PageRenderTime 120ms CodeModel.GetById 17ms RepoModel.GetById 2ms app.codeStats 0ms

/src/beheer/insertAanbieder.php

https://bitbucket.org/jwubs/gratisgolfpolis.nl
PHP | 71 lines | 59 code | 12 blank | 0 comment | 6 complexity | 25f2ac67e30c1f732eed9055d66805eb MD5 | raw file
    

  1. <?php
    2. 

  2. 	$conn = mysql_connect('91.184.10.91', 'mysqlgratisgolf', 'g0lfp0l1s');
    3. 

  3. 	mysql_select_db('gratisgolfpolis', $conn);
    4. 

  4. 

  5. 	$tok = explode('.',$_FILES["logorechts"]["name"]);
    6. 

  6. 	$logorechts = 'logo'.$_POST["name"].'_rechts.'.$tok[count($tok)-1];
    7. 

  7. 	move_uploaded_file($_FILES["logorechts"]["tmp_name"], "../img/aanbieders/".$logorechts);
    8. 

  8. 	$logopath = getcwd().'/../img/aanbieders/'.$logorechts;
    9. 

  9. 	chmod($logopath, 0777);
    10. 

  10. 

  11. 	$tok = explode('.',$_FILES["logolinks"]["name"]);
    12. 

  12. 	$logolinks = 'logo'.$_POST["name"].'_links.'.$tok[count($tok)-1];
    13. 

  13. 	move_uploaded_file($_FILES["logolinks"]["tmp_name"], "../img/aanbieders/".$logolinks);
    14. 

  14. 	$logopath = getcwd().'/../img/aanbieders/'.$logolinks;
    15. 

  15. 	chmod($logopath, 0777);
    16. 

  16. 

  17. 	$result = mysql_query("SELECT * FROM user WHERE id='".$_COOKIE["bid"]."'");
    18. 

  18. 	$aantal = mysql_num_rows($result);
    19. 

  19. 

  20. 

  21. 	if($aantal==1){
    22. 

  22. 		$row = mysql_fetch_array($result);
    23. 

  23. 		$bid = $row["id"];
    24. 

  24. 		$bname = $row['name'];
    25. 

  25. 

  26. 	} else {
    27. 

  27. 		header("Location:login.html");
    28. 

  28. 	}
    29. 

  29. 	
    30. 

  30. 	$entrycode=0;
    31. 

  31. 	if($_POST["entrycode"]=="ja"){	
    32. 

  32. 		$entrycode=1;
    33. 

  33. 	}
    34. 

  34. 	
    35. 

  35. 	$algemeenaktie=0;
    36. 

  36. 	if($_POST["algemeenaktie"]=="ja"){	
    37. 

  37. 		$algemeenaktie=1;
    38. 

  38. 	}
    39. 

  39. 	
    40. 

  40. 	$sponsorpagina=0;
    41. 

  41. 	if($_POST["sponsorpagina"]=="ja"){	
    42. 

  42. 		$sponsorpagina=1;
    43. 

  43. 	}
    44. 

  44. 

  45. 	
    46. 

  46. 	if(isset($_POST["urlname"])){
    47. 

  47. 		mkdir(getcwd()."/../".$_POST["urlname"],0777);
    48. 

  48. 		
    49. 

  49. 		$myFile = getcwd()."/../".$_POST["urlname"]."/index.html";
    50. 

  50. 		$fh = fopen($myFile, 'w') or die("can't open file");
    51. 

  51. 		
    52. 

  52. 		$stringData = "<html><head></head><body onload='document.forms[0].submit();'>\n";
    53. 

  53. 		fwrite($fh, $stringData);
    54. 

  54. 		
    55. 

  55. 		$stringData = "<form action='/go2sponsor.php' method='post'>\n";
    56. 

  56. 		fwrite($fh, $stringData);
    57. 

  57. 		
    58. 

  58. 		$stringData = "<input type='hidden' name='sponsor' value='".$_POST["urlname"]."' />\n";
    59. 

  59. 		fwrite($fh, $stringData);
    60. 

  60. 		
    61. 

  61. 		$stringData = "</form></body></html>\n";
    62. 

  62. 		fwrite($fh, $stringData);
    63. 

  63. 		
    64. 

  64. 		fclose($fh);
    65. 

  65. 	}
    66. 

  66. 	
    67. 

  67. 	$str = "INSERT INTO aanbieders (name, urlname, logorechts, logolinks, intro, detail, exitlink, entrycode, algemeenaktie, sponsorpagina, kvk, bedrijfsnaam, adres, huisnr, postcode, plaats, telefoon, fax, email, homepage, kontaktpersoon) VALUES ('".$_POST["name"]."','".$_POST["urlname"]."','".$logorechts."','".$logolinks."','".str_replace("'","\'",$_POST["intro"])."','".str_replace("'","\'",$_POST["detailtext"])."','".$_POST["exitlink"]."',".$entrycode.",".$algemeenaktie.",".$sponsorpagina.",'". $_POST["kvk"]."','". $_POST["bedrijfsnaam"]."','".$_POST["adres"]."','".$_POST["huisnr"]."','".$_POST["postcode"]."','".$_POST["plaats"]."','".$_POST["telefoon"]."','".$_POST["fax"]."','".$_POST["email"]."','".$_POST["homepage"]."','".$_POST["kontaktpersoon"]."')";
    68. 

  68. 	mysql_query($str);
    69. 

  69. 

  70. 	header("Location:index.php?act=aanbieders");
    71. 

  71. ?>
    72. 

  72.