" . $dateTime . ".txt"; $errorLogFile = fopen("logs/" . $errorLogName, "a"); ini_set("log_errors", 1); ini_set("error_log", $errorLogName); // Record start of process $eventDescription = "Pull NEW publications for all current faculty, verify EXISTING records are valid"; $eventStart = date("Y-m-d H:i:s"); // Specify end date -- last day of previous closing quarter $endDate = date("Y-m-d", strtotime("2015-06-30")); $startProcess = "INSERT INTO events_master (eventType,eventDescription,eventStart,date_threshold,processLogFile,errorLogFile) VALUES('publication_data_full_update','{$eventDescription}','{$eventStart}','{$endDate}','{$outputFileName}','{$errorLogName}')"; if (!runQuery($con, $startProcess)) { printFile($outputFile, "MySQL Error: " . mysqli_error($con) . "\n"); printFile($errorLogFile, "MySQL Error: " . mysqli_error($con) . "\n"); } $processNumber = getLastId($con); printFile($outputFile, "Process start: " . $eventStart . "\n"); // Create an array of faculty Scopus IDs to search, indexed by internetID $facultyIdArray = array(); $facultysql = "SELECT internetID FROM faculty_data WHERE status_current = 1"; $result = runQuery($con, $facultysql); while ($row = mysqli_fetch_array($result)) { $thisInternetId = $row['internetID']; $facultyIdArray[$thisInternetId] = array(); // Exclude NULLs for the lookup - they are present in the table to ensure faculty display correctly on the web $scopusid_sql = "SELECT idValue FROM faculty_identifiers WHERE idType = 'scopus_id' AND internetID = '{$thisInternetId}' AND idValue IS NOT NULL AND idValue <> ''"; $subresult = runQuery($con, $scopusid_sql); while ($subrow = mysqli_fetch_assoc($subresult)) { $facultyIdArray[$thisInternetId][] = $subrow['idValue']; } mysqli_free_result($subresult);
echo "<tr>"; // Colonna ID scontrino echo "<td class=\"FacetDataTD\" align=\"center\"><a class=\"btn btn-xs btn-default btn-edit\" href=\"admin_scontr.php?Update&id_tes=".$row['id_tes']."\"><i class=\"glyphicon glyphicon-edit\"></i> ".$row["id_tes"]."</a></td>"; // Colonna data emissione echo "<td class=\"FacetDataTD\" align=\"center\">".gaz_format_date($row['datemi'])."</td>"; // Colonna numero documento echo "<td class=\"FacetDataTD\" align=\"center\">".$row["numdoc"]." </td>"; // Colonna fattura echo "<td class=\"FacetDataTD\" align=\"center\">$invoice</td>"; echo "<td class=\"FacetDataTD\" align=\"center\">".$status." </td>"; echo '<td class="FacetDataTD" align="right" style="font-weight=bolt;">'; echo gaz_format_number($tot_tes); echo "\t </td>\n"; // Colonna Elimina if ($row["id_con"] == 0) { if (getLastId($row['datemi'],$row['seziva']) == $row["id_tes"]) { echo "<td class=\"FacetDataTD\" align=\"center\"><a class=\"btn btn-xs btn-default btn-elimina\" href=\"delete_docven.php?id_tes=".$row['id_tes']."\"><i class=\"glyphicon glyphicon-remove\"></i></a></td>"; } else { echo "<td class=\"FacetDataTD\" align=\"center\"><button class=\"btn btn-xs btn-default btn-elimina disabled\"><i class=\"glyphicon glyphicon-remove\"></i></button></td>"; } } else { echo "<td class=\"FacetDataTD\" align=\"center\"><button class=\"btn btn-xs btn-default btn-elimina disabled\"><i class=\"glyphicon glyphicon-remove\"></i></button></td>"; } // Colonna invia a ECR echo "<td class=\"FacetDataTD\" align=\"center\"><a class=\"btn btn-xs btn-primary btn-ecr\" href=\"resend_to_ecr.php?id_tes=".$row['id_tes']."\" >".$script_transl['send']."</a>"; echo "</tr>\n"; } ?> </form> </table> </body>
/** * Analyze the action and determine a request. * * @return null */ public function analyzeAction() { //Overload switch ($this->petitionAction) { /** * */ case 'list': $this->createModel(); $posts = $this->actualModel->getPosts(); $this->createView($this->petitionAction); $this->actualView->render($posts); break; /** * */ /** * */ case 'add': if (empty($_POST)) { $this->createView($this->petitionAction); $this->actualView->render(); } else { $this->createModel(); $post = new Post("", $_POST['title'], $_POST['headline'], $_POST['date'], $_POST['body'], $_POST['source'], "", "", $_POST['category']); $res = $this->actualModel->addPost($post); $lastId = getLastId("post"); $arrayFiles = $_FILES["post_image"]; if ($res && $arrayFiles) { if ($arrayFiles["error"] === 0) { if ($this->actualModel->validatePostImage($arrayFiles["name"], $arrayFiles["type"])) { $this->actualModel->addPostImage($arrayFiles["tmp_name"], $arrayFiles["type"], $lastId); } } } $this->createLoadingView(); $this->actualView->render(); $this->redirect(); } break; /** * */ /** * */ case 'edit': if (empty($_POST)) { $this->createModel(); $post = $this->actualModel->getPost($_GET["id_post"]); $this->createView($this->petitionAction); $this->actualView->render($post); } else { $this->createModel(); $post = new Post($_GET['id_post'], $_POST['title'], $_POST['headline'], $_POST['date'], $_POST['body'], $_POST['source'], "", "", $_POST['category']); $this->actualModel->editPost($post); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); } break; /** * */ /** * */ case 'delete': $this->createModel(); $this->actualModel->deletePost($_GET['id_post']); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; /** * */ /** * */ case 'edit_image': $this->createModel(); $post = $this->actualModel->getPost($_GET["id_post"]); $this->createView($this->petitionAction, true); $this->actualView->render($post); break; /** * */ /** * */ case 'add_image': $this->createModel(); $arrayFiles = $_FILES["post_image"]; if ($arrayFiles["error"] === 0) { if ($this->actualModel->validatePostImage($arrayFiles["name"], $arrayFiles["type"])) { $this->actualModel->addPostImage($arrayFiles["tmp_name"], $arrayFiles["type"], $_GET["id_post"]); } } $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; /** * */ /** * */ case 'delete_image': $this->createModel(); $this->actualModel->deletePostImage($_GET["id_post"]); $this->createLoadingView(); $this->actualView->render(); $this->redirect(); break; } }
<?php require 'config/initialize.php'; mustBeGuest(); if (isset($_POST['authForm'])) { $username = sanitizeString($_POST['username'], $connection); $fullName = sanitizeString($_POST['fullName'], $connection); $password = sanitizeString($_POST['password'], $connection); if ($username == "" || $fullName == "" || $password == "" || !ctype_alnum($username)) { header("location: register.php"); } else { $user = queryDatabase("SELECT username FROM user WHERE username='******'", $connection); if ($user->num_rows) { header("location: register.php"); } else { // constString + newUserId + password $newUserId = getLastId($connection) + 1; $password = generatePassword($newUserId, $password); $password = password_hash($password, PASSWORD_BCRYPT); registerUser($username, $fullName, $password, $connection); header('Location: authenticate.php'); } } } view('auth/register');