PageRenderTime 56ms CodeModel.GetById 24ms RepoModel.GetById 0ms app.codeStats 1ms

/admin/app/controllers/creativezones_controller.php

https://bitbucket.org/fxrialab/spsp_editor
PHP | 1050 lines | 812 code | 207 blank | 31 comment | 124 complexity | e4866a7d3f3e4f7e2da8a492ea1adfdc MD5 | raw file
Possible License(s): LGPL-2.1, AGPL-1.0 
    

  1. <?
    2. 

  2. class CreativezonesController extends AppController {
    3. 

  3.     var $name='Creativezones';
    4. 

  4.     var $helpers = array('Html','javascript','Ajax');
    5. 

  5.     var $uses=array('Creativezone');
    6. 

  6.     var $components = array('Sendmail','Upload');
    7. 

  7. 

  8.     function uploadCategory() {
    9. 

  9.         $upldCategory=array();
    10. 

  10.         $upldCategory['photos']="Photo";
    11. 

  11.         $upldCategory['backdrops']="Background";
    12. 

  12.         $upldCategory['corners']="Superimpose";
    13. 

  13.         $upldCategory['texts']="Frames & Borders";
    14. 

  14.         $upldCategory['borders']="Texts & Symbols";
    15. 

  15.         $upldCategory['lines']="Corners & Shapes";
    16. 

  16.         $upldCategory['stickers']="Sports & Calendars";
    17. 

  17.         $upldCategory['sports']="Real & Graphic";
    18. 

  18.         $this->set("uploadCategory",$upldCategory);
    19. 

  19.     }
    20. 

  20. 

  21.     function pagination($select,$from,$where,$others,$CountField,$arg,$PassParameter) {
    22. 

  22.         if(isset($arg['Page']))
    23. 

  23.             $pageFlag=$arg['Page'];
    24. 

  24.         $this->set("PassParameter",$PassParameter);
    25. 

  25.         $SetUserNumberOfVpsPerPage=SHOW_REC; /* Defined in config->paths.php*/
    26. 

  26. 

  27.         $this->set("BackgroundClass",'pagination');
    28. 

  28.         $this->set("SelectedPage",'pagination_over');
    29. 

  29.         $this->set("Linkpage",'pagination_over');
    30. 

  30.         $this->set("FirstImage",'fdd.gif');
    31. 

  31.         $this->set("PreviousImage",'previous.gif');
    32. 

  32.         $this->set("NextImage",'next.gif');
    33. 

  33.         $this->set("LastImage",'rewd.gif');
    34. 

  34. 

  35.         $UserNumberOfVpsPerPage=SHOW_REC; /* Defined in config->paths.php*/
    36. 

  36.         if(!is_numeric($UserNumberOfVpsPerPage)|| (intval($UserNumberOfVpsPerPage)!=$UserNumberOfVpsPerPage)||($UserNumberOfVpsPerPage<=0))
    37. 

  37.             $UserNumberOfVpsPerPage = $SetUserNumberOfVpsPerPage;
    38. 

  38. 

  39.         if(!isset($arg['Page'])) $arg['Page']=1;
    40. 

  40.         if(!isset($arg['Offset'])) $arg['Offset']=0;
    41. 

  41.         $Query_ForNumber_Records=mysql_query("$select $from $where $others") or die('Line no 120' . mysql_error());
    42. 

  42.         //$Result_Query_ForNumber_Records=mysql_fetch_object($Query_ForNumber_Records);
    43. 

  43. 

  44.         //$NoOfVps=$Result_Query_ForNumber_Records->NoOfVps;
    45. 

  45.         $NoOfVps=mysql_num_rows($Query_ForNumber_Records);
    46. 

  46. 

  47.         $NumberOfVpsPerPage=$UserNumberOfVpsPerPage;
    48. 

  48.         $NoOfPages=ceil($NoOfVps/$NumberOfVpsPerPage);	//3
    49. 

  49.         if($arg['Offset']==$NoOfVps) {
    50. 

  50.             if(isset($Offset)) {
    51. 

  51.                 $Offset=$Offset-$NumberOfVpsPerPage;
    52. 

  52.                 $Page--;
    53. 

  53.                 if($Offset<0) {
    54. 

  54.                     $Offset=0;
    55. 

  55.                     $Page=1;
    56. 

  56.                 }
    57. 

  57.             }else {
    58. 

  58.                 $Offset=0;
    59. 

  59.                 $Page=1;
    60. 

  60.             }
    61. 

  61.         }
    62. 

  62. 

  63.         $this->set("Page",$arg['Page']);
    64. 

  64.         $this->set("Offset",$arg['Offset']);
    65. 

  65.         $this->set("NumberOfVpsPerPage",$NumberOfVpsPerPage);
    66. 

  66.         $this->set("NoOfPages",$NoOfPages);
    67. 

  67.         $this->set("UserNumberOfVpsPerPage",$UserNumberOfVpsPerPage);
    68. 

  68. 

  69.         //print "$select $from $where $others";
    70. 

  70.         $this->set("qryOthr","$select $from $where");
    71. 

  71.         //echo "$select $from $where $others LIMIT ".$arg['Offset'].",$NumberOfVpsPerPage";
    72. 

  72. 

  73.         $SelectRecord = mysql_query("$select $from $where $others LIMIT ".$arg['Offset'].",$NumberOfVpsPerPage") or die('Line no '.__LINE__ . mysql_error());
    74. 

  74.         $this->set("query",$SelectRecord);
    75. 

  75. 

  76.     }
    77. 

  77. 

  78.     function tagimages() {
    79. 

  79.         $this->checkSession();
    80. 

  80.         $this->layout = 'tagimages';
    81. 

  81.         $this->set("uploadTitle","Tag Images");
    82. 

  82.         $this->creativetype();
    83. 

  83.         $this->uploadCategory();
    84. 

  84. 

  85.         $upldCat=0;
    86. 

  86.         $upldType=0;
    87. 

  87.         if(isset($this->params['url']['uploadCategory'])) {
    88. 

  88.             $upldCat=$this->params['url']['uploadCategory'];
    89. 

  89.             $upldType=$this->params['url']['uploadType'];
    90. 

  90.         }
    91. 

  91. 

  92.         if(isset($this->params['form']['uploadCategory'])) {
    93. 

  93.             $upldCat=$this->params['form']['uploadCategory'];
    94. 

  94.             $upldType=$this->params['form']['uploadType'];
    95. 

  95.         }
    96. 

  96. 

  97.         if(isset($this->params['url']['upldcat'])) {
    98. 

  98.             $upldCat=$this->params['url']['upldcat'];
    99. 

  99.             $upldType=$this->params['url']['upldtype'];
    100. 

  100.         }
    101. 

  101.         $this->set("upldCat",$upldCat);
    102. 

  102.         $this->set("upldType",$upldType);
    103. 

  103. 

  104. 

  105.         //Get the images uploaded by ADMIN
    106. 

  106.         //if(isset($upldCat) && $upldCat!='0' && isset($upldType) && $upldType!='0')
    107. 

  107.         //	{
    108. 

  108. 

  109.         $select=" SELECT * ";
    110. 

  110. 

  111.         $from=" FROM creative_template_images ";
    112. 

  112. 

  113.         $where="WHERE creative_type_id='".$upldCat."' AND imgtype='".$upldType."' AND uploader='1' and is_delete='0'";
    114. 

  114. 

  115.         $others=NULL;
    116. 

  116. 

  117.         $PassParameter="upldcat=".$upldCat."&upldtype=".$upldType;
    118. 

  118. 

  119.         $CountField="B.id";
    120. 

  120.         $this->set("controller","creativezones");
    121. 

  121.         $this->set("action","tagimages");
    122. 

