function run_update_sql($file)
{
foreach ($this->db->splitSql(file_get_contents(CORE_DIR . '/updatescripts/' . $file)) as $runningSQL) {
if ($this->db->exec($runningSQL)) {
$output .= update_message($runningSQL);
} else {
$errinfo = $this->db->errorInfo();
$etype = E_ERROR;
if (preg_match('/syntax to use near \'(.*?)\' at line/i', $errinfo, $match)) {
$runningSQL = str_replace($match[1], '<b>' . $match[1] . '</b>', $runningSQL);
} elseif (preg_match('/Duplicate [a-z]+ name/', $errinfo)) {
$etype = E_WARNING;
}
$output .= update_message($runningSQL, $etype);
}
}
echo $output;
}
$db =& $system->database();
$db->exec('DELETE FROM sdb_sell_logs');
$itemCount = 100;
$itemstart = 0;
while ($itemCount == 100) {
$items = $db->select('SELECT di.product_id , p.name, p.pdt_desc , di.number , d.member_id , o.ship_email , d.t_begin , o.member_id, p.price , p.goods_id ,m.uname
FROM sdb_delivery_item di
LEFT JOIN sdb_delivery d ON d.delivery_id = di.delivery_id
LEFT JOIN sdb_orders o ON d.order_id = o.order_id
LEFT JOIN sdb_products p ON p.product_id = di.product_id
LEFT JOIN sdb_members m ON d.member_id = m.member_id
WHERE d.type = "delivery" AND di.item_type = "goods" AND o.disabled = "false" LIMIT ' . $itemstart . ',' . $itemCount);
$sql = 'INSERT INTO sdb_sell_logs ( member_id , name , price , goods_id , product_id , product_name, pdt_desc , number , createtime ) VALUES ';
$addSql = array();
$itemi = 0;
foreach ($items as $v) {
$itemdata = array($v['member_id'] ? $v['member_id'] : 0, $v['uname'] ? $v['uname'] : $v['ship_email'], $v['price'], $v['goods_id'], $v['product_id'], $v['name'], $v['pdt_desc'], $v['number'], $v['t_begin']);
$addSql[] = ' ( "' . implode('" , "', $itemdata) . '" ) ';
$itemi++;
}
if (!empty($addSql)) {
$sql .= implode(' , ', $addSql);
$db->exec($sql);
}
if ($itemi < 100) {
$itemCount = $itemi;
}
$itemstart += 100;
}
echo update_message('已更新销售记录');
function upgrade_payment()
{
$this->title = '支付接口';
if ($this->db->exec('UPDATE sdb_payment_cfg SET pay_type = "alipay" WHERE pay_type = "alipaytrad"')) {
$this->updateMsg = update_message('支付接口升级成功');
return 'finish';
} else {
$this->updateMsg = update_message('支付接口升级失败', E_WARNING);
return 'error';
}
}
case 4:
// Delete Message
check_admin_authorization();
delete_message();
header("Location: index.php?editor=mail");
exit;
case 5:
// Send Message
check_admin_authorization();
send_message();
header("Location: index.php?editor=mail");
exit;
case 6:
// Update Message
check_admin_authorization();
update_message();
$msg_id = $_POST['msg_id'];
header("Location: index.php?editor=mail&msg_id={$msg_id}&action=1");
exit;
}
function get_mail_headers()
{
global $mysql;
$query = "SELECT msgid, charid, timestamp, `from`, subject FROM mail ORDER BY msgid";
$result = $mysql->query_mult_assoc($query);
return $result;
}
function view_message()
{
global $mysql;
$msg_id = $_GET['msg_id'];
break;
case 'profile':
if (empty($user)) {
header('Location:' . sprintf('%s?action=login', SITE_URL));
}
if (isset($_POST['style'])) {
setcookie('style', $_POST['style'], 0, '/');
$style = style($_POST['style']);
}
$response = template('../templates/profile.php', ['site_url' => SITE_URL, 'style' => $style]);
break;
case 'save':
if (empty($user)) {
header('Location:' . sprintf('%s?action=login', SITE_URL));
}
$message_id = empty($_POST['message_id']) ? null : (int) $_POST['message_id'];
$message = empty($_POST['message']) ? null : $_POST['message'];
if (!empty($message) && valid_token($_POST['token'])) {
isset($message_id) ? update_message($connection, $message, $message_id) : insert_message($connection, $message, $user['id']);
}
header('Location:' . sprintf('%s?action=home&message_id=%d', SITE_URL, $message_id));
break;
default:
if (empty($user)) {
header('Location:' . sprintf('%s?action=login', SITE_URL));
}
$message_id = empty($_GET['message_id']) ? null : (int) $_GET['message_id'];
$messages = load_messages($connection, $message_id);
$response = template('../templates/home.php', ['messages' => $messages, 'token' => token(), 'style' => $style, 'site_url' => SITE_URL, 'message_id' => $message_id]);
