<?php // error_reporting(E_ALL ^ E_NOTICE); ini_set('display_errors', '0'); require_once '../../../config.inc'; require_once '../../../include/share.php'; $userid = $_REQUEST["userid"]; $tel = null; if ($userid != null && $userid != "") { $conn = connectDB(); // get current userid from macid $sql = "select b.tel from tbl_user a, tbl_agent_emp b where a.userid='" . toStringForSql($userid) . "' and a.delete_flag=0 and b.delete_flag=0 and a.agentempid=b.id"; $tel = executeScalar($conn, $sql); } $back = $_REQUEST["back"]; ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3c.org/TR/1999/REC-html401-19991224/loose.dtd"> <!-- saved from url=(0044)http://www.skylive365.com/ --> <HTML xmlns="http://www.w3.org/1999/xhtml" oncontextmenu="javascript: return false;"> <HEAD> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="pragma" content="no-cache"> <meta http-equiv="cache-control" content="no-cache"> <META content="MSHTML 6.00.6000.16825" name="GENERATOR"> <STYLE type="text/css"> html { overflow: hidden; } BODY { font-family:helvetica,tahoma,verdana,sans-serif, simsun; FONT-SIZE: 30px;
$balance = executeScalar($db, $sql); $sql = "\r\n\t\t\t\t\tselect \r\n\t\t\t\t\t\tid, \r\n\t\t\t\t\t\tserviceid,\r\n\t\t\t\t\t\tservicename as service, unitprice, unittype, \r\n\t\t\t\t\t\tdate_format(start_date, '%Y-%m-%d') as start_date, date_format(end_date, '%Y-%m-%d') as end_date,\r\n\t\t\t\t\t\tcharge, payment, balance, memo,\r\n\t\t\t\t\t\tupdate_id, update_date\r\n\t\t\t\t\tfrom tbl_user_status where delete_flag=0 and userid=" . $userid . " order by update_date desc\r\n\t\t\t\t"; $result = querySQL($db, $sql); $data = array(); while ($row = mysql_fetch_assoc($result)) { $data[] = $row; } responseData(true, null, $data, array('balance' => $balance)); break; case 'userstatus_create': $userid = getQueryData('userid'); $sql = "select id from tbl_user a where a.userid= '" . $userid . "'"; $userid = executeScalar($db, $sql); $data = getQueryData('data'); $data = json_decode($data, true); $servicename = executeScalar($db, "select servicename from tbl_service where delete_flag=0 and id=" . correctSQL($data["service"])); $sql = "insert into tbl_user_status (userid, serviceid, servicename, unitprice, unittype, start_date, end_date, charge, balance, payment, memo, create_id, create_date, update_id, update_date) values (" . correctSQL($userid) . "," . correctSQL($data["service"]) . "," . correctSQL($servicename) . "," . correctSQL($data["unitprice"], 1) . "," . correctSQL($data["unittype"], 1) . "," . correctSQL(substr($data["start_date"], 0, 10)) . "," . correctSQL(substr($data["end_date"], 0, 10)) . "," . correctSQL($data["charge"], 1) . "," . correctSQL($data["balance"], 1) . "," . correctSQL($data["payment"], 1) . "," . correctSQL($data["memo"]) . "," . correctSQL($login_id) . "," . "now() ," . correctSQL($login_id) . "," . "now());"; executeSQL($db, $sql); responseData(true, null); break; case 'userstatus_update': $data = getQueryData('data'); $data = json_decode($data, true); $return = array(); $sql = "update tbl_user_status set memo=" . correctSQL($data["memo"]) . " where delete_flag=0 and id=" . correctSQL($data["id"]); executeSQL($db, $sql); responseData(true, null); break; case 'viewhistory_list': $userid = getQueryData('userid'); $sql = "select b.name as channelname, a.start_time, a.end_time from tbl_user_history a, tbl_channel b\r\n\t\t\t\t\t\t\twhere a.userid='" . $userid . "' and a.channelid = b.id and a.delete_flag=0\r\n\t\t\t\t\t\t\torder by start_time desc limit 100";
