Your IP : 216.73.216.170
<?php
$inc_path = "../../haibo/en/";$ua_sm_compile_dir = "newmember/";
require($inc_path."global.php");
require("session.php");$tb_prefix= $_SESSION['Version']."_";
require($inc_path .APP_NAME. 'configs/db_session.php');
require(LIB_PATH.'controllers/upload.inc.php');
require(LIB_PATH.'controllers/GDImage.inc.php');
require($inc_path .APP_NAME. 'include/inc.imageWaterMark.php');
if($_SESSION['Version']=="en")setvar("imgpath", "../../upload/".$_SESSION['MemberName']."/");else setvar("imgpath", "../../".$_SESSION['Version']."/upload/".$_SESSION['MemberName']."/");
uses("setting","company","section","flash","member");
$flash= new Flash();
$setting = new Settings();
$section= new Newsection();
$company= new Companies();
$tpl_file = "flash_list";
$conditions = " member_id = ".$_SESSION['MemberID'];
$company_id = $company->field("id", "member_id=".$_SESSION['MemberID']);
if ($_GET['act'] == "upload_range" && !empty($_GET['id'])) {
$vals['flash_range'] =$time_stamp;
$flash->save($vals, "update", $_GET['id'], null,'');
}
if ($_GET['act'] == "del" && !empty($_GET['id'])) {
$sql="select img from ".$_SESSION['Version']."_flash where id='".$_GET['id']."'";
$rr = $g_db->GetAll($sql);
foreach($rr as $k=>$v){
if($_SESSION['Version']=="en") {
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/small/'.$v['img']);
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/middle/'.$v['img']);
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/big/'.$v['img']);
} else {
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/small/'.$v['img']);
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/middle/'.$v['img']);
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/big/'.$v['img']);
}
}
$sql = "select img from ".$_SESSION['Version']."_flash where id = ".$_GET['id']." and member_id = ".$_SESSION['MemberID']." order by flash_range DESC
";
$res = $g_db->GetArray($sql);
$check_path = uaCheckMediaPath('..'.DS.'..'.DS.$_SESSION['MemberName'].DS.$_SESSION['Version'].DS.$_SESSION['MemberName'].DS."flash".DS);
$oldfile = substr($check_path,0,-7).$res[0][0];
$oldfile = str_replace("\\","/",$oldfile);
@unlink($oldfile);
$oldsmallfile = substr($check_path,0,-11)."small".DS.$res[0][0];
@unlink(str_replace("\\","/",$oldsmallfile));
$flash->del($_GET['id'],$conditions);
}
$sql = "select * from ".$_SESSION['Version']."_flash where ".$conditions ." order by flash_range DESC";
$res = $g_db->GetArray($sql);
setvar("flashlist",$res);
if ($_GET['act']=="add") {
$tpl_file='flash_img';
}
if ($_GET['action']=="mod"&&isset($_GET['id'])) {
$conditions = "member_id = ".$_SESSION['MemberID'];
$sql = "select * from ".$_SESSION['Version']."_flash where id = ".$_GET['id']." and member_id = ".$_SESSION['MemberID']." order by flash_range DESC
";
$res = $g_db->GetArray($sql);
setvar("flash",$res[0]);
$tpl_file = "flash_edit";
}
if($_POST['act']=="flash_add"){
$vals = array();
$count=$_POST['upcount']+1;
for($i=1;$i<=$count;$i++)
{
if (!empty($_FILES['file'.$i]['name'])) {
$f = $_FILES['file'.$i];
ini_set("memory_limit", "32M");
$check_path = uaCheckMediaPath('..'.DS.'..'.DS.$_SESSION['MemberName'].DS.$_SESSION['Version'].DS.$_SESSION['MemberName'].DS."flash".DS);
$file_ext = fileext($f['name']);
if($_SESSION['Version']=='en'){$p_name=$_POST['title'.$i];
$p_name = str_replace(" ","",$p_name);
$p_name = str_replace("&","",$p_name);
$p_name = str_replace(",","",$p_name);
$p_name = str_replace("/","",$p_name);
$p_name = str_replace(".","",$p_name);
$p_name = str_replace("%","",$p_name);
$p_name = str_replace("(","",$p_name);