  122.         $this->pagination($select,$from,$where,$others,$CountField,$this->params['url'],$PassParameter);
    123. 

  123.         if(isset($this->params['url']['Page'])) {
    124. 

  124.             $this->render("tagimages2","ajax");
    125. 

  125.         }
    126. 

  126. 

  127.         //	}
    128. 

  128. 

  129. 

  130. 

  131.     }
    132. 

  132.     function deletestatik() {
    133. 

  133.         //pr($this->params);
    134. 

  134. 

  135.         mysql_query("update creative_template_pages set is_delete='1' where id='".$this->params['url']['id']."'");
    136. 

  136.         $this->redirect("/creativezones/statikimages?uploadCategory=".$this->params['url']['uploadCategory']);
    137. 

  137.     }
    138. 

  138. 

  139.     function deletetagimg() {
    140. 

  140.         //pr($this->params);
    141. 

  141. 

  142.         mysql_query("update creative_template_images set is_delete='1' where id='".$this->params['url']['id']."'");
    143. 

  143.         $this->redirect("/creativezones/tagimages?uploadCategory=".$this->params['url']['uploadCategory']."&uploadType=".$this->params['url']['uploadType']);
    144. 

  144.     }
    145. 

  145. 

  146.     function statikimages() {
    147. 

  147.         $this->checkSession();
    148. 

  148.         $this->layout = 'tagimages';
    149. 

  149.         $this->set("uploadTitle","Statik Images");
    150. 

  150.         $this->creativetype();
    151. 

  151.         $this->uploadCategory();
    152. 

  152. 

  153.         $upldCat=0;
    154. 

  154.         $upldType=0;
    155. 

  155.         if(isset($this->params['url']['uploadCategory'])) {
    156. 

  156.             $upldCat=$this->params['url']['uploadCategory'];
    157. 

  157.             //$upldType=$this->params['form']['uploadType'];
    158. 

  158.         }
    159. 

  159. 

  160.         if(isset($this->params['form']['uploadCategory'])) {
    161. 

  161.             $upldCat=$this->params['form']['uploadCategory'];
    162. 

  162.             //$upldType=$this->params['form']['uploadType'];
    163. 

  163.         }
    164. 

  164. 

  165.         if(isset($this->params['url']['upldcat'])) {
    166. 

  166.             $upldCat=$this->params['url']['upldcat'];
    167. 

  167.             //$upldType=$this->params['url']['upldtype'];
    168. 

  168.         }
    169. 

  169.         $this->set("upldCat",$upldCat);
    170. 

  170.         $this->set("upldType",$upldType);
    171. 

  171. 

  172. 

  173.         //Get the images uploaded by ADMIN
    174. 

  174.         //if(isset($upldCat) && $upldCat!='0' && isset($upldType) && $upldType!='0')
    175. 

  175.         //	{
    176. 

  176. 

  177.         $select=" SELECT * ";
    178. 

  178. 

  179.         $from=" FROM creative_template_pages ";
    180. 

  180. 

  181.         $where="WHERE creative_type_id='".$upldCat."'  AND block='0' and is_delete='0' and template_type='1'";
    182. 

  182. 

  183.         $others=NULL;
    184. 

  184. 

  185.         $PassParameter=" ";
    186. 

  186. 

  187.         $CountField="B.id";
    188. 

  188.         $this->set("controller","creativezones");
    189. 

  189.         $this->set("action","tagimages");
    190. 

  190.         $this->pagination($select,$from,$where,$others,$CountField,$this->params['url'],$PassParameter);
    191. 

  191.         if(isset($this->params['url']['Page'])) {
    192. 

  192.             $this->render("tagimages2","ajax");
    193. 

  193.         }
    194. 

  194. 

  195.         //	}
    196. 

  196. 

  197. 

  198. 

  199.     }
    200. 

  200. 

  201. 

  202.     function savetag() {
    203. 

  203.         $this->set("params",$this->params);
    204. 

  204.         if(isset($this->params['url']['id']) && $this->params['url']['id']!="") {
    205. 

  205.             $this->set("imgId",$this->params['url']['id']);
    206. 

  206.             $sql=mysql_query("SELECT imgdescription FROM creative_template_images WHERE id='".$this->params['url']['id']."'");
    207. 

  207.             $fetchDesc=mysql_fetch_assoc($sql);
    208. 

  208.             $this->set("imgDesc",$fetchDesc['imgdescription']);
    209. 

  209.             $this->render("savetag","ajax");
    210. 

  210.         }
    211. 

  211. 

  212.         if(isset($this->data['creativexones'])) {
    213. 

  213.             $imgId=$this->data['creativexones']['imgId'];
    214. 

  214.             $imageTag=$this->data['creativexones']['imgTag'];
    215. 

  215. 

  216.             //setting image description
    217. 

  217.             mysql_query("UPDATE creative_template_images SET imgdescription='".$imageTag."' WHERE id='".$imgId."'");
    218. 

  218.             $this->set("imgId",$imgId);
    219. 

  219.             $this->render("tagsaved","ajax");
    220. 

  220. 

  221.         }
    222. 

  222.     }
    223. 

  223. 

  224.     function creativeType() {
    225. 

  225.         $q1=mysql_query("SELECT * FROM creative_type WHERE is_delete='0' ORDER BY id ASC");
    226. 

  226.         $i=0;
    227. 

  227.         while($rwCr=mysql_fetch_array($q1)) {
    228. 

  228.             if($i==0)
    229. 

  229.                 $defaultCat[$rwCr['id']]=array($rwCr['creative_name'],$rwCr['creative_description'],$rwCr['creative_image']);
    230. 

  230.             $i++;
    231. 

  231. 

  232.             $creativeType[$rwCr['id']]=array($rwCr['creative_name'],$rwCr['creative_description'],$rwCr['creative_image']);
    233. 

  233.         }
    234. 

  234. 

  235.         $this->set("defaultType",$defaultCat);
    236. 

  236.         $this->set("creativeType",$creativeType);
    237. 

  237.     }
    238. 

  238. 

  239.     function creativeupload() {
    240. 

  240.         $this->checkSession();
    241. 

  241.         if(!empty($this->data)) {
    242. 

  242.             if(strtoupper($this->data['Creativezones']['uploadcat'])=='IMAGES')
    243. 

  243.                 $this->redirect("/creativezones/uploadimg?t=".base64_encode($this->data['Creativezones']['templatetype']));
    244. 

  244. 

  245.             if(strtoupper($this->data['Creativezones']['uploadcat'])=='STATIK')
    246. 

  246.                 $this->redirect("/creativezones/uploadstatiktemplate?t=".base64_encode($this->data['Creativezones']['templatetype']));
    247. 

  247.         }
    248. 

  248. 

  249.     }
    250. 

  250. 

  251.     function uploadimg() {
    252. 

  252.         $this->checkSession();
    253. 

  253.         $this->layout = 'default_after_login';
    254. 

  254. 

  255.         $this->set("themeId",$this->params['url']['t']);
    256. 

  256. 

  257.     }
    258. 

  258. 

  259.     function uploadstatiktemplate() {
    260. 

  260.         $this->checkSession();
    261. 

  261.         $this->layout = 'default_after_login';
    262. 

  262. 

  263.         $this->set("themeId",$this->params['url']['t']);
    264. 

  264. 

  265.     }
    266. 

  266. 

  267.     function uploadimage1() {
    268. 

  268.         $this->checkSession();
    269. 

  269.         $this->layout = 'default_after_login';
    270. 

  270.         $this->set("uploadTitle","Upload Images");
    271. 

  271. 

  272.         $this->set("upldType","images");
    273. 

  273.         $this->creativeType();
    274. 

  274.     }
    275. 

