function upload($file_id, $folder = "", $ftype, $title, $date, $id, $assoctable = "", $colname = "", $uploader = "") { global $dbh, $uploadErrors; if ($_FILES[$file_id]["error"] > 0) { $result = $uploadErrors[$_FILES[$file_id]["error"]]; return array('', $result); } if (!$_FILES[$file_id]['name']) { return array('', 'No file specified'); } if (!$_FILES[$file_id]['size']) { return array('', 'File is zero length'); } if (!is_numeric($ftype)) { return array('', "No type specified ({$ftype})"); } if (!strlen($title)) { return array('', 'No title specified'); } if (!strlen($date)) { return array('', 'No date specified'); } if (!strlen($assoctable)) { return array('', 'No table specified'); } if (!strlen($colname)) { return array('', 'No colname specified'); } if (!strlen($folder)) { return array('', 'No folder specified'); } $ftypestr = ftype2str($ftype, $dbh); $path_parts = pathinfo($_FILES[$file_id]["name"]); $fileext = $path_parts['extension']; $unique = substr(uniqid(), -4, 4); $filefn = "{$ftypestr}-" . validfn($title) . "-{$unique}.{$fileext}"; $filefn = strtolower($filefn); $uploadfile = $folder . $filefn; $result = ''; //Move the file from the stored location to the new location if (!move_uploaded_file($_FILES[$file_id]['tmp_name'], $uploadfile)) { $result = "Cannot upload the file '" . $_FILES[$file_id]['name'] . "'"; if (!file_exists($folder)) { $result .= " : Folder doesn't exist."; } elseif (!is_writable($folder)) { $result .= " : Folder not writable."; } elseif (!is_writable($uploadfile)) { $result .= " : File not writable."; } $filefn = ''; return array($filefn, $result); } //else file was written //chmod($uploadfile,0777);//Make it universally writable. //add file to files table $datesec = ymd2sec($date); $sql = "INSERT into files (type,title,date,fname,uploader,uploaddate) VALUES ({$ftype},'{$title}','{$datesec}','{$filefn}','{$uploader}','" . time() . "')"; db_exec($dbh, $sql); $lastid = $dbh->lastInsertId(); //make association $sql = "INSERT into {$assoctable} ({$colname},fileid) VALUES ({$id},{$lastid})"; db_exec($dbh, $sql); return array($filefn, $result); }
$imfn = ""; } else { $imfn = $_POST['imfn']; } /* csv field number to name mapping */ $fno2name = array('label', 'location', 'area', 'owner', 'status', 'dnsname', 'ipv4', 'comments', 'manufacturer', 'model', 'sn', 'itemtype', 'function', 'cpu', 'ram', 'hd'); $name2fno = array_flip($fno2name); $nfields = count($fno2name); //nextstep: //0: show import form //1: import file and if not successfull go to 0 else show imported file and fields, and candidate db objects //2: DB insert //echo "<p>NEXT1=$nextstep<br>"; if ($nextstep == 1 && strlen($_FILES['file']['name']) > 2) { //insert file $filefn = strtolower("import-" . $_COOKIE["itdbuser"] . "-" . validfn($_FILES['file']['name'])); $uploadedfile = "{$tmpdir}/" . $filefn; $result = ''; //Move the file from the stored location to the new location if (!move_uploaded_file($_FILES['file']['tmp_name'], $uploadedfile)) { $result = "Cannot upload the file '" . $_FILES['file']['name'] . "'"; if (!file_exists($uploaddir)) { $result .= " : Folder doesn't exist."; } elseif (!is_writable($uploaddir)) { $result .= " : Folder not writable."; } elseif (!is_writable($uploadedfile)) { $result .= " : File not writable."; } $filefn = ''; echo "<br><b>ERROR: {$result}</b><br>"; $imfn = "";
echo "<br><b>No file uploaded.</b><br>"; } } else { $sql = "UPDATE locations set name='{$name}', floor='{$floor}' " . " WHERE id={$id}"; db_exec($dbh, $sql); if (strlen($_FILES['file']['name']) > 2) { //update file $sql = "SELECT * from locations where id={$id}"; $sth = db_execute($dbh, $sql); $rf = $sth->fetch(PDO::FETCH_ASSOC); $oldfname = $rf['floorplanfn']; $path_parts = pathinfo($_FILES['file']["name"]); $fileext = $path_parts['extension']; $ftypestr = ftype2str($_POST['type'], $dbh); $unique = substr(uniqid(), -4, 4); $filefn = strtolower("floorplan-" . validfn($name) . "-{$unique}.{$fileext}"); $uploadfile = $uploaddir . $filefn; $result = ''; //Move the file from the stored location to the new location if (!move_uploaded_file($_FILES['file']['tmp_name'], $uploadfile)) { $result = "Cannot upload the file '" . $_FILES['file']['name'] . "'"; if (!file_exists($uploaddir)) { $result .= " : Folder doesn't exist."; } elseif (!is_writable($uploaddir)) { $result .= " : Folder not writable."; } elseif (!is_writable($uploadfile)) { $result .= " : File not writable."; } $filefn = ''; echo "<br><b>ERROR: {$result}</b><br>"; } else {