} */ $start = getQueryData('start'); $limit = getQueryData('limit'); if ($start != null && $limit != null) { $sql .= " limit " . $limit; $sql .= " offset " . $start; } else { $sql .= " limit " . PAGE_COUNT . " offset 0"; } $result = querySQL($db, $sql); $data = array(); while ($row = mysql_fetch_assoc($result)) { $data[] = $row; } $totalCount = executeScalar($db, "select count(*) from tbl_channel_program where delete_flag=0 and channelid=" . correctSQL($channelid)); responseData(true, null, $data, array('totalCount' => $totalCount)); break; case 'channel_program_create': $channelid = getQueryData('channelid'); $data = getQueryData('data'); $data = json_decode($data, true); $return = array(); $sql = "insert into tbl_channel_program (channelid, title, contents, program_time, create_id, create_date, update_id, update_date) values (" . correctSQL($channelid) . "," . correctSQL($data["title"]) . "," . correctSQL($data["contents"]) . "," . "concat(date_format(" . correctSQL($data["pdate"]) . ", '%Y-%m-%d '), " . correctSQL($data["ptime"]) . ")," . correctSQL($login_id) . "," . "now() ," . correctSQL($login_id) . "," . "now()" . ");"; executeSQL($db, $sql); $result = querySQL($db, "select * from tbl_channel_program where id = (SELECT max(id) from tbl_channel_program);"); while ($row = mysql_fetch_assoc($result)) { $return[] = $row; break; } responseData(true, null, $return);
while ($row = mysql_fetch_assoc($result)) { $data[] = $row; } responseData(true, null, $data, $params); break; case 'channel': $x_type = getQueryData('type'); $x_pos = getQueryData('pos'); $params = array(); if ($x_type == 'date') { $current = executeScalar($db, "select date_format(date_add(now(), INTERVAL " . $x_pos . " DAY), '%Y-%m-%d')"); $sql = "\r\n\t\t\t\t\t\tselect \r\n\t\t\t\t\t\t\ta.name as x, \r\n\t\t\t\t\t\t\tcoalesce(floor(sum(timestampdiff(second, \r\n\t\t\t\t\t\t\tcase when b.start_time < '" . $current . "' then '" . $current . "' else b.start_time end, \r\n\t\t\t\t\t\t\tcase when b.end_time > date_add('" . $current . "', INTERVAL 1 DAY) then date_add('" . $current . "', INTERVAL 1 DAY) else b.end_time end\r\n\t\t\t\t\t\t\t)/60)), 0) as y\r\n\t\t\t\t\t\tfrom tbl_channel a left outer join tbl_user_history b\r\n\t\t\t\t\t\ton b.delete_flag=0 and b.end_time is not null\r\n\t\t\t\t\t\tand date_format(b.start_time, '%Y-%m-%d') <= '" . $current . "' and\r\n\t\t\t\t\t\tdate_format(b.end_time, '%Y-%m-%d') >= '" . $current . "'\r\n\t\t\t\t\t\tand a.id=b.channelid\r\n\t\t\t\t\t\twhere a.delete_flag=0\r\n\t\t\t\t\t\tgroup by a.channelid\r\n\t\t\t\t\t\torder by a.name\r\n\t\t\t\t\t"; $params["current"] = $current; } else { if ($x_type == 'month') { $current = executeScalar($db, "select date_format(date_add(now(), INTERVAL " . $x_pos . " MONTH), '%Y-%m')"); $sql = "\r\n\t\t\t\t\t\tselect \r\n\t\t\t\t\t\t\ta.name as x, \r\n\t\t\t\t\t\t\tcoalesce(floor(sum(timestampdiff(second, \r\n\t\t\t\t\t\t\tcase when b.start_time < '" . $current . "-1' then '" . $current . "-1' else b.start_time end, \r\n\t\t\t\t\t\t\tcase when b.end_time > date_add('" . $current . "-1', INTERVAL 1 MONTH) then date_add('" . $current . "-1', INTERVAL 1 MONTH) else b.end_time end\r\n\t\t\t\t\t\t\t)/60)), 0) as y\r\n\t\t\t\t\t\tfrom tbl_channel a left outer join tbl_user_history b\r\n\t\t\t\t\t\ton b.delete_flag=0 and b.end_time is not null\r\n\t\t\t\t\t\tand date_format(b.start_time, '%Y-%m') <= '" . $current . "' and\r\n\t\t\t\t\t\tdate_format(b.end_time, '%Y-%m') >= '" . $current . "'\r\n\t\t\t\t\t\tand a.id=b.channelid\r\n\t\t\t\t\t\twhere a.delete_flag=0\r\n\t\t\t\t\t\tgroup by a.channelid\r\n\t\t\t\t\t\torder by a.name\r\n\t\t\t\t\t"; $params["current"] = $current; } } $result = querySQL($db, $sql); $data = array(); while ($row = mysql_fetch_assoc($result)) { $data[] = $row; } responseData(true, null, $data, $params); break; default: responseData(false, 'invalid function'); break; }
