exit;
}
$model->updateUser($email, $full_name, $address, $city, $phone, $handphone);
echo "ok";
$user_id = $_SESSION['user']['id'];
$_SESSION['user'] = $model->getDetailUser($user_id);
exit;
}
}
if ($action == "login") {
$username = $_POST['username_login'];
$password = $_POST['password_login'];
$model->login($username, $password);
}
if ($action == "changepass") {
$old_pass = $model->processData($_POST['old_pass']);
$password = $model->processData($_POST['password']);
$password2 = $model->processData($_POST['password2']);
$old_pass = md5($old_pass);
$user_id = $_SESSION['user']['id'];
if ($model->checkOldPass($old_pass, $user_id) == true) {
if ($password == $password2) {
$password = md5($password);
$model->changePass($password, $user_id);
session_destroy();
echo "ok";
}
} else {
echo "errorpass";
}
exit;
<?php
require_once "../backend/model/Frontend.php";
$model = new Fontend();
$arrMod = array("coupon");
$detailC = $model->getDetail('coupon', 1);
$mod = isset($_POST['mod']) ? $model->processData($_POST['mod']) : "";
if (in_array($mod, $arrMod)) {
if ($mod == "coupon") {
$arrData['name'] = $hoten = isset($_POST['snp_name']) ? $model->processData($_POST['snp_name']) : "";
$arrData['email'] = $email = isset($_POST['snp_email']) ? $model->processData($_POST['snp_email']) : "";
$arrData['phone'] = $dienthoai = isset($_POST['snp_dienthoai']) ? $model->processData($_POST['snp_dienthoai']) : "";
$arrData['code'] = $detailC['code'];
$arrData['created_at'] = time();
$model->insert('coupon_data', $arrData);
setcookie('snp_snppopup', 1, time() + 86400 * 30, "/");
if ($hoten != '' && $email != '' && $dienthoai != '') {
$tieudethu = "Vinawatch.vn :: mã giảm giá";
$noidungthu = 'Vinawatch cảm ơn quý khách đã quan tâm tới chương trình khuyến mãi của chúng tôi.<br><br>';
$noidungthu .= 'Vinawatch xin gửi đến quý khách mã giảm giá : ' . $detailC['code'] . '<br>';
$model->smtpmailer($email, '*****@*****.**', 'vinawatch.vn', $tieudethu, $noidungthu);
echo "success";
}
}
} else {
echo "Stop here!";
exit;
}
<?php
session_start();
require_once "../backend/model/Frontend.php";
$model = new Fontend();
$arrParam['name'] = $model->processData($_POST['full_name']);
$arrParam['mobile'] = $model->processData($_POST['phone']);
$arrParam['email'] = $model->processData($_POST['email']);
$arrParam['title'] = $model->processData($_POST['title']);
$arrParam['content'] = $model->processData($_POST['content']);
$arrParam['status'] = 1;
$arrParam['type'] = 3;
$arrParam['creation_time'] = time();
$arrParam['update_time'] = time();
$column = $values = "";
foreach ($arrParam as $key => $value) {
$column .= "{$key}" . ",";
$values .= "'" . $value . "'" . ",";
}
$column = rtrim($column, ",");
$values = rtrim($values, ",");
$sql = "INSERT INTO sendcontent(" . $column . ") VALUES (" . $values . ")";
mysql_query($sql) or die(mysql_error());
$id = mysql_insert_id();
if ($id > 0) {
echo "success";
} else {
echo "error";
}
