PageRenderTime 50ms CodeModel.GetById 19ms RepoModel.GetById 0ms app.codeStats 0ms

/new/PHPSource/newmanga.php

http://clover-mana.googlecode.com/
PHP | 235 lines | 220 code | 10 blank | 5 comment | 8 complexity | 54babb749eef7bfd0d59e8d06eefe358 MD5 | raw file
    

  1. 

    2. 

  2. <?php

    3. 

  3. 		session_start();

    4. 

  4. 		include('dbconfig.php');

    5. 

  5. 		/*kiem tra cac thong so quyen han  */

    6. 

  6. 		if(!isset($_SESSION['userid']) || !isset($_SESSION["power"])){

    7. 

  7. 			echo "<div class = \"alert\"><div class= 'h10'><img src=\"images/x15.png\" title = \"\">B?n không ?? quy?n ?? lŕm vi?c nŕy,vui lňng ??ng nh?p ho?c <a href=\"index.php?mode=register\">??ng ký</a></div>

    8. 

  8. 			</div>";

    9. 

  9. 		}

    10. 

  10. 		else{

    11. 

  11. 		/* quyen han hop le,xuat ra form nhap manga moi */

    12. 

  12. 

    13. 

  13. 

    14. 

  14. 		$name = $_POST['name'];

    15. 

  15. 		$author = $_POST['author'];

    16. 

  16. 		$type = $_POST['type'];

    17. 

  17. 		$summary = $_REQUEST['summary'];

    18. 

  18. 		$image= $_FILES['image'];

    19. 

  19. 		$icon = $_FILES['icon'];

    20. 

  20. 		

    21. 

  21. 		$sql_type ="select * from category";

    22. 

  22. 		$result_type = mysql_query($sql_type,$connection);

    23. 

  23. 		echo "<form action=\"\" method=\"post\" enctype=\"multipart/form-data\" name=\"frmNewmanga\">";

    24. 

  24. 				echo "<div class = \"headnewmanga\"><h3>Thęm manga m?i</h3><div class=\"khoangcach1\"></div></div>";

    25. 

  25. 		echo "<div class=\"newmanga\">";

    26. 

  26. 		echo "

    27. 

  27.   <table border=\"0\">

    28. 

  28.     <tr>

    29. 

  29.       <td>Tęn manga </td>

    30. 

  30.       <td><label>

    31. 

  31.         <input name=\"name\" type=\"text\" id=\"name\" size ='45' value =\"$name\" >

    32. 

  32.       </label></td>

    33. 

  33.     </tr>

    34. 

  34.     <tr>

    35. 

  35.       <td width=\"100\">Tác gi? </td>

    36. 

  36.       <td width=\"253\">

    37. 

  37.         <input name=\"author\" type=\"text\" id=\"author\" size ='45' value =\"$author\" >

    38. 

  38.       </td>

    39. 

  39.     </tr>

    40. 

  40.     <tr>

    41. 

  41.       <td>Th? lo?i </td>

    42. 

  42.       <td>

    43. 

  43. 	  		<select name=\"type\">";

    44. 

  44. 			while($row_type = mysql_fetch_array($result_type))

    45. 

  45. 			{

    46. 

  46. 				echo "<option value=\"$row_type[0]\" ";

    47. 

  47. 				if($type==$row_type[0])

    48. 

  48. 					echo "selected";

    49. 

  49. 				echo ">$row_type[1]</option>";

    50. 

  50. 				}

    51. 

  51. 		echo "	</select>

    52. 

  52. 	  </td>

    53. 

  53.     </tr>

    54. 

  54.     <tr>

    55. 

  55.       <td>Tóm t?t</td>

    56. 

  56.       <td>";

    57. 

  57. 	  

    58. 

  58. 	/*  <label>

    59. 

  59.         <textarea name=\"summary\" id=\"summary\" rows =\"5\" cols=\"40\"></textarea>

    60. 

