PageRenderTime 957ms CodeModel.GetById 25ms RepoModel.GetById 0ms app.codeStats 0ms

/Quản lý website trường trung học phổ thông PHP/lc1/modules/banners/admin/edit_banner.php

https://gitlab.com/phamngsinh/baitaplon_sinhvien
PHP | 246 lines | 205 code | 27 blank | 14 comment | 31 complexity | ff8aa57f07313d53c35c632af1825600 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * @Project NUKEVIET 3.0
    5. 

  5.  * @Author VINADES.,JSC (contact@vinades.vn)
    6. 

  6.  * @Copyright (C) 2010 VINADES., JSC. All rights reserved
    7. 

  7.  * @Createdate 3/14/2010 0:50
    8. 

  8.  */
    9. 

  9. 

  10. if ( ! defined( 'NV_IS_FILE_ADMIN' ) ) die( 'Stop!!!' );
    11. 

  11. 

  12. $id = $nv_Request->get_int( 'id', 'get', 0 );
    13. 

  13. 

  14. if ( empty( $id ) )
    15. 

  15. {
    16. 

  16.     Header( "Location: " . NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name );
    17. 

  17.     die();
    18. 

  18. }
    19. 

  19. 

  20. $query = "SELECT * FROM `" . NV_BANNERS_ROWS_GLOBALTABLE . "` WHERE `id`=" . $id;
    21. 

  21. $result = $db->sql_query( $query );
    22. 

  22. $numrows = $db->sql_numrows( $result );
    23. 

  23. if ( $numrows != 1 ) die( 'Stop!!!' );
    24. 

  24. 

  25. $row = $db->sql_fetchrow( $result );
    26. 

  26. 

  27. $file_name = $row['file_name'];
    28. 

  28. $file_ext = $row['file_ext'];
    29. 

  29. $file_mime = $row['file_mime'];
    30. 

  30. $width = $row['width'];
    31. 

  31. $height = $row['height'];
    32. 

  32. 

  33. $page_title = $lang_module['edit_banner'];
    34. 

  34. 

  35. $contents = array();
    36. 

  36. $contents['upload_blocked'] = "";
    37. 

  37. $contents['file_allowed_ext'] = array();
    38. 

  38. if ( preg_match( "/images/", NV_ALLOW_FILES_TYPE ) )
    39. 

  39. {
    40. 

  40.     $contents['file_allowed_ext'][] = "images";
    41. 

  41. }
    42. 

  42. if ( preg_match( "/flash/", NV_ALLOW_FILES_TYPE ) )
    43. 

  43. {
    44. 

  44.     $contents['file_allowed_ext'][] = "flash";
    45. 

  45. }
    46. 

  46. 

  47. if ( empty( $contents['file_allowed_ext'] ) )
    48. 

  48. {
    49. 

  49.     $contents['upload_blocked'] = $lang_module['upload_blocked'];
    50. 

  50.     include ( NV_ROOTDIR . "/includes/header.php" );
    51. 

  51.     echo nv_admin_theme( nv_edit_banner_theme( $contents ) );
    52. 

  52.     include ( NV_ROOTDIR . "/includes/footer.php" );
    53. 

  53.     exit();
    54. 

  54. }
    55. 

  55. 

  56. $query = "SELECT `id`,`login`,`full_name` FROM `" . NV_BANNERS_CLIENTS_GLOBALTABLE . "` ORDER BY `login` ASC";
    57. 

  57. $result = $db->sql_query( $query );
    58. 

  58. 

  59. $clients = array();
    60. 

  60. while ( $cl_row = $db->sql_fetchrow( $result ) )
    61. 

  61. {
    62. 

  62.     $clients[$cl_row['id']] = $cl_row['full_name'] . " (" . $cl_row['login'] . ")";
    63. 

  63. }
    64. 

  64. 

  65. $query = "SELECT `id`,`title`,`blang` FROM `" . NV_BANNERS_PLANS_GLOBALTABLE . "` ORDER BY `blang`, `title` ASC";
    66. 

  66. $result = $db->sql_query( $query );
    67. 

  67. 

  68. $plans = array();
    69. 

  69. while ( $pl_row = $db->sql_fetchrow( $result ) )
    70. 

  70. {
    71. 

  71.     $plans[$pl_row['id']] = $pl_row['title'] . " (" . ( ! empty( $pl_row['blang'] ) ? $language_array[$pl_row['blang']]['name'] : $lang_module['blang_all'] ) . ")";
    72. 

  72. }
    73. 