$p_name = str_replace(")","",$p_name);
$p_name = str_replace("#","",$p_name);
$p_name = str_replace("@","",$p_name);
$p_name = str_replace("*","",$p_name);
$p_name = str_replace("=","",$p_name);
$p_name = str_replace(":","",$p_name);
$p_name = str_replace("-","",$p_name);
$p_name = str_replace("_","",$p_name);
$p_name = str_replace("!","",$p_name);
$p_name = str_replace("?","",$p_name);
$p_name = str_replace("\'","",$p_name);
$p_name = str_replace("\"","",$p_name);
$p_name = str_replace("'","",$p_name);
$p_name = str_replace("+","",$p_name);
$p_name = str_replace("'","",$p_name);
$p_name = str_replace("`","",$p_name);
$p_name = str_replace("$","",$p_name);
$p_name = str_replace("[","",$p_name);
$p_name = str_replace("]","",$p_name);
$p_name = str_replace("“","",$p_name);
$p_name = str_replace("”","",$p_name);
$this_product_pic = "banner_".$_SESSION['MemberID']."_homeslide_".$p_name."_".$i.$time_stamp.$file_ext;}
else $this_product_pic = "banner_".$_SESSION['MemberID']."_homeslide_".$i.$time_stamp.$file_ext;
$u = new upload($f['name']);
if($u->checkImage()){
$uploade_file = move_uploaded_file($f['tmp_name'],$check_path.$this_product_pic);
}else{
flash("./tip.php","./flash.php", $cfg['room']['pic_upload_error'],0);
}
$image = new GDImage2($check_path,uaCheckMediaPath('..'.DS.'..'.DS.$_SESSION['MemberName'].DS.$_SESSION['Version'].DS.$_SESSION['MemberName'].DS."flash".DS,"small".DS));
$image->makeThumb($this_product_pic);
$set_watermark = $setting->field("ab","aa='watermark'");
if($set_watermark && empty($pid)){
$water_text = $setting->field("ab","aa='watertext'");
$water_color = $setting->field("ab","aa='watercolor'");
if (empty($water_text)) {
$water_text = URL;
}
imageWaterMark($check_path.$this_product_pic,8,"",$water_text,5,$water_color);
}
if(!empty($this_product_pic)) {
$sql="select img from ".$_SESSION['Version']."_img where id='".$_POST['id'.$i]."'";
$rr = $g_db->GetAll($sql);
foreach($rr as $k=>$v){
if($_SESSION['Version']=="en") {
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/small/'.$v['img']);
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/middle/'.$v['img']);
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/big/'.$v['img']);
} else {
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/small/'.$v['img']);
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/middle/'.$v['img']);
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/big/'.$v['img']);
}
}
$vals['img'] = $this_product_pic;
}
$vals['name'] = $_POST['title'.$i];
$vals['des'] = $_POST['des2'.$i];
$vals['website'] = $_POST['des'.$i];
$vals['member_id'] = $_SESSION['MemberID'];
$vals['company_id'] = $company_id;
$vals['created'] = $time_stamp;
$vals['flash_range']=$time_stamp;
$result = $flash->save($vals);
}
}
if($result)flash("./tip.php","./flash.php",$la[396]);
else flash("./tip.php","../flash.php",$la[397]);
}
if (isset($_POST['action'])) {
if($_POST['action']=="flash_edit"){
$vals = array();
$pid = intval($_POST['id']);
if (!empty($_FILES['pic']['name'])) {
$f = $_FILES['pic'];
ini_set("memory_limit", "32M");
$check_path = uaCheckMediaPath('..'.DS.'..'.DS.$_SESSION['MemberName'].DS.$_SESSION['Version'].DS.$_SESSION['MemberName'].DS."flash".DS);
$file_ext = fileext($f['name']);
if($_SESSION['Version']=='en'){$p_name=$_POST['title'.$i];
$p_name = str_replace(" ","",$p_name);
$p_name = str_replace("&","",$p_name);
$p_name = str_replace(",","",$p_name);
$p_name = str_replace("/","",$p_name);
$p_name = str_replace(".","",$p_name);
$p_name = str_replace("%","",$p_name);