  275. 

  276.     function uploadstatik() {
    277. 

  277.         $this->checkSession();
    278. 

  278.         $this->layout = 'default_after_login';
    279. 

  279.         $this->set("uploadTitle","Upload Statik Templates");
    280. 

  280.         $this->set("upldType","statik");
    281. 

  281.         $this->creativeType();
    282. 

  282.         $this->render("uploadimage");
    283. 

  283.     }
    284. 

  284. 

  285.     function managetax() {
    286. 

  286.         $this->checkSession();
    287. 

  287.         $this->layout = 'default_user';
    288. 

  288.         if(isset($this->data['Sale']['tax'])) {
    289. 

  289.             mysql_query("UPDATE creative_saletax SET tax='".$this->data['Sale']['tax']."' WHERE user_id='1' AND state_id='".$this->data['Sale']['sid']."'") or die(mysql_error());
    290. 

  290.         }
    291. 

  291. 

  292. 

  293.         $saletaxarr = array();
    294. 

  294.         $sqlsatetax = "select countries.id , countries.country_name , creative_saletax.user_id from  creative_saletax  , state  , countries where user_id = '1' and state_id=state.id and state.c_id=countries.id Group by countries.id";
    295. 

  295.         $sqlsatetax_res = mysql_query($sqlsatetax);
    296. 

  296.         $sqlsatetax_num = mysql_num_rows($sqlsatetax_res);
    297. 

  297.         if($sqlsatetax_num > 0) {
    298. 

  298.             while($sqlsatetax_res_arr = mysql_fetch_array($sqlsatetax_res)) {
    299. 

  299.                 $saletaxarr[$sqlsatetax_res_arr['id']] = $sqlsatetax_res_arr['country_name'] ;
    300. 

  300.             }
    301. 

  301. 

  302.         }
    303. 

  303.         $this->set('saltaxnum', $sqlsatetax_num);
    304. 

  304.         $this->set('saltaxinfo', $saletaxarr);
    305. 

  305.     }
    306. 

  306. 

  307.     function savesaletax() {
    308. 

  308.         $this->checkSession();
    309. 

  309.         $this->layout = 'default_user';
    310. 

  310.         $this->pageTitle = 'Sale Tax';
    311. 

  311.         $stateTax = $_REQUEST['saletax'] ;
    312. 

  312.         foreach($stateTax as $stateTax_index=> $stateTax_value ) {
    313. 

  313.             if(isset($_REQUEST['saletax'][$stateTax_index]) && $_REQUEST['saletax'][$stateTax_index]!="") {
    314. 

  314.                 $mynumber = $_REQUEST['saletax'][$stateTax_index] ;
    315. 

  315.                 if($mynumber>0) {
    316. 

  316.                     if (preg_match ("/^([0-9.,-]+)$/", $mynumber)) {
    317. 

  317. 

  318.                         /* Saving in the sale tax */
    319. 

  319.                         $selectrec = "select * from creative_saletax where user_id = '1' and state_id = ".$stateTax_index."" ;
    320. 

  320.                         $selectrec_res = mysql_query($selectrec);
    321. 

  321.                         if(mysql_num_rows($selectrec_res)>0) {
    322. 

  322.                             $saletaxsql = "Update creative_saletax SET tax = ".$mynumber." where user_id = '1' and state_id = ".$stateTax_index."" ;
    323. 

  323.                         }
    324. 

  324.                         else {
    325. 

  325.                             $saletaxsql = "INSERT INTO creative_saletax SET tax = ".$mynumber." , user_id = '1' , state_id = ".$stateTax_index."" ;
    326. 

  326.                         }
    327. 

  327.                         mysql_query($saletaxsql)or die(mysql_error());
    328. 

  328.                         /* */
    329. 

  329. 

  330.                     }
    331. 

  331.                 }
    332. 

  332.             }
    333. 

  333. 

  334.         }
    335. 

  335. 

  336.         $redirectURL = "creativezones/managetax";
    337. 

  337.         $this->redirect($redirectURL);
    338. 

  338. 

  339.     }
    340. 

  340. 

  341.     function managecoupon() {
    342. 

  342.         $this->checkSession();
    343. 

  343.         $this->layout = 'default_user';
    344. 

  344.         if(isset($_REQUEST['chkAll']) && $_REQUEST['chkAll']=='checkbox' && isset($_REQUEST['box'])) {
    345. 

  345.             foreach($_REQUEST['box'] as $boxind=>$boxvalue) {
    346. 

  346.                 $chkCoupon="DELETE FROM creative_coupon WHERE user_id='1' AND id='".$boxvalue."'";
    347. 

  347.                 $chkCoupon_res = mysql_query($chkCoupon);
    348. 

  348.             }
    349. 

  349.         }
    350. 

  350. 

  351. 

  352.     }
    353. 

  353.     function addcoupon() {
    354. 

  354.         $this->checkSession();
    355. 

  355.         $this->layout = 'default_user';
    356. 

  356.     }
    357. 

  357.     function savecoupon($couponid=null) {
    358. 

  358.         $this->checkSession();
    359. 

  359.         $this->layout = 'default_user';
    360. 

  360.         //pr($_REQUEST);
    361. 

  361.         $copFrm = $_REQUEST['fromyear'] .'-'.$_REQUEST['frommonth'] .'-'.$_REQUEST['fromdate'] ;
    362. 

  362.         $copTo = $_REQUEST['toyear'] .'-'.$_REQUEST['tomonth'] .'-'.$_REQUEST['todate'] ;
    363. 

  363. 

  364.         if($couponid) {
    365. 

  365.             $coupQry = "update creative_coupon set coupon_code = '".$this->data['creativezone']['coupon_code']."', coupon_value = ".$this->data['creativezone']['coupon_value'].", coupon_from = '".$copFrm."', coupon_to = '".$copTo."' where id=".$couponid."";
    366. 

  366.             mysql_query($coupQry);
    367. 

  367.         }
    368. 

  368.         else {
    369. 

  369.             $chkCoupon="SELECT * FROM creative_coupon WHERE user_id='1' AND coupon_code='".$this->data['creativezone']['coupon_code']."'";
    370. 

  370.             if(mysql_num_rows(mysql_query($chkCoupon))==0) {
    371. 

  371.                 $coupQry = "insert into creative_coupon values('', '1', '".$this->data['creativezone']['coupon_code']."', ".$this->data['creativezone']['coupon_value'].", '".$copFrm."', '".$copTo."', NOW(), '0')";
    372. 

  372.                 mysql_query($coupQry);
    373. 

  373.             }
    374. 

  374.         }
    375. 

  375. 

  376. 

  377.         $this->redirect('creativezones/managecoupon');
    378. 

  378.     }
    379. 

  379. 

  380.     function editcreativecoupon($couponid=null) {
    381. 

  381.         $this->checkSession();
    382. 

  382.         $this->layout = 'default_user';
    383. 

  383.         $chkCoupon="SELECT * FROM creative_coupon WHERE user_id='1' AND id='".base64_decode($couponid)."'";
    384. 

  384.         $chkCoupon_res = mysql_query($chkCoupon);
    385. 

  385.         $chkCoupon_arr = mysql_fetch_array($chkCoupon_res);
    386. 

  386. 

  387.         $this->set('couponarr',$chkCoupon_arr);
    388. 

  388. 

  389. 

  390.     }
    391. 

  391.     function delcreativecoupon($couponid=null) {
    392. 

  392.         $this->checkSession();
    393. 

  393.         $this->layout = 'default_user';
    394. 

  394.         $chkCoupon="DELETE FROM creative_coupon WHERE user_id='1' AND id='".base64_decode($couponid)."'";
    395. 

  395.         $chkCoupon_res = mysql_query($chkCoupon);
    396. 