  60.       </label> */

    61. 

  61. 	  echo "<script type=\"text/javascript\" src=\"js/editor.js\"></script>

    62. 

  62. 	  		<span id=\"postArea\"><br><br><br><br>&nbsp; Loading...</span>	

    63. 

  63. 			<script type=\"text/javascript\">

    64. 

  64. 			RTE=new Editor('RTE','postArea','',470, 350);

    65. 

  65. 			RTE.removeButton('btnQuote','btnCode','btnUnformat','btnAlignJustify');

    66. 

  66. 			RTE.display();

    67. 

  67. 			</script>

    68. 

  68. 	  ";

    69. 

  69. 	  echo "

    70. 

  70. 	  <input name=\"summary\" type=\"hidden\" id=\"summary\">

    71. 

  71. 	  <br>

    72. 

  72. 	  </td>

    73. 

  73.     </tr>

    74. 

  74.     <tr>

    75. 

  75.       <td>?nh minh h?a</td>

    76. 

  76.       <td><label>

    77. 

  77.         <input name=\"image\" type=\"file\" id=\"image\" value=\"\" size ='45'>

    78. 

  78.       </label></td>

    79. 

  79.     </tr>

    80. 

  80.     <tr>

    81. 

  81.       <td>?nh icon</td>

    82. 

  82.       <td><label>

    83. 

  83.         <input name=\"icon\" type=\"file\" id=\"icon\" size ='45' >

    84. 

  84.       </label></td>

    85. 

  85.     </tr>

    86. 

  86.   </table></div>";

    87. 

  87. 

    88. 

  88. 	

    89. 

  89.   echo "<center><p>

    90. 

  90.     <label>

    91. 

  91.     <input type=\"Submit\" name=\"Submit\" value=\"Thęm\" onclick=\"doSubmit();\">

    92. 

  92.     </label>

    93. 

  93.     <label>

    94. 

  94.     <input type=\"reset\" name=\"Submit2\" value=\"Reset\">

    95. 

  95.     </label>

    96. 

  96.   </p></center>

    97. 

  97. </form> ";

    98. 

  98. 	}

    99. 

  99. ?>

    100. 

  100. <?php

    101. 

  101. function check_file($str)

    102. 

  102. {

    103. 

  103. 	if(strlen($str) <=0)

    104. 

  104. 		return false;

    105. 

  105. 	if(strpos($str,".")==false)

    106. 

  106. 		return false;

    107. 

  107. 	$post  = strrpos($str,".");

    108. 

  108. 	$type = substr($str,$post+1);

    109. 

  109. 	if(strcmp($type,"jpg")!=0 && strcmp($type,"jpeg")!=0  &&strcmp($type,"gif")!=0  &&strcmp($type,"png")!=0 )

    110. 

  110. 	{

    111. 

  111. 

    112. 

  112. 		return false;

    113. 

  113. 	}

    114. 

  114. 	return $type;

    115. 

  115. 

    116. 

  116. }

    117. 

  117. if($_POST['Submit']==TRUE)

    118. 

  118. {

    119. 

  119. 

    120. 

  120. 		$name = $_POST['name'];

    121. 

  121. 		$name = str_replace("'","\'",$name);

    122. 

  122. 

    123. 

  123. 

    124. 

  124. 		$author = $_POST['author'];

    125. 

  125. 		$author = str_replace("'","\'",$author);

    126. 

  126. 		$type = $_POST['type'];

    127. 

  127. 		$summary = $_REQUEST['summary'];

    128. 

  128. 		$summary = str_replace("'","\'",$summary);

    129. 

  129. 		$image= $_FILES['image'];

    130. 

  130. 		$icon = $_FILES['icon'];

    131. 

  131. 		$a = (string)" \ ";

    132. 

  132. 		$a = trim($a);

    133. 

  133. 

    134. 