<h3 class="konten-filter-title">Layanan</h3> <hr></hr> <div class="col-md-12"> <table class="table table-striped"> <thead> <th>Invoice No.</th> <th>Due Date</th> <th>Total</th> <th>Status</th> <th>Details</th> </thead> <tbody> <?php while ($row = mysqli_fetch_assoc($result)) { $total = executeScalar("select sum(quantity * price) from transaksi_det \n\t\t\t\t\twhere transaksi_ID='" . $row["transaksi_ID"] . "'\n\t\t\t\t\tgroup by transaksi_ID"); $status = ''; if ($row["transaksi_approve"] == null and $row["transaksi_close"] == null) { $status = 'pending'; } elseif ($row["transaksi_approve"] == null and $row["transaksi_close"] != null) { $status = '<font color="red">cancel</font>'; } elseif ($row["transaksi_approve"] != null and $row["transaksi_close"] == null) { $status = '<font color="blue">process</font>'; } else { $status = '<font color="green">finish</font>'; } echo ' <tr> <td>' . $row["transaksi_ID"] . '</td> <td>' . $row["transaksi_open"] . '</td> <td> Rp ' . number_format($total, 0, "", ".") . '</td>
$r = mysqli_fetch_row($rs); mysqli_free_result($rs); return $r[0]; } return $def; } $member = $_SESSION['member']['member_username']; $sql = "INSERT INTO transaksi(transaksi_ID, transaksi_open, member_member_username)\r\n\t\t\tVALUES(null,now(),'" . $member . "')"; $result = mysqli_query($conn, $sql); if (!$result) { echo "Error!!!!" . mysqli_error($conn); } else { $tid = executeScalar("select max(transaksi_ID) from transaksi where member_member_username='******'"); $x = 1; foreach ($_SESSION["transaksi"] as $cart) { $tmp_image = $_FILES['file' . $x]['tmp_name']; $product_image_content = mysqli_real_escape_string($conn, file_get_contents($tmp_image)) or die("Error: cannot read file"); $id = $cart['service_id']; $size = $cart['service_size']; $price = executeScalar("select service_price from service where service_ID='" . $id . "' and service_size='" . $size . "'"); $qty = $cart["service_qty"]; $query = "insert into transaksi_det(transaksi_det_ID, transaksi_ID, service_ID, size, file_print, quantity, price)\r\n\t\t\tvalues(null, '" . $tid . "', '" . $id . "', '" . $size . "', '" . $product_image_content . "', '" . $qty . "', '" . $price . "' )"; $result = mysqli_query($conn, $query) or die(mysqli_error($conn)); $cart++; $x++; } } unset($_SESSION['transaksi']); mysqli_close($conn); header("location:../index.php"); //header("location:../checkout.php");
<?php require_once '../config.inc'; require_once '../include/share.php'; $id = $_REQUEST["id"]; $old = $_REQUEST["old"]; $new = $_REQUEST["new"]; $db = connectDB(); // check user id / pwd $sql = "select count(*) from tbl_user where delete_flag=0 and userid='" . toStringForSql($id) . "' and password='******'"; $valid = executeScalar($db, $sql); if ($valid == 0) { die("invalid user"); } $sql = "update tbl_user set password='******' where delete_flag=0 and userid='" . toStringForSql($id) . "'"; $valid = executeSQL($db, $sql); if ($valid != 1) { die("error"); } die("ok");
$sql = "update tbl_user_status set memo=" . correctSQL($data["memo"]) . " where delete_flag=0 and id=" . correctSQL($data["id"]); $logger->debug(preg_replace('/\\s+/', ' ', $sql)); executeSQL($db, $sql); responseData2(true, null); break; case 'usermail_create': try { $userid = getQueryData('userid'); $email = getQueryData('email'); $serviceid = getQueryData('serviceid'); $period = getQueryData('period'); $money = getQueryData('money'); $content = getQueryData('content'); $sql = "select password from tbl_user where userid=" . correctSQL($userid) . " and delete_flag=0"; $logger->debug(preg_replace('/\\s+/', ' ', $sql)); $password = executeScalar($db, $sql); $msg = ' お客様へ<br><br> この度は、SKYLIVE365サービスをご利用頂き誠に有難う御座いました。<br> ご購入頂いたID及び明細は下記の通りです。<br> ID:<font color="red">' . 'PP' . $userid . '</font><br> PW:<font color="red">' . $password . '</font><br> 注:パスワードは初回ログイン後、お客様自身でご自由に変更可能です。<br> 有効期限:<font color="red">' . $period . '</font><br> 注:有効期限は初回ログイン時点からカウントさせて頂きます。<br> (注:有効期限は購入日からカウントさせて頂きます。)<br> 請求料金+Paypalの手数料:<font color="red">' . $money . '円</font><br> 何か不明な点御座いましたら、総合アフターサポートまでご連絡ください。<br> アフターサポート:support@skylive365.com<br> SKYLIVE365<br> HP:www.skylive365.com<br><br>