  73. 

  74. if ( empty( $plans ) )
    75. 

  75. {
    76. 

  76.     Header( "Location: " . NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&" . NV_OP_VARIABLE . "=add_plan" );
    77. 

  77.     die();
    78. 

  78. }
    79. 

  79. 

  80. $error = "";
    81. 

  81. 

  82. if ( $nv_Request->get_int( 'save', 'post' ) == '1' )
    83. 

  83. {
    84. 

  84.     $title = nv_htmlspecialchars( strip_tags( $nv_Request->get_string( 'title', 'post', '' ) ) );
    85. 

  85.     $pid = $nv_Request->get_int( 'pid', 'post', 0 );
    86. 

  86.     $clid = $nv_Request->get_int( 'clid', 'post', 0 );
    87. 

  87.     $file_alt = nv_htmlspecialchars( strip_tags( $nv_Request->get_string( 'file_alt', 'post', '' ) ) );
    88. 

  88.     $click_url = strip_tags( $nv_Request->get_string( 'click_url', 'post', '' ) );
    89. 

  89.     $publ_date = strip_tags( $nv_Request->get_string( 'publ_date', 'post', '' ) );
    90. 

  90.     $exp_date = strip_tags( $nv_Request->get_string( 'exp_date', 'post', '' ) );
    91. 

  91.     if ( ! empty( $publ_date ) and ! preg_match( "/^([0-9]{1,2})\.([0-9]{1,2})\.([0-9]{4})$/", $publ_date ) ) $publ_date = "";
    92. 

  92.     if ( ! empty( $exp_date ) and ! preg_match( "/^([0-9]{1,2})\.([0-9]{1,2})\.([0-9]{4})$/", $exp_date ) ) $exp_date = "";
    93. 

  93.     
    94. 

  94.     if ( ! empty( $clid ) and ! isset( $clients[$clid] ) ) $clid = 0;
    95. 

  95.     if ( $click_url == "http://" ) $click_url = "";
    96. 

  96.     
    97. 

  97.     if ( empty( $title ) )
    98. 

  98.     {
    99. 

  99.         $error = $lang_module['title_empty'];
    100. 

  100.     }
    101. 

  101.     elseif ( empty( $pid ) or ! isset( $plans[$pid] ) )
    102. 

  102.     {
    103. 

  103.         $error = $lang_module['plan_not_selected'];
    104. 

  104.     }
    105. 

  105.     elseif ( ! empty( $click_url ) and ! nv_is_url( $click_url ) )
    106. 

  106.     {
    107. 

  107.         $error = $lang_module['click_url_invalid'];
    108. 

  108.     }
    109. 

  109.     else
    110. 

  110.     {
    111. 

  111.         if ( isset( $_FILES['banner'] ) and is_uploaded_file( $_FILES['banner']['tmp_name'] ) )
    112. 

  112.         {
    113. 

  113.             @require_once ( NV_ROOTDIR . "/includes/class/upload.class.php" );
    114. 

  114.             $upload = new upload( $contents['file_allowed_ext'], $global_config['forbid_extensions'], $global_config['forbid_mimes'], NV_UPLOAD_MAX_FILESIZE, NV_MAX_WIDTH, NV_MAX_HEIGHT );
    115. 

  115.             $upload_info = $upload->save_file( $_FILES['banner'], NV_UPLOADS_REAL_DIR . '/' . NV_BANNER_DIR, false );
    116. 

  116.             @unlink( $_FILES['banner']['tmp_name'] );
    117. 

  117.             if ( ! empty( $upload_info['error'] ) )
    118. 

  118.             {
    119. 

  119.                 $error = $upload_info['error'];
    120. 

  120.             }
    121. 

  121.             else
    122. 

  122.             {
    123. 

  123.                 @chmod( $upload_info['name'], 0644 );
    124. 

  124.                 if ( ! empty( $file_name ) and is_file( NV_ROOTDIR . '/' . $file_name ) )
    125. 

  125.                 {
    126. 

  126.                     @nv_deletefile( NV_ROOTDIR . '/' . $file_name );
    127. 

  127.                 }
    128. 

  128.                 $file_name = $upload_info['basename'];
    129. 

  129.                 $file_ext = $upload_info['ext'];
    130. 

  130.                 $file_mime = $upload_info['mime'];
    131. 

  131.                 $width = $upload_info['img_info'][0];
    132. 

  132.                 $height = $upload_info['img_info'][1];
    133. 

  133.             }
    134. 

  134.         }
    135. 

