ACC SHELL
<?php
class reference{
function foto($path){
$img_info = getimagesize($path['tmp_name']);
if($img_info[2] == 2){
$img = imagecreatefromjpeg($path['tmp_name']);
$this->img_name = time().rand(100,999).'.jpg';
$path = '../ref_img/'.$this->img_name;
$sirka = 138;
if($sirka < $img_info[0]){
$dif = $img_info[0] / $sirka;
$viska = $img_info[1] / $dif;
$viska = (int)$viska;
}
else{
$sirka = $img_info[0];
$viska = $img_info[1];
}
$obr = imagecreatetruecolor($sirka,$viska);
imagecopyresampled($obr,$img,0,0,0,0,$sirka,$viska,$img_info[0],$img_info[1]);
imagejpeg($obr,$path,100);
imagedestroy($img);
imagedestroy($obr);
return 'COMPLETED';
}
else{
return 'IMG_TYPE_ERROR';
}
}
function add($path,$name,$link,$memo){
if(!empty($path['name']) && !empty($name)){
$seo_url = $name;
$name = addslashes($name);
$memo = addslashes($memo);
$link = addslashes($link);
$seo_url = strtr($seo_url, "áäčďéěëíňóöřą»úůüýžÁÄČĎÉĚËÍŇÓÖŘ©«ÚŮÜÝ® ", "aacdeeeinoorstuuuyzAACDEEEINOORSTUUUYZ-");
$seo_url = str_replace('\"','qt',$seo_url);
$seo_url = str_replace('\'','qt',$seo_url);
$query = "SELECT COUNT(*) AS pocet FROM ".DBPREFIX."reference WHERE seo_url = '$seo_url'";
$sent = mysql_query($query);
$data = mysql_fetch_object($sent);
if($data->pocet > 0) return REF_NAME_EXIST;
$foto = $this->foto($path);
if($foto == 'COMPLETED'){
$query = "INSERT INTO ".DBPREFIX."reference (name, memo, foto, link, seo_url) VALUES('$name','$memo','$this->img_name','$link','$seo_url')";
if(mysql_query($query)){
return REFERENCE_ADDED;
}
else{
return SQL_ERROR.mysql_error();
}
}
else{
return IMG_FORM_ERROR;
}
}
else{
return FORM_EMPTY;
}
}
var $id, $name, $memo, $foto, $link;
function select(){
$query = "SELECT id, name FROM ".DBPREFIX."reference ORDER BY name";
$sent = mysql_query($query);
while($data = mysql_fetch_object($sent)){
$this->id[] = $data->id;
$this->name[] = stripslashes($data->name);
}
}
function select_one($id){
$query = "SELECT * FROM ".DBPREFIX."reference WHERE id = '$id'";
$sent = mysql_query($query);
$data = mysql_fetch_object($sent);
$this->id = $data->id;
$this->name = stripslashes($data->name);
$this->memo = stripslashes($data->memo);
$this->foto = $data->foto;
$this->link = stripslashes($data->link);
}
function delete($id){
$query = "SELECT foto FROM ".DBPREFIX."reference WHERE id = '$id'";
$sent = mysql_query($query);
$data = mysql_fetch_object($sent);
@unlink("../ref_img/$data->foto");
$query = "DELETE FROM ".DBPREFIX."reference WHERE id = '$id'";
mysql_query($query);
return REFERENCE_DELETED;
}
function edit($id, $name, $memo, $foto, $link){
if(!empty($name)){
$seo_url = $name;
$name = addslashes($name);
$memo = addslashes($memo);
$link = addslashes($link);
$seo_url = strtr($seo_url, "áäčďéěëíňóöřą»úůüýžÁÄČĎÉĚËÍŇÓÖŘ©«ÚŮÜÝ® ", "aacdeeeinoorstuuuyzAACDEEEINOORSTUUUYZ-");
$seo_url = str_replace('\"','qt',$seo_url);
$seo_url = str_replace('\'','qt',$seo_url);
$query = "SELECT COUNT(*) AS pocet FROM ".DBPREFIX."reference WHERE seo_url = '$seo_url' && id != '$id'";
$sent = mysql_query($query);
$data = mysql_fetch_object($sent);
if($data->pocet > 0) return REF_NAME_EXIST;
if(empty($foto['name'])){
$query = "UPDATE ".DBPREFIX."reference SET name = '$name', memo = '$memo', link = '$link', seo_url = '$seo_url' WHERE id = '$id'";
if(mysql_query($query)){
return REFERENCE_EDITED;
}
else{
return SQL_ERROR.mysql_error();
}
}
else{
$ft = $this->foto($foto);
if($ft == 'COMPLETED'){
$query = "SELECT foto FROM ".DBPREFIX."reference WHERE id = '$id'";
$sent = mysql_query($query);
$data = mysql_fetch_object($sent);
@unlink('../ref_img/'.$data->foto);
$query = "UPDATE ".DBPREFIX."reference
SET name = '$name', memo = '$memo', link = '$link', foto = '$this->img_name', seo_url = '$seo_url'
WHERE id = '$id'";
if(mysql_query($query)){
return REFERENCE_EDITED;
}
else{
return SQL_ERROR;
}
}
else{
return IMG_FORM_ERROR;
}
}
}
else{
return FORM_EMPTY;
}
}
}
?>
ACC SHELL 2018