  396.         $this->redirect('creativezones/managecoupon');
    397. 

  397.     }
    398. 

  398.     function blockunblock($couponid=null,$changestatus=null) {
    399. 

  399.         if($changestatus=='Blocked') {
    400. 

  400.             $blockedstatus = '1';
    401. 

  401.         }
    402. 

  402.         else
    403. 

  403.             $blockedstatus = '0';
    404. 

  404. 

  405.         $chkCoupon="UPDATE creative_coupon SET blocked = '".$blockedstatus."' WHERE user_id='1' AND id='".base64_decode($couponid)."'";
    406. 

  406.         $chkCoupon_res = mysql_query($chkCoupon);
    407. 

  407.         $this->redirect('creativezones/managecoupon');
    408. 

  408. 

  409.     }
    410. 

  410. 

  411.     function salesdata() {
    412. 

  412.         $this->checkSession();
    413. 

  413.         $this->layout = 'default_user';
    414. 

  414. 

  415.         $select = "SELECT PM.*,TC.* ,USR.first_name,USR.last_name,USR.email, COUNTRY.country_name, F.ssn_id,COUNT(CDT.id) as num_item,FX.is_blocked";
    416. 

  416.         $from   = " FROM transaction_creatives as TC
    417. 

  417.                 LEFT JOIN payment_transactions PM ON ( PM.id = TC.payment_ts_id )
    418. 

  418.                 LEFT JOIN creative_carts C ON ( C.transaction_creative_id = TC.id )
    419. 

  419.                 LEFT JOIN creative_cart_details CDT ON ( CDT.creative_cart_id = C.id )
    420. 

  420.                 LEFT JOIN creative_favorites F ON ( F.id = CDT.creative_favorite_id)
    421. 

  421.                 LEFT JOIN creative_favorites FX ON (F.template_id>0 AND F.template_id=FX.id)
    422. 

  422.                 LEFT JOIN user_details USR ON ( PM.user_id = USR.user_id )
    423. 

  423.                 LEFT JOIN countries COUNTRY ON ( USR.c_id = COUNTRY.id )";
    424. 

  424.         $where = " WHERE TC.pay_status = '1' ";
    425. 

  425.         $others=" GROUP BY TC.id  DESC
    426. 

  426.                   ORDER BY TC.trandate DESC ";
    427. 

    428. 

  428.         $searchpass = '';
    429. 

  429.         if(isset($_REQUEST['invoice']) && $_REQUEST['invoice']!='') {
    430. 

  430.             $where.="  AND TC.invoice like '%".$_REQUEST['invoice']."%' ";
    431. 

  431.             $searchpass .= "&invoice=".$_REQUEST['invoice'] ;
    432. 

  432.             $others .=", TC.invoice ";
    433. 

  433.         }
    434. 

  434.         if(isset($_REQUEST['email']) && $_REQUEST['email']!='') {
    435. 

  435.             $where.="  AND USR.email like '%".$_REQUEST['email']."%' ";
    436. 

  436.             $searchpass .= "&email=".$_REQUEST['email'] ;
    437. 

  437.             $others .=", USR.email ";
    438. 

  438.         }
    439. 

  439.         if(isset($_REQUEST['prodid']) && $_REQUEST['prodid']!='') {
    440. 

  440.             $where.="  AND F.ssn_id like '%".$_REQUEST['prodid']."%' ";
    441. 

  441.             $searchpass .= "&prodid=".$_REQUEST['prodid'] ;
    442. 

  442.             $others .=", F.ssn_id ";
    443. 

  443.         }
    444. 

  444.         if(isset($_REQUEST['country']) && $_REQUEST['country']!='') {
    445. 

  445.             $where.="  AND COUNTRY.country_name like '%".$_REQUEST['country']."%' ";
    446. 

  446.             $searchpass .= "&country=".$_REQUEST['country'] ;
    447. 

  447.             $others .=", COUNTRY.country_name ";
    448. 

  448.         }
    449. 

  449.         if(isset($_REQUEST['first_name']) && $_REQUEST['first_name']!='') {
    450. 

  450.             $where.="  AND USR.first_name like '%".$_REQUEST['first_name']."%' ";
    451. 

  451.             $searchpass .= "&first_name=".$_REQUEST['first_name'] ;
    452. 

  452.             $others .=", USR.first_name ";
    453. 

  453.         }
    454. 

  454.         if(isset($_REQUEST['last_name']) && $_REQUEST['last_name']!='') {
    455. 

  455.             $where.="  AND USR.last_name like '%".$_REQUEST['last_name']."%' ";
    456. 

  456.             $searchpass .= "&last_name=".$_REQUEST['last_name'] ;
    457. 

  457.             $others .=", USR.last_name ";
    458. 

  458.         }
    459. 

  459. 

  460.         if(isset($_REQUEST['datefrom']) && $_REQUEST['datefrom']!='mm/dd/YY' && isset($_REQUEST['dateto']) && $_REQUEST['dateto']!='mm/dd/YY') {
    461. 

  461. 

  462.             $eventFromDate=date("Y-m-d",strtotime($_REQUEST['datefrom']));
    463. 

  463.             $urlfromdate  = $_REQUEST['datefrom'];
    464. 

  464. 

  465.             $eventToDate=date("Y-m-d",strtotime($_REQUEST['dateto'])).' 23:59:59';
    466. 

  466.             $urltodate  = $_REQUEST['dateto'];
    467. 

  467. 

  468. 

  469.             $where.="  AND TC.trandate BETWEEN '".$eventFromDate."' AND '".$eventToDate."' ";
    470. 

  470.             $searchpass = "&datefrom=".$urlfromdate."&dateto=".$urltodate ;
    471. 

  471.         }
    472. 

  472. 

  473.         //get number user
    474. 

  474. 

  475.         $query = "SELECT COUNT(DISTINCT USR.id) as num_user, SUM(TC.total_amount) as total_sale ".$from.$where;
    476. 

  476.         $this->set('sqlnum',$query);
    477. 

  477.         $result = mysql_query($query);
    478. 

  478.         $row = mysql_fetch_assoc($result);
    479. 

  479. 

  480.         $this->set('num_user',$row['num_user']);
    481. 

  481.         $this->set('total_sale',$row['total_sale']);
    482. 

  482. 

  483. 

  484.         $PassParameter =$searchpass;
    485. 

  485. 

  486.         $CountField="TC.id";
    487. 

  487.         $this->set("controller","creativezones");
    488. 

  488.         $this->set("action","salesdata");
    489. 

  489.         $this->pagination($select,$from,$where,$others,$CountField,$this->params['url'],$PassParameter);        
    490. 

  490. 

  491.         if(isset($this->params['url']['Page']) || isset($_REQUEST['search'])) {
    492. 

  492.             $this->render("salesdata2","ajax");
    493. 

  493.         }
    494. 

  494. 

  495.     }
    496. 

  496. 

  497.     function creative_invoice_detail() {
    498. 

  498.         $this->layout = "blank";
    499. 

  499.         $this->set("tranId",base64_decode($this->params['url']['inv']));
    500. 

  500.     }
    501. 

  501.     function printscrap() {
    502. 

  502.         $this->layout = "blank";
    503. 

  503.     }
    504. 

  504. 

  505. 

  506.     function submission() {
    507. 

  507.         $this->checkSession();
    508. 

  508.         $this->layout = 'default_user';
    509. 

  509. 

  510.         $select = "SELECT TK.ticket_number,TK.creation,TK.status ,USR.first_name,USR.last_name,USR.email, COUNTRY.country_name, F.ssn_id,F.id";
    511. 

  511.         $from   = " FROM creative_favorites as F
    512. 

