/src/beheer/insertAanbieder.php
PHP | 71 lines | 59 code | 12 blank | 0 comment | 6 complexity | 25f2ac67e30c1f732eed9055d66805eb MD5 | raw file
- <?php
- $conn = mysql_connect('91.184.10.91', 'mysqlgratisgolf', 'g0lfp0l1s');
- mysql_select_db('gratisgolfpolis', $conn);
- $tok = explode('.',$_FILES["logorechts"]["name"]);
- $logorechts = 'logo'.$_POST["name"].'_rechts.'.$tok[count($tok)-1];
- move_uploaded_file($_FILES["logorechts"]["tmp_name"], "../img/aanbieders/".$logorechts);
- $logopath = getcwd().'/../img/aanbieders/'.$logorechts;
- chmod($logopath, 0777);
- $tok = explode('.',$_FILES["logolinks"]["name"]);
- $logolinks = 'logo'.$_POST["name"].'_links.'.$tok[count($tok)-1];
- move_uploaded_file($_FILES["logolinks"]["tmp_name"], "../img/aanbieders/".$logolinks);
- $logopath = getcwd().'/../img/aanbieders/'.$logolinks;
- chmod($logopath, 0777);
- $result = mysql_query("SELECT * FROM user WHERE id='".$_COOKIE["bid"]."'");
- $aantal = mysql_num_rows($result);
- if($aantal==1){
- $row = mysql_fetch_array($result);
- $bid = $row["id"];
- $bname = $row['name'];
- } else {
- header("Location:login.html");
- }
-
- $entrycode=0;
- if($_POST["entrycode"]=="ja"){
- $entrycode=1;
- }
-
- $algemeenaktie=0;
- if($_POST["algemeenaktie"]=="ja"){
- $algemeenaktie=1;
- }
-
- $sponsorpagina=0;
- if($_POST["sponsorpagina"]=="ja"){
- $sponsorpagina=1;
- }
-
- if(isset($_POST["urlname"])){
- mkdir(getcwd()."/../".$_POST["urlname"],0777);
-
- $myFile = getcwd()."/../".$_POST["urlname"]."/index.html";
- $fh = fopen($myFile, 'w') or die("can't open file");
-
- $stringData = "<html><head></head><body onload='document.forms[0].submit();'>\n";
- fwrite($fh, $stringData);
-
- $stringData = "<form action='/go2sponsor.php' method='post'>\n";
- fwrite($fh, $stringData);
-
- $stringData = "<input type='hidden' name='sponsor' value='".$_POST["urlname"]."' />\n";
- fwrite($fh, $stringData);
-
- $stringData = "</form></body></html>\n";
- fwrite($fh, $stringData);
-
- fclose($fh);
- }
-
- $str = "INSERT INTO aanbieders (name, urlname, logorechts, logolinks, intro, detail, exitlink, entrycode, algemeenaktie, sponsorpagina, kvk, bedrijfsnaam, adres, huisnr, postcode, plaats, telefoon, fax, email, homepage, kontaktpersoon) VALUES ('".$_POST["name"]."','".$_POST["urlname"]."','".$logorechts."','".$logolinks."','".str_replace("'","\'",$_POST["intro"])."','".str_replace("'","\'",$_POST["detailtext"])."','".$_POST["exitlink"]."',".$entrycode.",".$algemeenaktie.",".$sponsorpagina.",'". $_POST["kvk"]."','". $_POST["bedrijfsnaam"]."','".$_POST["adres"]."','".$_POST["huisnr"]."','".$_POST["postcode"]."','".$_POST["plaats"]."','".$_POST["telefoon"]."','".$_POST["fax"]."','".$_POST["email"]."','".$_POST["homepage"]."','".$_POST["kontaktpersoon"]."')";
- mysql_query($str);
- header("Location:index.php?act=aanbieders");
- ?>