  134. 	if( !isset($name) ||$name==NULL ||!isset($author) ||$author==NULL ||!isset($summary) ||$summary==NULL ||!isset($image) ||$image==NULL ||!isset($icon) ||$icon==NULL)

    135. 

  135. 	{

    136. 

  136. 		echo "?<div class = \"alert\"><div class= 'h10'><img src=\"images/52.gif\" title = \"Bó tay!\">Vui lňng nh?p ??y ?? thông tin<img src=\"images/69.gif\"></div></div>";

    137. 

  137. 		return -1;

    138. 

  138. 	}

    139. 

  139. 	$sql_check ="select * from manga where MangaName = '$name'";

    140. 

  140. 	$result_check = mysql_query($sql_check,$connection);

    141. 

  141. 	$num_rs_check = mysql_num_rows($result_check);

    142. 

  142. 	if($num_rs_check >=1){

    143. 

  143. 		$row_check = mysql_fetch_array($result_check);

    144. 

  144. 		echo "?<div class = \"alert\"><div class= 'h10'><img src=\"images/87.gif\" title = \"Bó tay!\">Manga nŕy có th? ?ă ???c upload b?i thŕnh vięn khác.Xem chi ti?t <a href= \"index.php?mode=chitietmanga&id=$row_check[0]\">t?i ?ây</a><img src=\"images/28.gif\"></div></div>";

    145. 

  145. 		return -1;

    146. 

  146. 	}else{

    147. 

  147. 		$img_type = check_file($image["name"]);

    148. 

  148. 		$ico_type = check_file($icon["name"]);

    149. 

  149. 		if($ico_type==false && $img_type==false)

    150. 

  150. 		{

    151. 

  151. 			echo "?<div class = \"alert\"><div class= 'h10'><img src=\"images/botay.gif\" title = \"Bó tay!\">Vui lňng upload file có 1 trong 4 ??nh d?ng sau : jpg,jpeg,gif,png<img src=\"images/69.gif\"></div></div>";

    152. 

  152. 			return -1;

    153. 

  153. 		}

    154. 

  154. 		$date=gmdate('Y-m-d', time()+(25200));

    155. 

  155. 		$uid = $_SESSION['userid'];

    156. 

  156. 		$passed = 0; //dang cho duyet

    157. 

  157. 		$stt = 1; //dang update

    158. 

  158. 		$strSQL = sprintf("Insert into manga

    159. 

  159. 		(

    160. 

  160. 		MangaName,DateAdded,Status,

    161. 

  161. 		UID,Summary,Passed,Author

    162. 

  162. 		)

    163. 

  163. 		 values 

    164. 

  164. 		 (

    165. 

  165. 		 '%s','%s','%d',

    166. 

  166. 		 '%d','%s','%d','%s'

    167. 

  167. 		 

    168. 

  168. 		 )

    169. 

  169. 		 ", $name,$date, $stt, $uid, $summary,$passed,$author);

    170. 

  170. 		mysql_query ($strSQL, $connection);

    171. 

  171. 		if(mysql_errno() != 0)

    172. 

  172. 		{

    173. 

  173. 			echo "?<div class = \"alert\"><div class= 'h10'><img src=\"images/87.gif\" title = \"Bó tay!\">L?i trong quá trěnh thęm d? li?u<img src=\"images/28.gif\"></div></div>";

    174. 

  174. 			return -1;

    175. 

  175. 		}

    176. 

  176. 		$mangaid1 = mysql_insert_id();

    177. 

  177. //		echo $mangaid1;

    178. 

  178. 		/*

    179. 

  179. 		$hotname = str_replace(" ","",$hotname);

    180. 

  180. 		$hotname = str_replace("?","",$hotname);

    181. 

  181. 		$hotname = str_replace("*","",$hotname);

    182. 

  182. 		$hotname = str_replace("/","",$hotname);

    183. 

  183. 		$hotname = str_replace("|","",$hotname);

    184. 