  512.                 RIGHT JOIN creative_tickets TK ON (TK.creative_favorites_id = F.id)
    513. 

  513.                 LEFT JOIN user_details USR ON ( F.user_id = USR.user_id )
    514. 

  514.                 LEFT JOIN countries COUNTRY ON ( USR.c_id = COUNTRY.id )";
    515. 

  515.         $where = " WHERE F.is_temp = '0' ";
    516. 

  516.         $others=" GROUP BY F.id
    517. 

  517.                   ORDER BY TK.creation DESC ";
    518. 

    519. 

  519.         $searchpass = '';
    520. 

  520.         if(isset($_REQUEST['ticket']) && $_REQUEST['ticket']!='') {
    521. 

  521.             $where.="  AND TK.ticket_number like '%".$_REQUEST['ticket']."%' ";
    522. 

  522.             $searchpass .= "&ticket=".$_REQUEST['ticket'] ;
    523. 

  523.             $others .=", TK.ticket_number ";
    524. 

  524.         }
    525. 

  525.         if(isset($_REQUEST['email']) && $_REQUEST['email']!='') {
    526. 

  526.             $where.="  AND USR.email like '%".$_REQUEST['email']."%' ";
    527. 

  527.             $searchpass .= "&email=".$_REQUEST['email'] ;
    528. 

  528.             $others .=", USR.email ";
    529. 

  529.         }
    530. 

  530.         if(isset($_REQUEST['prodid']) && $_REQUEST['prodid']!='') {
    531. 

  531.             $where.="  AND F.ssn_id like '%".$_REQUEST['prodid']."%' ";
    532. 

  532.             $searchpass .= "&prodid=".$_REQUEST['prodid'] ;
    533. 

  533.             $others .=", F.ssn_id ";
    534. 

  534.         }
    535. 

  535.         if(isset($_REQUEST['country']) && $_REQUEST['country']!='') {
    536. 

  536.             $where.="  AND COUNTRY.country_name like '%".$_REQUEST['country']."%' ";
    537. 

  537.             $searchpass .= "&country=".$_REQUEST['country'] ;
    538. 

  538.             $others .=", COUNTRY.country_name ";
    539. 

  539.         }
    540. 

  540.         if(isset($_REQUEST['first_name']) && $_REQUEST['first_name']!='') {
    541. 

  541.             $where.="  AND USR.first_name like '%".$_REQUEST['first_name']."%' ";
    542. 

  542.             $searchpass .= "&first_name=".$_REQUEST['first_name'] ;
    543. 

  543.             $others .=", USR.first_name ";
    544. 

  544.         }
    545. 

  545.         if(isset($_REQUEST['last_name']) && $_REQUEST['last_name']!='') {
    546. 

  546.             $where.="  AND USR.last_name like '%".$_REQUEST['last_name']."%' ";
    547. 

  547.             $searchpass .= "&last_name=".$_REQUEST['last_name'] ;
    548. 

  548.             $others .=", USR.last_name ";
    549. 

  549.         }
    550. 

  550. 

  551.         if(isset($_REQUEST['datefrom']) && $_REQUEST['datefrom']!='mm/dd/YY' && isset($_REQUEST['dateto']) && $_REQUEST['dateto']!='mm/dd/YY') {
    552. 

  552. 

  553.             $eventFromDate=date("Y-m-d",strtotime($_REQUEST['datefrom']));
    554. 

  554.             $urlfromdate  = $_REQUEST['datefrom'];
    555. 

  555. 

  556.             $eventToDate=date("Y-m-d",strtotime($_REQUEST['dateto'])).' 23:59:59';
    557. 

  557.             $urltodate  = $_REQUEST['dateto'];
    558. 

  558. 

  559. 

  560.             $where.="  AND TK.creation BETWEEN '".$eventFromDate."' AND '".$eventToDate."' ";
    561. 

  561.             $searchpass = "&datefrom=".$urlfromdate."&dateto=".$urltodate ;
    562. 

  562.         }
    563. 

  563. 

  564.         //get number user
    565. 

  565. 

  566.         $query = "SELECT COUNT(DISTINCT USR.id) as num_user ".$from.$where;
    567. 

  567.         $this->set('sqlnum',$query);
    568. 

  568.         $result = mysql_query($query);
    569. 

  569.         $row = mysql_fetch_assoc($result);
    570. 

  570. 

  571.         $this->set('num_user',$row['num_user']);
    572. 

  572. 

  573. 

  574.         $PassParameter =$searchpass;
    575. 

  575. 

  576.         $CountField="F.id";
    577. 

  577.         $this->set("controller","creativezones");
    578. 

  578.         $this->set("action","submission");
    579. 

  579.         $this->pagination($select,$from,$where,$others,$CountField,$this->params['url'],$PassParameter);
    580. 

  580. 

  581.         if(isset($this->params['url']['Page']) || isset($_REQUEST['search'])) {
    582. 

  582.             $this->render("submission2","ajax");
    583. 

  583.         }
    584. 

  584. 

  585.     }
    586. 

  586. 

  587.     function charges() {
    588. 

  588.         $this->checkSession();
    589. 

  589.         $this->layout = 'default_user';
    590. 

  590. 

  591.         if(isset($_POST['submit'])) {
    592. 

  592.             if($_POST['creative_price']!='')
    593. 

  593.                 $this->savePaymentConfig('creative price',$_POST['creative_price'],'price');
    594. 

  594.             if($_POST['creative_artist_price']!='')
    595. 

  595.                 $this->savePaymentConfig('creative artist price',$_POST['creative_artist_price'],'price');
    596. 

  596. 

  597.             if($_POST['creative_commission']!='')
    598. 

  598.                 $this->savePaymentConfig('creative commission',$_POST['creative_commission'],'%');
    599. 

  599.             
    600. 

  600.             if($_POST['creative_featured']!='')
    601. 

  601.                 $this->savePaymentConfig('creative featured',$_POST['creative_featured'],'price');
    602. 

  602.             if($_POST['creative_featured_days']!='')
    603. 

  603.                 $this->savePaymentConfig('creative featured days',$_POST['creative_featured_days'],'days');
    604. 

  604.             if($_POST['creative_quantity_sold']!='')
    605. 

  605.                 $this->savePaymentConfig('creative quantity sold',$_POST['creative_quantity_sold'],'times');
    606. 

  606. 

  607.             //save 168 Washington sale_tax
    608. 

  608.             if($_POST['sale_tax']!='')
    609. 

  609.                 $this->save_Saletax(1,168,$_POST['sale_tax']);
    610. 

  610. 

  611.             if($_POST['creative_commission_minimum']!='')
    612. 

  612.                 $this->savePaymentConfig('creative commission minimum',$_POST['creative_commission_minimum'],'days');
    613. 

  613.             if($_POST['password_payout']!='')
    614. 

  614.                 $this->savePaymentConfig('password payout',$_POST['password_payout'],'days');
    615. 

  615. 

  616.             //check uppdate price product
    617. 

  617. 

  618.             if($_POST['creative_artist_price']!='' || $_POST['creative_quantity_sold']!='') {
    619. 

  619.                 $artist_price = $this->getPaymentConfig('creative artist price');
    620. 

  620.                 $artist_price = $artist_price['config_value'];
    621. 

  621. 

  622.                 $quantity_sold = $this->getPaymentConfig('creative quantity sold');
    623. 

  623.                 $quantity_sold = $quantity_sold['config_value'];
    624. 

  624. 

  625.                 $query = "UPDATE creative_favorites SET price='".$artist_price."' WHERE type='0' AND is_republished='1' AND num_sell<".$quantity_sold;
    626. 

  626.                 mysql_query($query);
    627. 

  627.             }
    628. 

  628. 

  629.         }
    630. 