$data = array(); while ($row = mysql_fetch_assoc($result)) { $data[] = $row; } responseData(true, null, $data); break; case 'deletechannel': $serviceid = getQueryData('serviceid'); $channelid = getQueryData('channelid'); $sql = "update tbl_service_channel set delete_flag=1, update_id=" . correctSQL($login_id) . ", update_date=now() where serviceid='" . $serviceid . "' and channelid='" . $channelid . "' and delete_flag=0"; executeSQL($db, $sql); responseData(true, null); break; case 'addchannel': $serviceid = getQueryData('serviceid'); $channelid = getQueryData('channelid'); $sql = "select count(*) from tbl_service_channel where delete_flag=0 and serviceid='" . $serviceid . "' and channelid='" . $channelid . "'"; $cnt = executeScalar($db, $sql); if ($cnt == 0) { $sql = "insert into tbl_service_channel (serviceid, channelid, create_id, create_date, update_id, update_date) \r\n\t\t\t\t\t\t\t\tvalues ('" . $serviceid . "', '" . $channelid . "', " . correctSQL($login_id) . ", now(), " . correctSQL($login_id) . ", now());"; executeSQL($db, $sql); } responseData(true, null); break; default: responseData(false, 'invalid function'); break; } } catch (Exception $e) { responseData(false, $e->getMessage()); }
<?php require_once '../include/share.php'; error_reporting(E_ALL); $logger = Logger::getLogger('clear_db_batch.php'); $logger->debug("clear_db_batch."); // DB连接 $mysqli = connectDB(); $sql = "select DATE_SUB(CURDATE(), INTERVAL 7 DAY)"; $logger->debug(preg_replace('/\\s+/', ' ', $sql)); $before_day = executeScalar($mysqli, $sql); //返回日期 $logger->debug("before_day:" . $before_day); // 清理观看履历 $sql = "delete from tbl_user_history where update_date < '{$before_day}'"; $logger->debug(preg_replace('/\\s+/', ' ', $sql)); $count = executeSQL($mysqli, $sql); $logger->debug("tbl_user_history:" . $count); // 清理delete_flag $sql = "delete from tbl_user where delete_flag = 1 and update_date < '{$before_day}'"; $logger->debug(preg_replace('/\\s+/', ' ', $sql)); $count = executeSQL($mysqli, $sql); $logger->debug("tbl_user:"******"delete from tbl_user_status where delete_flag=1 and update_date < '{$before_day}'"; $logger->debug(preg_replace('/\\s+/', ' ', $sql)); $count = executeSQL($mysqli, $sql); $logger->debug("tbl_user_status:" . $count); $sql = "delete from tbl_user_macid where delete_flag=1 and update_date < '{$before_day}'"; $logger->debug(preg_replace('/\\s+/', ' ', $sql)); $count = executeSQL($mysqli, $sql); $logger->debug("tbl_user_macid:" . $count);
<table width="100%" border=1 frame=hsides rules=rows> <thead> <th><font color="red">Name</font></th> <th><font color="red">Size</font></th> <th><font color="red">Quantity</font></th> <th><font color="red">Price</font></th> <th><font color="red">SubTotal</font></th> </thead> <tbody> <?php include "../handler/connection_handler.php"; $queryx = "SELECT service_id, size, quantity, price\n\t\tFROM transaksi_det\n\t\tWHERE transaksi_ID = " . $invoice . ""; $result = mysqli_query($conn, $queryx); $total = 0; while ($row = mysqli_fetch_array($result)) { $snama = executeScalar("SELECT service_name from service_det where service_id='" . $row["service_id"] . "'"); echo ' <tr> <td>' . $snama . '</td> <td>' . $row["size"] . '</td> <td>' . $row["quantity"] . '</td> <td>Rp ' . number_format($row["price"], 0, "", ".") . '</td> <td>Rp ' . number_format($row["quantity"] * $row["price"], 0, "", ".") . '</td> </tr>'; $total += $row["quantity"] * $row["price"]; } ?> </tbody> </table><br> <div><strong>total = Rp <?php echo number_format($total, 0, "", ".");