$p_name = str_replace("(","",$p_name);
$p_name = str_replace(")","",$p_name);
$p_name = str_replace("#","",$p_name);
$p_name = str_replace("@","",$p_name);
$p_name = str_replace("*","",$p_name);
$p_name = str_replace("=","",$p_name);
$p_name = str_replace(":","",$p_name);
$p_name = str_replace("-","",$p_name);
$p_name = str_replace("_","",$p_name);
$p_name = str_replace("!","",$p_name);
$p_name = str_replace("?","",$p_name);
$p_name = str_replace("\'","",$p_name);
$p_name = str_replace("\"","",$p_name);
$p_name = str_replace("'","",$p_name);
$p_name = str_replace("+","",$p_name);
$p_name = str_replace("'","",$p_name);
$p_name = str_replace("`","",$p_name);
$p_name = str_replace("$","",$p_name);
$p_name = str_replace("[","",$p_name);
$p_name = str_replace("]","",$p_name);
$p_name = str_replace("“","",$p_name);
$p_name = str_replace("”","",$p_name);
$this_product_pic = "banner_".$_SESSION['MemberID']."_homeslide_".$p_name."_".$i.$time_stamp.$file_ext;}
else $this_product_pic = "banner_".$_SESSION['MemberID']."_homeslide_".$i.$time_stamp.$file_ext;
$u = new upload($f['name']);
if($u->checkImage()){
$uploade_file = move_uploaded_file($f['tmp_name'],$check_path.$this_product_pic);
}else{
flash("./tip.php","./flash.php", $cfg['room']['pic_upload_error'],0);
}
if(!$uploade_file){
flash("./tip.php","./flash.php",$cfg['room']['pic_upload_false'],0);
}else {
$oldfile = substr($check_path,0,-7).$_POST['oldimgname'];
$oldfile = str_replace("\\","/",$oldfile);
@unlink($oldfile);
$oldsmallfile = substr($check_path,0,-11)."small".DS.$_POST['oldimgname'];
@unlink(str_replace("\\","/",$oldsmallfile));
}
$image = new GDImage2($check_path,uaCheckMediaPath('..'.DS.'..'.DS.$_SESSION['MemberName'].DS.$_SESSION['Version'].DS.$_SESSION['MemberName'].DS."flash".DS,"small".DS));
$image->makeThumb($this_product_pic);
$set_watermark = $setting->field("ab","aa='watermark'");
if($set_watermark && empty($pid)){
$water_text = $setting->field("ab","aa='watertext'");
$water_color = $setting->field("ab","aa='watercolor'");
if (empty($water_text)) {
$water_text = URL;
}
imageWaterMark($check_path.$this_product_pic,8,"",$water_text,5,$water_color);
}
}
if(!empty($this_product_pic)) {
$sql="select img from ".$_SESSION['Version']."_img where id='".$_POST['id'.$i]."'";
$rr = $g_db->GetAll($sql);
foreach($rr as $k=>$v){
if($_SESSION['Version']=="en") {
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/small/'.$v['img']);
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/middle/'.$v['img']);
@unlink('../../upload/'.$_SESSION['MemberName'].'/upload/big/'.$v['img']);
} else {
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/small/'.$v['img']);
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/middle/'.$v['img']);
@unlink('../../'.$_SESSION['Version'].'/upload/'.$_SESSION['MemberName'].'/upload/big/'.$v['img']);
}
}
$vals['img'] = $this_product_pic;
}
$vals['name'] = $_POST['name'];
$vals['des'] = $_POST['des2'];
$vals['website'] = $_POST['website'];
array_walk($vals,"uatrim");
if (empty($company_id)) {
flash("./tip.php","./flash.php", $cfg['room']['re_complete_corp'],0);
}
if (!empty($pid)) {
$result = $flash->save($vals, "update", $pid, null,'');
}else {
$vals['member_id'] = $_SESSION['MemberID'];
$vals['company_id'] = $company_id;
$vals['created'] = $time_stamp;
$result = $flash->save($vals);
}
if ($result) {
flash("./tip.php","./flash.php",$cfg['room']['action_complete']);
}else {
flash("./tip.php","./flash.php",$cfg['room']['not_defined_error'],0);
}
}
}
include("head.php");template("newmember/".$tpl_file);
?>