  630. 

  631.         $this->getPaymentConfig('creative price',true);
    632. 

  632.         $this->getPaymentConfig('creative artist price',true);
    633. 

  633.         $this->getPaymentConfig('creative commission',true);
    634. 

  634.         $this->getPaymentConfig('creative featured',true);
    635. 

  635.         $this->getPaymentConfig('creative featured days',true);
    636. 

  636.         $this->getPaymentConfig('creative quantity sold',true);
    637. 

  637.         $this->getPaymentConfig('creative commission minimum',true);
    638. 

  638.         $this->getPaymentConfig('password payout',true);
    639. 

  639. 

  640.         $this->get_Saletax(168,true);
    641. 

  641. 

  642.     }
    643. 

  643. 

  644.     function save_Saletax($user_id,$state_id,$tax) {
    645. 

  645.         $query = "SELECT id FROM creative_saletax WHERE state_id='".$state_id."' LIMIT 1";
    646. 

  646.         $result = mysql_query($query);
    647. 

  647.         if(mysql_num_rows($result)>0) {
    648. 

  648.             $query = "UPDATE creative_saletax SET tax='".$tax."' WHERE state_id='".$state_id."'  LIMIT 1";
    649. 

  649.         }else {
    650. 

  650.             $query = "INSERT INTO creative_saletax SET user_id='".$user_id."', state_id='".$state_id."', tax='".$tax."' ";
    651. 

  651.         }
    652. 

  652.         $this->set('sale_tax',$tax);
    653. 

  653.         mysql_query($query);
    654. 

  654.     }
    655. 

  655.     function get_Saletax($state_id,$is_set=false) {
    656. 

  656.         $query = "SELECT * FROM creative_saletax WHERE state_id='".$state_id."' LIMIT 1";
    657. 

  657.         $result = mysql_query($query);
    658. 

  658.         $row = mysql_fetch_assoc($result);
    659. 

  659.         if($is_set) {
    660. 

  660.             $this->set('sale_tax',$row['tax']);
    661. 

  661.         }
    662. 

  662.         return $row;
    663. 

  663.     }
    664. 

  664. 

  665.     function savePaymentConfig($config_name,$config_value,$value_type) {
    666. 

  666.         $query = "SELECT id FROM admin_payment_config WHERE config_name='".$config_name."' LIMIT 1";
    667. 

  667.         $result = mysql_query($query);
    668. 

  668.         if(mysql_num_rows($result)>0) {
    669. 

  669.             $query = "UPDATE admin_payment_config SET config_value='".$config_value."', value_type='".$value_type."' WHERE config_name='".$config_name."'  LIMIT 1";
    670. 

  670.         }else {
    671. 

  671.             $query = "INSERT INTO admin_payment_config SET config_name='".$config_name."', config_value='".$config_value."', value_type='".$value_type."'";
    672. 

  672.         }
    673. 

  673. 

  674.         $this->set(str_replace(' ', '_', $config_name),$config_value);
    675. 

  675.         mysql_query($query);
    676. 

  676.     }
    677. 

  677. 

  678.     function getPaymentConfig($config_name,$is_set=false) {
    679. 

  679.         $query = "SELECT * FROM admin_payment_config WHERE config_name='".$config_name."' LIMIT 1";
    680. 

  680.         $result = mysql_query($query);
    681. 

  681.         $row = mysql_fetch_assoc($result);
    682. 

  682.         if($is_set) {
    683. 

  683.             $this->set(str_replace(' ', '_', $config_name),$row['config_value']);
    684. 

  684.         }
    685. 

  685.         return $row;
    686. 

  686.     }
    687. 

  687. 

  688.     function ticket_approve() {
    689. 

  689.         $this->layout = "blank";
    690. 

  690.         $this->set("ticket_number",base64_decode($this->params['url']['tk']));
    691. 

  691.     }
    692. 

  692. 

  693.     function save_ticket_approval() {
    694. 

  694.         //save data
    695. 

  695.         if(isset($_POST['ticket_number'])) {
    696. 

  696.             $status = $_POST['approve']==1 ? 'Approve' : 'Reject';
    697. 

  697.             //
    698. 

  698.             $query = "SELECT TK.ticket_number,TK.creation,TK.status ,USR.first_name,USR.last_name,USR.email, COUNTRY.country_name, F.ssn_id,F.id,F.user_id,USR.email
    699. 

  699.                     FROM creative_tickets TK
    700. 

  700.                     RIGHT JOIN creative_favorites F ON (TK.creative_favorites_id=F.id)
    701. 

  701.                     LEFT JOIN user_details USR ON ( F.user_id = USR.user_id )
    702. 

  702.                     LEFT JOIN countries COUNTRY ON ( USR.c_id = COUNTRY.id )
    703. 

  703.                     WHERE TK.ticket_number='".$_POST['ticket_number']."'
    704. 

  704.                     LIMIT 1 ";
    705. 

  705.             $result = mysql_query($query);
    706. 

  706.             if(mysql_num_rows($result)>0) {
    707. 

  707.                 $row = mysql_fetch_assoc($result);
    708. 

  708.                 //update ticket
    709. 

  709.                 $sql = "UPDATE creative_tickets SET status ='".$status."', msg_to_user='".$_POST['msg_to_user']."' WHERE ticket_number='".$_POST['ticket_number']."' LIMIT 1  ";
    710. 

  710.                 mysql_query($sql);
    711. 

  711.                 //update favorites
    712. 

  712.                 $sql = "UPDATE creative_favorites SET is_approved ='".$_POST['approve']."' WHERE id='".$row['id']."' LIMIT 1  ";
    713. 

  713.                 mysql_query($sql);
    714. 

  714. 

  715.                 $row['status'] = $status;
    716. 

  716.                 $this->set('row',$row);
    717. 

  717. 

  718.                 //check send mail
    719. 

  719.                 $userDetails=$this->getUserDetails($row['user_id']);
    720. 

  720. 

  721.                 $this->Sendmail->Mail();
    722. 

  722.                 $this->Sendmail->From(FROMMAIL);
    723. 

  723. 

  724.                 if(isset($row['email'])) {
    725. 

  725.                     $this->Sendmail->To($row['email']);
    726. 

  726. 

  727.                     $subject="XOimages - Submission Ticket ".$row['ticket_number'];
    728. 

  728.                     $this->Sendmail->Subject($subject);
    729. 

  729. 

  730.                     $this->set("ticket_number",$row['ticket_number']);
    731. 

  731. 

  732. 

  733.                     $this->Sendmail->layout='email';
    734. 

  734.                     $this->Sendmail->view='mail_ticket_'.($_POST['approve']==1 ? 'approve' : 'reject') ;
    735. 

  735.                     $this->Sendmail->startup($this);
    736. 

  736.                     $messageBody=$this->Sendmail->bodyText();
    737. 

  737. 

  738.                     $this->Sendmail->Body($messageBody);        // set the body
    739. 

  739.                     $this->Sendmail->Priority(1) ;        // set the priority to Low
    740. 

  740.                     $this->Sendmail->Send();        // send the mail
    741. 

  741. 

  742. 

  743.                     //mail sent to the user mail account in the system
    744. 

  744. 

  745.                     $sender=1;
    746. 

  746.                     $receiver=$row['user_id'];
    747. 

  747.                     $this->senderMail($sender,$receiver,$subject,$messageBody);
    748. 

  748.                     $this->receiverMail($receiver,$sender,$subject,$messageBody);
    749. 

  749.                 }
    750. 

  750. 

  751.             }
    752. 

  752.         }
    753. 

  753.         $this->render('save_ticket_approval');
    754. 

  754.     }
    755. 

  755. 

  756.     function product_detail() {
    757. 