}
echo empty($response) ? template('404.php') : $response;
}
}
}
}
$paymentId = strstr($adv['message'], '#P{');
if ($paymentId) {
$paymentId = substr($paymentId, 3, 14);
}
$orderId = strstr($adv['message'], '#O{');
if ($orderId) {
$orderId = substr($orderId, 3, 14);
}
$paymethod = '';
if ($paymentId) {
$row = $db->selectrow('SELECT `paymethod` FROM `sdb_payments` WHERE `payment_id` = ' . $paymentId);
$paymethod = $row['paymethod'];
}
$memberAdvance = $db->selectrow('SELECT SUM(`money`) as msum FROM sdb_advance_logs WHERE `mtime` <= "' . $adv['mtime'] . '" AND `member_id` = ' . $adv['member_id']);
$memberAdvance = $memberAdvance['msum'];
$shopAdvance = $db->selectrow('SELECT SUM(`money`) as ssum FROM sdb_advance_logs WHERE `mtime` <= "' . $adv['mtime'] . '" ');
$shopAdvance = $shopAdvance['ssum'];
if (!$db->exec('UPDATE `sdb_advance_logs` SET `import_money`= ' . $importMoney . ', `explode_money` = ' . $explodeMoney . ' , `memo`= "' . $memo . '" , `payment_id`= "' . $paymentId . '" , `order_id`= "' . $orderId . '" , `paymethod`= "' . $paymethod . '" , `member_advance` = ' . $memberAdvance . ', `shop_advance` = "' . $shopAdvance . '" WHERE log_id = ' . $adv['log_id'])) {
$advanceCheck = false;
break;
}
}
if ($advanceCheck) {
echo update_message('已更新预存款日志');
} else {
echo update_message('更新预存款日志失败', E_WARNING);
}
function upgrade_last()
{
$this->updateMsg = update_message('升级成功');
return 'finish';
}
echo "\$date_decompte=$date_decompte<br />";
*/
if (count($t_login_destinataires) == 0) {
if (isset($_POST['id_mess'])) {
$erreur = !update_message($contenu_cor, $date_debut, $date_fin, $date_decompte, $statuts_destinataires, "");
} else {
$erreur = !set_message($contenu_cor, $date_debut, $date_fin, $date_decompte, $statuts_destinataires, "");
}
} else {
// pour éviter qu'un utilisateur de statut donné voit n fois le message adressé aux profs d'une classe
if (count($t_login_destinataires) > 1) {
$statuts_destinataires = "_";
}
foreach ($t_login_destinataires as $login_destinataire) {
if (isset($_POST['id_mess'])) {
$erreur = !update_message($contenu_cor, $date_debut, $date_fin, $date_decompte, $statuts_destinataires, $login_destinataire) && $erreur;
} else {
$erreur = !set_message($contenu_cor, $date_debut, $date_fin, $date_decompte, $statuts_destinataires, $login_destinataire) && $erreur;
}
}
}
if (!$erreur) {
$msg_OK = "Le message a été enregistré.";
unset($contenu_cor);
unset($_POST['display_date_debut']);
unset($_POST['display_date_fin']);
unset($_POST['display_date_decompte']);
unset($id_mess);
unset($statuts_destinataires);
unset($login_destinataire);
//unset($matiere_destinataire);
<?php
session_start();
ini_set('display_errors', 1);
error_reporting(E_ALL);
require '../blog.php';
define('SITE_URL', 'http://epic-blog/lesson%207/src/public/index.php');
$connection = connection(['host' => 'localhost', 'dbname' => 'blog', 'user' => 'root', 'password' => 'vagrant', 'encoding' => 'utf8']);
$login = empty($_REQUEST['login']) ? null : $_REQUEST['login'];
$password = empty($_REQUEST['password']) ? null : $_REQUEST['password'];
$user = user();
if (!empty($_REQUEST['action']) && $_REQUEST['action'] === 'login' && valid_token($_REQUEST['token'])) {
$user = user($connection, $login, $password);
}
if (empty($user)) {
echo template('templates/authorization.php', ['token' => token(), 'login' => $login, 'site_url' => SITE_URL]);
exit;
}
$message_id = empty($_REQUEST['message_id']) ? null : (int) $_REQUEST['message_id'];
$message = empty($_REQUEST['message']) ? null : $_REQUEST['message'];
if (!empty($message) && valid_token($_REQUEST['token'])) {
isset($message_id) ? update_message($connection, $message, $message_id) : insert_message($connection, $message, 0);
header('Location:' . SITE_URL);
}
$messages = load_messages($connection, $message_id);
$style = style($_COOKIE['style']);
echo template('templates/home.php', ['messages' => $messages, 'token' => token(), 'style' => $style, 'site_url' => SITE_URL, 'message_id' => $message_id]);