  184. 		$hotname = str_replace(":","",$hotname);

    185. 

  185. 		$hotname = str_replace(">","",$hotname);

    186. 

  186. 		$hotname = str_replace("<","",$hotname);

    187. 

  187. 		$hotname = str_replace('"',"",$hotname);

    188. 

  188. 		$hotname = str_replace($a,"",$hotname); */

    189. 

  189. 		$foder = "manga/".$mangaid1."/";

    190. 

  190. //		echo $foder;

    191. 

  191. 

    192. 

  192. 	if(opendir($foder)!=FALSE){

    193. 

  193. 		echo "?<div class = \"alert\"><div class= 'h10'><img src=\"images/27.gif\" title = \"R?t ti?c!\">Có s? c? trong vi?c upload.Có th? manga b?n v?a post ?ă t?n t?i.Lięn h? qu?n tr? ?? bi?t thęm chi ti?t.<img src=\"images/37.gif\"></div></div>";

    194. 

  194. 		return -1;

    195. 

  195. 	}

    196. 

  196. 	else{

    197. 

  197. 		if($ico_type!=false && $img_type!=false)

    198. 

  198. 		{

    199. 

  199. 			mkdir($foder);

    200. 

  200. 			$img_name = "trangbia.".$img_type;

    201. 

  201. 			$ico_name = "m.trangbia.".$ico_type;

    202. 

  202. 			$path_img = $foder.$img_name;

    203. 

  203. 			$path_ico = $foder.$ico_name;

    204. 

  204. 			$strSQL = sprintf("Update manga set Image = '%s',Icon = '%s' where MID = '%d'", $path_img,$path_ico,$mangaid1);

    205. 

  205. 			mysql_query ($strSQL, $connection);

    206. 

  206. //			echo $path_img.$path_ico;

    207. 

  207. 			move_uploaded_file($image["tmp_name"],$path_img);

    208. 

  208. 			move_uploaded_file($icon["tmp_name"],$path_ico);

    209. 

  209. 		}

    210. 

  210. 		else{

    211. 

  211. 			echo "?<div class = \"alert\"><div class= 'h10'><img src=\"images/botay.gif\" title = \"Bó tay!\">Vui lňng upload file có 1 trong 4 ??nh d?ng sau : jpg,jpeg,gif,png<img src=\"images/69.gif\"></div></div>";

    212. 

  212. 			return -1;

    213. 

  213. 		}

    214. 

  214. 

    215. 

  215. 		$sql2 = sprintf("select MID from manga where MangaName = '%s'",$name);

    216. 

  216. 		$result2 = mysql_query ($sql2, $connection);

    217. 

  217. 		$num2 = mysql_num_rows($result2);

    218. 

  218. 		if($num2 >= 1)

    219. 

  219. 		{

    220. 

  220. 			$row= mysql_fetch_array($result2);

    221. 

  221. 			$mangaid = $row[0]; 

    222. 

  222. 		}

    223. 

  223. 		$sql3 = "Insert into catagorylist(CategogyID,MID) values($type,$mangaid)";

    224. 

  224. 		$result3 = mysql_query ($sql3, $connection);

    225. 

  225. 		$num_view = 0;

    226. 

  226. 		$sql_view = "Insert into view(ViewCount,MID) values($num_view,$mangaid)";

    227. 

  227. 		$result_view = mysql_query ($sql_view, $connection);

    228. 

  228. 		mysql_close($connection);

    229. 

  229. 		$username = $_SESSION["username"];

    230. 

  230. 		echo "?<div class = \"alert\"><div class= 'h10'><img src=\"images/25.gif\" title = \"Chúc m?ng!\">Ch?c m?ng $username.B?n ?ă post thŕnh công manga:$name.<img src=\"images/26.gif\"></div></div>";

    231. 

  231. 		}

    232. 

  232. 	}

    233. 

  233. }

    234. 

  234. 

    235. 

  235. ?>

    236. 

  236.