  135.         if ( empty( $error ) )
    136. 

  136.         {
    137. 

  137.             if ( empty( $publ_date ) )
    138. 

  138.             {
    139. 

  139.                 $publtime = NV_CURRENTTIME;
    140. 

  140.             }
    141. 

  141.             else
    142. 

  142.             {
    143. 

  143.                 unset( $m );
    144. 

  144.                 preg_match( "/^([0-9]{1,2})\.([0-9]{1,2})\.([0-9]{4})$/", $publ_date, $m );
    145. 

  145.                 $publtime = mktime( 0, 0, 0, $m[2], $m[1], $m[3] );
    146. 

  146.                 if ( $publtime < $row['add_time'] ) $publtime = $row['add_time'];
    147. 

  147.             }
    148. 

  148.             
    149. 

  149.             if ( empty( $exp_date ) )
    150. 

  150.             {
    151. 

  151.                 $exptime = 0;
    152. 

  152.             }
    153. 

  153.             else
    154. 

  154.             {
    155. 

  155.                 unset( $m );
    156. 

  156.                 preg_match( "/^([0-9]{1,2})\.([0-9]{1,2})\.([0-9]{4})$/", $exp_date, $m );
    157. 

  157.                 $exptime = mktime( 23, 59, 59, $m[2], $m[1], $m[3] );
    158. 

  158.             }
    159. 

  159.             
    160. 

  160.             if ( $exptime != 0 and $exptime <= $publtime ) $exptime = $publtime;
    161. 

  161.             list( $pid_old ) = $db->sql_fetchrow( $db->sql_query( "SELECT `pid` FROM `" . NV_BANNERS_ROWS_GLOBALTABLE . "` WHERE `id`=" . intval( $id ) . "" ) );
    162. 

  162.             
    163. 

  163.             $sql = "UPDATE `" . NV_BANNERS_ROWS_GLOBALTABLE . "` SET `title`=" . $db->dbescape( $title ) . ", `pid`=" . $pid . ", `clid`=" . $clid . ", 
    164. 

  164.             `file_name`=" . $db->dbescape( $file_name ) . ", `file_ext`=" . $db->dbescape( $file_ext ) . ", `file_mime`=" . $db->dbescape( $file_mime ) . ", 
    165. 

  165.             `width`=" . $width . ", `height`=" . $height . ", `file_alt`=" . $db->dbescape( $file_alt ) . ", `click_url`=" . $db->dbescape( $click_url ) . ", 
    166. 

  166.             `publ_time`=" . $publtime . ", `exp_time`=" . $exptime . " WHERE `id`=" . $id;
    167. 

  167.             $db->sql_query( $sql );
    168. 

  168.             if ( $pid_old != $pid )
    169. 

  169.             {
    170. 

  170.                 nv_fix_banner_weight( $pid );
    171. 

  171.                 nv_fix_banner_weight( $pid_old );
    172. 

  172.             }
    173. 

  173.             nv_insert_logs( NV_LANG_DATA, $module_name, 'log_edit_banner', "bannerid " . $id, $admin_info['userid'] );
    174. 

  174.             nv_CreateXML_bannerPlan();
    175. 

  175.             
    176. 

  176.             Header( "Location: " . NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&" . NV_OP_VARIABLE . "=info_banner&id=" . $id );
    177. 

  177.             die();
    178. 

  178.         }
    179. 

  179.     }
    180. 

  180. }
    181. 

  181. else
    182. 

  182. {
    183. 

  183.     $title = $row['title'];
    184. 

  184.     $pid = $row['pid'];
    185. 

  185.     $clid = $row['clid'];
    186. 

  186.     $file_alt = $row['file_alt'];
    187. 

  187.     $click_url = $row['click_url'];
    188. 

  188.     $publ_date = ! empty( $row['publ_time'] ) ? date( "d.m.Y", $row['publ_time'] ) : "";
    189. 

  189.     $exp_date = ! empty( $row['exp_time'] ) ? date( "d.m.Y", $row['exp_time'] ) : "";
    190. 

  190. }
    191. 

  191. 

  192. if ( $click_url == "" ) $click_url = "http://";
    193. 

  193. $contents['info'] = ( ! empty( $error ) ) ? $error : $lang_module['edit_banner_info'];
    194. 

  194. $contents['is_error'] = ( ! empty( $error ) ) ? 1 : 0;
    195. 

  195. $contents['file_allowed_ext'] = implode( ", ", $contents['file_allowed_ext'] );
    196. 