  757.         $this->layout = "blank";
    758. 

  758.         $this->set("prodid",base64_decode($this->params['url']['prodid']));
    759. 

  759.     }
    760. 

  760. 

  761.     function categories_image() {
    762. 

  762.         $this->checkSession();
    763. 

  763.         $this->layout = 'default_user';
    764. 

  764.         $this->set('pageHeader','Categories Image');
    765. 

  765. 

  766.         $types= $this->getTypeImage();
    767. 

  767.         $this->set('types',$types);
    768. 

  768. 

  769.         $this->getCategory($types[0]['id']);
    770. 

  770.     }
    771. 

  771. 

  772.     function save_categories_image() {
    773. 

  773.         if(isset($_POST['id_type'])) {
    774. 

  774.             if($_POST['name_category']!='') {
    775. 

  775.                 if($_POST['id_cate']!='') {
    776. 

  776.                     $query = "UPDATE sp_categories SET id_type='".$_POST['id_type']."', name='".$_POST['name_category']."', sequence='".$_POST['sequence']."'
    777. 

  777.                               WHERE id='".$_POST['id_cate']."' ";
    778. 

  778.                 }else
    779. 

  779.                     $query = "INSERT INTO sp_categories SET id_type='".$_POST['id_type']."', name='".$_POST['name_category']."', sequence='".$_POST['sequence']."'  ";
    780. 

  780. 

  781.                 mysql_query($query);
    782. 

  782.             }
    783. 

  783.             $this->getCategory($_POST['id_type'],true);
    784. 

  784.         }
    785. 

  785.     }
    786. 

  786. 

  787.     function removeCategory($id) {
    788. 

  788.         $query = "SELECT id_type FROM sp_categories WHERE id='".$id."' ";
    789. 

  789.         $result = mysql_query($query);
    790. 

  790.         ;
    791. 

  791.         $row= mysql_fetch_assoc($result);
    792. 

  792. 

  793.         $query = "DELETE FROM sp_categories WHERE id='".$id."' ";
    794. 

  794.         mysql_query($query);
    795. 

  795. 

  796. 

  797.         $this->getCategory($row['id_type'],true);
    798. 

  798.     }
    799. 

  799. 

  800.     function editCategory($id) {
    801. 

  801.         $query = "SELECT * FROM sp_categories WHERE id='".$id."'";
    802. 

  802.         $result = mysql_query($query);
    803. 

  803.         $row = mysql_fetch_assoc($result);
    804. 

  804.         $this->set('cate',$row);
    805. 

  805.         $this->set('id',$id);
    806. 

  806.         $this->render('categories_image_edit','ajax');
    807. 

  807.     }
    808. 

  808. 

  809.     function getTypeImage() {
    810. 

  810.         $query = "SELECT * FROM sp_type";
    811. 

  811.         $result = mysql_query($query);
    812. 

  812. 

  813.         $arr = array();
    814. 

  814.         while($row=mysql_fetch_assoc($result)) {
    815. 

  815.             $arr[] = $row;
    816. 

  816.         }
    817. 

  817. 

  818.         return $arr;
    819. 

  819.     }
    820. 

  820. 

  821.     function getCategory($id_type,$is_ajax=false) {
    822. 

  822.         $query = "SELECT * FROM sp_categories WHERE id_type='".$id_type."'";
    823. 

  823.         $result = mysql_query($query);
    824. 

  824. 

  825.         $arr = array();
    826. 

  826.         while($row=mysql_fetch_assoc($result)) {
    827. 

  827.             $arr[] = $row;
    828. 

  828.         }
    829. 

  829. 

  830.         $this->set('categories',$arr);
    831. 

  831. 

  832.         if($is_ajax) {
    833. 

  833.             $this->render('categories_image_change_type','ajax');
    834. 

  834.         }
    835. 

  835.         return $arr;
    836. 

  836.     }
    837. 

  837. 

  838.     function uploadimage() {
    839. 

  839.         $this->checkSession();
    840. 

  840.         $this->layout = 'default_user';
    841. 

  841.         $this->set('pageHeader','Upload Image');
    842. 

  842. 

  843.         $types= $this->getTypeImage();
    844. 

  844.         $this->set('types',$types);
    845. 

  845.         $id_type = $types[0]['id'];
    846. 

  846.         if(isset($_POST['id_type'])) {
    847. 

  847.             $id_type = $_POST['id_type'];
    848. 

  848.             if($_POST['name']!='' && $_POST['id_categori']!='') {
    849. 

  849.                 $is_upload = false;
    850. 

  850.                 if($_FILES['src']['tmp_name']!='') {
    851. 

  851.                     $folder = '';
    852. 

  852.                     switch ($_POST['id_type']) {
    853. 

  853.                         case 1: $folder ='photos';
    854. 

  854.                             break;
    855. 

  855.                         case 2: $folder ='background';
    856. 

  856.                             break;
    857. 

  857.                         case 3: $folder ='superimpose';
    858. 

  858.                             break;
    859. 

  859.                         case 4: $folder ='frame';
    860. 

  860.                             break;
    861. 

  861.                         case 5: $folder ='text_symbol';
    862. 

  862.                             break;
    863. 

  863.                         case 6: $folder ='calendars';
    864. 

  864.                             break;
    865. 

  865.                         case 7: $folder ='graphics';
    866. 

  866.                             break;
    867. 

  867.                     }
    868. 

  868.                     $des = '../../flash/library/'.$folder.'/';
    869. 

  869.                     if(!file_exists($des)) {
    870. 

  870.                         mkdir($des,0777);
    871. 

  871.                     }
    872. 

  872.                     if(!file_exists($des.'thumb')) {
    873. 

  873.                         mkdir($des.'thumb',0777);
    874. 

  874.                     }
    875. 

  875. 

  876.                     $this->Upload->upload($_FILES['src'],$des);
    877. 

  877.                     if($this->Upload->errors!=null) {
    878. 

  878.                         $this->set('error',join('<br/>',$this->Upload->errors));
    879. 

  879.                         $is_upload = false;
    880. 

  880.                     }
    881. 

  881.                     else {
    882. 

  882.                         $is_upload = true;
    883. 

  883.                         $filesrc = str_replace('../../flash/', '', $this->Upload->_name);
    884. 

  884.                         $file['tmp_name'] = $this->Upload->_name;
    885. 

  885. 

  886.                         $this->Upload->_name = $des.'thumb/'.str_replace($des, '', $this->Upload->_name);
    887. 

  887.                         $this->Upload->image($file,'resizemin',array(110,80));
    888. 

  888. 

  889.                         $filethumb = str_replace('../../flash/', '', $this->Upload->_name);
    890. 

  890.                     }
    891. 

  891.                 }
    892. 

  892. 

  893.                 if($_POST['id_photo']=='' && $is_upload) {
    894. 

  894.                     $sql = "INSERT INTO sp_photos SET id_categori='".$_POST['id_categori']."', name='".$_POST['name']."', thumb='".$filethumb."',src='".$filesrc."'";
    895. 

  895.                     mysql_query($sql);
    896. 

  896.                 }elseif ($_POST['id_photo']!='') {
    897. 

  897.                     $sql = "UPDATE sp_photos SET id_categori='".$_POST['id_categori']."', name='".$_POST['name']."' ";
    898. 

  898.                     if($is_upload)
    899. 

  899.                         $sql .=", thumb='".$filethumb."',src='".$filesrc."'";
    900. 

  900. 

  901.                     $sql .=" WHERE id='".$_POST['id_photo']."' ";
    902. 

  902.                     mysql_query($sql);
    903. 

  903.                 }
    904. 

  904.             }
    905. 

  905.         }
    906. 

  906.         $cates = $this->getCategory($id_type);
    907. 