/* Spiros Ioannou 2009-2010 , sivann _at_ gmail.com */ if (isset($_POST['dosave']) && $_POST['dosave'] == 1) { //if we came from a post (save), save translation $lang = $_POST['lang']; $x = array(); for ($i = 0; $i < $_POST['trcount']; $i++) { $n1 = "tr1_{$i}"; $n2 = "tr2_{$i}"; $x[] = html_entity_decode($_POST[$n1], ENT_QUOTES, 'UTF-8') . "#" . html_entity_decode($_POST[$n2], ENT_QUOTES, 'UTF-8') . "\n"; } if (FALSE === file_put_contents("translations/" . $lang . ".txt", $x)) { echo "Error writing translations/" . $lang . ".txt"; } } elseif (isset($_POST['newlang']) && strlen($_POST['newlang'])) { $newfile = $_POST['newlang'] . ".txt"; $newfile = validfn($newfile); if (file_exists("translations/{$newfile}")) { echo "<b>{$newfile} already exists, not overwritten!</b>"; } elseif (!copy("translations/new.txt", "translations/{$newfile}")) { echo "<br>failed to copy {$newfile} to {$scriptdir}/translations/{$newfile}\n"; } else { echo "<b><br>copied {$newfile} to {$scriptdir}/translations/{$newfile}\n</b>"; } } ///////////////////////////// //// display data $sql = "SELECT * FROM settings"; $sth = $dbh->query($sql); $settings = $sth->fetchAll(PDO::FETCH_ASSOC); $settings = $settings[0]; if (isset($_POST['lang'])) {
<?php exit; //rename all license files chdir(".."); require "init.php"; echo "<pre>"; /* Spiros Ioannou 2009 , sivann _at_ gmail.com */ $sql = "SELECT * from software "; $sth = db_execute($dbh, $sql); while ($r = $sth->fetch(PDO::FETCH_ASSOC)) { if (!strlen($r['slicensefile'])) { continue; } //if no file associated continue $path_parts = pathinfo($r["slicensefile"]); $ext = $path_parts['extension']; $dymd = strftime("%Y%m%d", $r['purchdate']); //new filename $slicensefilefn = "lic-" . validfn($r["scompany"]) . "-" . validfn($r["stitle"]) . "-" . validfn($r["sversion"]) . "-{$dymd}-" . $r['id'] . ".{$ext}"; $slicensefilefn = strtolower($slicensefilefn); echo "will move '{$r['slicensefile']}' to '{$slicensefilefn}'\n"; $ret = rename($uploaddir . $r['slicensefile'], $uploaddir . $slicensefilefn); if ($ret) { $sql = "UPDATE software set slicensefile='{$slicensefilefn}' WHERE id='{$r['id']}'"; db_exec($dbh, $sql); } else { echo "<b>ERROR moving </b><br>\n"; } }
<?php exit; //rename all invoice files chdir(".."); require "init.php"; echo "<pre>"; /* Spiros Ioannou 2009 , sivann _at_ gmail.com */ $sql = "SELECT * from invoices "; $sth = db_execute($dbh, $sql); while ($r = $sth->fetch(PDO::FETCH_ASSOC)) { if (!strlen($r['fname'])) { continue; } //if no file associated continue $path_parts = pathinfo($r["fname"]); $invoiceext = $path_parts['extension']; $dymd = strftime("%Y%m%d", $r['date']); //new filename $invoicefn = "inv-" . validfn($r["vendor"]) . "-" . validfn($r["number"]) . "-{$dymd}-" . $r['id'] . ".{$invoiceext}"; $invoicefn = strtolower($invoicefn); echo "will move {$r['fname']} to {$invoicefn}\n"; $ret = rename($uploaddir . $r['fname'], $uploaddir . $invoicefn); if ($ret) { $sql = "UPDATE invoices set fname='{$invoicefn}' WHERE id='{$r['id']}'"; db_exec($dbh, $sql); } else { echo "<b>ERROR moving </b><br>\n"; } }
exit; } } else { $sql = "UPDATE files set title='{$title}', type='{$type}', uploader='{$userdata[0]['username']}', uploaddate='" . time() . "', " . " date='{$date}' WHERE id={$id}"; db_exec($dbh, $sql); if (strlen($_FILES['file']['name']) > 2) { //update file $sql = "SELECT * from files where id={$id}"; $sth = db_execute($dbh, $sql); $r = $sth->fetch(PDO::FETCH_ASSOC); $oldfname = $r['fname']; $path_parts = pathinfo($_FILES['file']["name"]); $fileext = $path_parts['extension']; $ftypestr = ftype2str($_POST['type'], $dbh); $unique = substr(uniqid(), -4, 4); $filefn = strtolower("{$ftypestr}-" . validfn($title) . "-{$unique}.{$fileext}"); $uploadfile = $uploaddir . $filefn; $result = ''; //Move the file from the stored location to the new location if (!move_uploaded_file($_FILES['file']['tmp_name'], $uploadfile)) { $result = "Cannot upload the file '" . $_FILES['file']['name'] . "'"; if (!file_exists($uploaddir)) { $result .= " : Folder doesn't exist."; } elseif (!is_writable($uploaddir)) { $result .= " : Folder not writable."; } elseif (!is_writable($uploadfile)) { $result .= " : File not writable."; } $filefn = ''; echo "<br><b>ERROR: {$result}</b><br>"; } else {