  196. $contents['submit'] = $lang_module['edit_banner'];
    197. 

  197. $contents['action'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=edit_banner&amp;id=" . $id;
    198. 

  198. $contents['title'] = array( 
    199. 

  199.     $lang_module['title'], 'title', $title, 255 
    200. 

  200. );
    201. 

  201. $contents['plan'] = array( 
    202. 

  202.     $lang_module['in_plan'], 'pid', $plans, $pid 
    203. 

  203. );
    204. 

  204. $contents['client'] = array( 
    205. 

  205.     $lang_module['of_client'], 'clid', $clients, $clid 
    206. 

  206. );
    207. 

  207. //$contents['file_name'] = array( $lang_module['file_name'], NV_BASE_SITEURL . $file_name, "return hs.expand(this);", NV_BASE_SITEURL . "images/ico_" . $file_ext . ".gif", $lang_global['show_picture'] );
    208. 

  208. $contents['file_name'] = array( 
    209. 

  209.     $lang_module['file_name'], NV_BASE_SITEURL . NV_UPLOADS_DIR . "/" . NV_BANNER_DIR . "/" . $file_name, "rel=\"shadowbox;height=" . $height . ";width=" . $width . "\"", NV_BASE_SITEURL . "images/ico_" . $file_ext . ".gif", $lang_global['show_picture'] 
    210. 

  210. );
    211. 

  211. $contents['upload'] = array( 
    212. 

  212.     sprintf( $lang_module['re_upload'], $contents['file_allowed_ext'] ), 'banner' 
    213. 

  213. );
    214. 

  214. $contents['file_alt'] = array( 
    215. 

  215.     $lang_module['file_alt'], 'file_alt', $file_alt, 255 
    216. 

  216. );
    217. 

  217. $contents['click_url'] = array( 
    218. 

  218.     $lang_module['click_url'], 'click_url', $click_url, 255 
    219. 

  219. );
    220. 

  220. $contents['publ_date'] = array( 
    221. 

  221.     $lang_module['publ_date'], 'publ_date', $publ_date, 10, NV_BASE_SITEURL . "images/calendar.jpg", 18, 17, "popCalendar.show(this, 'publ_date', 'dd.mm.yyyy', true);" 
    222. 

  222. );
    223. 

  223. $contents['exp_date'] = array( 
    224. 

  224.     $lang_module['exp_date'], 'exp_date', $exp_date, 10, NV_BASE_SITEURL . "images/calendar.jpg", 18, 17, "popCalendar.show(this, 'exp_date', 'dd.mm.yyyy', true);" 
    225. 

  225. );
    226. 

  226. 

  227. $my_head = "<script type=\"text/javascript\" src=\"" . NV_BASE_SITEURL . "js/popcalendar/popcalendar.js\"></script>\n";
    228. 

  228. //$my_head .= "<script type=\"text/javascript\" src=\"" . NV_BASE_SITEURL . "js/highslide/highslide.js\"></script>\n";
    229. 

  229. //$my_head .= "<link rel=\"stylesheet\" type=\"text/css\" href=\"" . NV_BASE_SITEURL . "js/highslide/highslide.css\" />\n";
    230. 

  230. //$my_head .= "<script type=\"text/javascript\">\n";
    231. 

  231. //$my_head .= "	hs.wrapperClassName = 'wide-border';\n";
    232. 

  232. //$my_head .= "</script>\n";
    233. 

  233. $my_head .= "<script type=\"text/javascript\" src=\"" . NV_BASE_SITEURL . "js/shadowbox/shadowbox.js\"></script>\n";
    234. 

  234. $my_head .= "<link rel=\"stylesheet\" type=\"text/css\" href=\"" . NV_BASE_SITEURL . "js/shadowbox/shadowbox.css\" />\n";
    235. 

  235. $my_head .= "<script type=\"text/javascript\">\n";
    236. 

  236. $my_head .= "Shadowbox.init({\n";
    237. 

  237. //$my_head .= "handleOversize: \"drag\",\n";
    238. 

  238. //$my_head .= "modal: true\n";
    239. 

  239. $my_head .= "});\n";
    240. 

  240. $my_head .= "</script>\n";
    241. 

  241. 

  242. include ( NV_ROOTDIR . "/includes/header.php" );
    243. 

  243. echo nv_admin_theme( nv_edit_banner_theme( $contents ) );
    244. 

  244. include ( NV_ROOTDIR . "/includes/footer.php" );
    245. 

  245. 

  246. ?>
    247.