  907.         $id_cate = (count($cates)==0) ? 0 : $cates[0]['id'];
    908. 

  908.         if(isset($_POST['id_categori']) && $_POST['id_categori']!='') {
    909. 

  909.             $id_cate = $_POST['id_categori'];
    910. 

  910.         }
    911. 

  911. 

  912.         $this->set('id_type',$id_type);
    913. 

  913.         $this->set('id_cate',$id_cate);
    914. 

  914. 

  915.         $this->getImage($id_cate);
    916. 

  916.     }
    917. 

  917. 

  918.     function editImage($id) {
    919. 

  919.         $query = "SELECT * FROM sp_photos WHERE id='".$id."'";
    920. 

  920.         $result = mysql_query($query);
    921. 

  921.         $row = mysql_fetch_assoc($result);
    922. 

  922.         $this->set('photo',$row);
    923. 

  923.         $this->set('id',$id);
    924. 

  924.         $this->render('uploadimage_edit','ajax');
    925. 

  925.     }
    926. 

  926. 

  927.     function removeImage($id) {
    928. 

  928.         $query = "SELECT * FROM sp_photos WHERE id='".$id."'";
    929. 

  929.         $result = mysql_query($query);
    930. 

  930.         $row = mysql_fetch_assoc($result);
    931. 

  931.         $id_cate = $row['id_categori'];
    932. 

  932. 

  933.         $query = "DELETE FROM sp_photos WHERE id='".$id."'";
    934. 

  934.         mysql_query($query);
    935. 

  935. 

  936.         $this->getImage($id_cate,true);
    937. 

  937.     }
    938. 

  938. 

  939.     function uploadimage_changetype($id_type) {
    940. 

  940.         $cates = $this->getCategory($id_type);
    941. 

  941.         $id_cate = (count($cates)==0) ? 0 : $cates[0]['id'];
    942. 

  942.         $this->getImage($id_cate,true);
    943. 

  943.     }
    944. 

  944. 

  945.     function getImage($id_categori=null,$is_ajax=false) {
    946. 

  946.         $select = "SELECT * ";
    947. 

  947.         $from = "FROM sp_photos ";
    948. 

  948. 

  949.         $where = "WHERE id_categori='".$id_categori."'";
    950. 

  950. 

  951.         if(isset($_REQUEST['id_categori']) && $_REQUEST['id_categori']!='') {
    952. 

  952.             $id_categori = $_REQUEST['id_categori'];
    953. 

  953.         }
    954. 

  954. 

  955.         $where = "WHERE id_categori='".$id_categori."'";
    956. 

  956.         $searchpass = "id_categori=".$id_categori ;
    957. 

  957. 

  958.         $others = " ORDER BY name";
    959. 

  959. 

  960.         $PassParameter =$searchpass;
    961. 

  961. 

  962.         $CountField="id";
    963. 

  963.         $this->set("controller","creativezones");
    964. 

  964.         $this->set("action","getImage");
    965. 

  965.         $this->pagination($select,$from,$where,$others,$CountField,$this->params['url'],$PassParameter);
    966. 

  966. 

  967.         if(isset($this->params['url']['Page']) || $is_ajax) {
    968. 

  968.             $this->render("uploadimage2","ajax");
    969. 

  969.         }
    970. 

  970.     }
    971. 

  971. 

  972.     function fonts() {
    973. 

  973.         $this->checkSession();
    974. 

  974.         $this->layout = 'default_user';
    975. 

  975.         $this->set('pageHeader','Fonts');
    976. 

  976.         if(isset($_POST['name'])) {
    977. 

  977.             $is_upload = false;
    978. 

  978.             if($_FILES['src']['tmp_name']!='') {
    979. 

  979.                 $folder = '';
    980. 

  980. 

  981.                 $des = '../../flash/FlashDesignFont/';
    982. 

  982.                 if(!file_exists($des)) {
    983. 

  983.                     mkdir($des,0777);
    984. 

  984.                 }
    985. 

  985. 

  986.                 $this->Upload->upload($_FILES['src'],$des,NULL,NULL,array('swf'));
    987. 

  987.                 if($this->Upload->errors!=null) {
    988. 

  988.                     $this->set('error',join('<br/>',$this->Upload->errors));
    989. 

  989.                     $is_upload = false;
    990. 

  990.                 }
    991. 

  991.                 else {
    992. 

  992.                     $is_upload = true;
    993. 

  993.                     $filesrc = str_replace($des, '', $this->Upload->_name);
    994. 

  994.                     $file['tmp_name'] = $this->Upload->_name;
    995. 

  995.                 }
    996. 

  996.             }
    997. 

  997. 

  998.             if($_POST['id_font']=='' && $is_upload) {
    999. 

  999.                 $sql = "INSERT INTO sp_fonts SET name='".$_POST['name']."', class_name='".$_POST['class_name']."', active='".(isset($_POST['active']) ? 1:0)."',src='".$filesrc."'";
    1000. 

  1000.                 mysql_query($sql);
    1001. 

  1001.             }elseif ($_POST['id_font']!='') {
    1002. 

  1002.                 $sql = "UPDATE sp_fonts SET name='".$_POST['name']."', class_name='".$_POST['class_name']."', active='".(isset($_POST['active']) ? 1:0)."' ";
    1003. 

  1003.                 if($is_upload)
    1004. 

  1004.                     $sql .=", src='".$filesrc."'";
    1005. 

  1005. 

  1006.                 $sql .=" WHERE id='".$_POST['id_font']."' ";
    1007. 

  1007.                 mysql_query($sql);
    1008. 

  1008.             }
    1009. 

  1009.         }
    1010. 

  1010.     }
    1011. 

  1011. 

  1012.     function fonts_list() {
    1013. 

  1013.         $query = "SELECT * FROM sp_fonts ";
    1014. 

  1014.         $result = mysql_query($query);
    1015. 

  1015. 

  1016.         $arr = array();
    1017. 

  1017.         while($row=mysql_fetch_assoc($result)) {
    1018. 

  1018.             $arr[] = $row;
    1019. 

  1019.         }
    1020. 

  1020. 

  1021.         $this->set('fonts',$arr);
    1022. 

  1022.         $this->render('fonts_list','ajax');
    1023. 

  1023.     }
    1024. 

  1024. 

  1025.     function fonts_edit($id){
    1026. 

  1026.         $query = "SELECT * FROM sp_fonts WHERE id='".$id."' LIMIT 1";
    1027. 

  1027.         $result = mysql_query($query);
    1028. 

  1028.         $this->set('item',mysql_fetch_array($result));        
    1029. 

  1029.     }
    1030. 

  1030. 

  1031.     function fonts_remove($id){
    1032. 

  1032.         $query = "SELECT * FROM sp_fonts WHERE id='".$id."' LIMIT 1";
    1033. 

  1033.         $result = mysql_query($query);
    1034. 

  1034.         if(($row=mysql_fetch_array($result))){
    1035. 

  1035.             $des = '../../flash/FlashDesignFont/';
    1036. 

  1036.             if(file_exists($des.$row['src'])){
    1037. 

  1037.                 @unlink($des.$row['src']);
    1038. 

  1038.             }
    1039. 

  1039.             mysql_query("DELETE FROM sp_fonts WHERE id='".$id."' ");
    1040. 

  1040.         }
    1041. 

  1041.         $this->fonts_list();
    1042. 

  1042.     }
    1043. 

  1043. 

  1044.     function payment_transactions(){
    1045. 

  1045.         $this->checkSession();
    1046. 

  1046.         $this->redirect(PAYMENT_ADMIN_URL);
    1047. 

  1047.     }
    1048. 

  1048. 

  1049. }
    1050. 

  1050. ?>
    1051.