1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
|
<?php
$formid = "Drawing";
require_once "inc/configure.php";
if(havePermission("TDu")==false){
myerror("Invalid Permission");
}
$request_no = setDefaultReqVar("req_no", 0);
$refid = filter_var($_REQUEST['refid'], FILTER_SANITIZE_NUMBER_INT);
$createby = filter_var($_SESSION['user'], FILTER_SANITIZE_STRING);
$lastupby = filter_var($_SESSION['user'], FILTER_SANITIZE_STRING);
//vdump($_REQUEST);
if( $_REQUEST['action']=="drawing_addtd" && !empty($refid) ){
foreach($_FILES['td_file']['name'] as $key => $tmpf){
//upload image\
//var_dump($tmpf);
if ($_FILES['td_file']['name'][$key] <> '')
{
$f = $_FILES['td_file']['name'][$key];
$filename = getImgName("TECH_DRAWING", $f, $refid);
//echo INV_PRODUCT_IMG_PATH.$filename;
copy ($_FILES['td_file']['tmp_name'][$key], DGN_DRAWING_IMG_PATH.$filename)
or die ("Could not copy image");
createthumb(DGN_DRAWING_IMG_PATH.$filename, DGN_DRAWING_IMG_PATH.THUMB_PATH.$filename, 300, 300);
}
else{
//tbc
$filename="";
}
if($filename){
$sql = "INSERT INTO dgn_techdrawing_img (
img_src, img_path,
createby, createdate,
lastupby, lastupdate,
drawing_refid
) VALUES (
:img_src, :img_path,
:createby, ".NOW."(),
:lastupby, ".NOW."(),
:drawing_refid
)";
$sth = $dbh->prepare($sql);
$q= $sth->execute( array(':drawing_refid' => $refid,
':img_src' => $filename,
':img_path' => DGN_DRAWING_IMG_PATH,
':createby' => $createby,
':lastupby' => $lastupby) );
pdo_showerror($sth, $q);
/* echo $sth->getSQL( array(':drawing_refid' => $refid,
':img_src' => $filename,
':img_path' => DGN_DRAWING_IMG_PATH,
':createby' => $createby,
':lastupby' => $lastupby) );*/
}
}
header("Location: dgn_drawing_modifyform.php?edit=1&refid=$refid&msg=Saved.");
print "Saved.";
exit;
}
myerror("Invalid Request");
?>
|