/var/www/hkosl.com/innoutstorage/webadmin/slideshow_modify.php

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96

<?php
    require_once("check_login.php");
    require_once("function_cropimg.php");
    require_once("mime_type_lib.php");

    $slideid   = (int)$_POST["slideid"];
    $nowdate   date("Y-m-d H:i:s");

    $sql "select * from slideshow where slideid = ?";
    $parameters = array($slideid);
    $old_slideshow_info bind_pdo($sql$parameters"selectone");

    foreach ($arraylangcode as $langcode => $langname) {
        $slidelink[$langcode] = $_POST["slidelink_" $langcode];
        $slidetext1[$langcode] = $_POST["slidetext1_" $langcode];
        $slidetext2[$langcode] = $_POST["slidetext2_" $langcode];

        // Upload File
        $filelimit 10 1048576//Filelimit in 10MB
        if ($_FILES["slideimg_" $langcode]['name'] <> '') {
            if ($_FILES["slideimg_" $langcode]['size'] < $filelimit) {

                //check if image type is valid or not
                $mime get_file_mime_type($_FILES["slideimg_" $langcode]['name']);

                if (($mime == "image/gif") || ($mime == "image/jpeg") || ($mime == "image/png")) {

                    $filename $_FILES["slideimg_" $langcode]['name'];
                    preg_match("/\.([^\.]+)$/"$filename$file_ext);
                    $newfilename random_string() . "_slideid_" $slideid "." $file_ext[1]; // default length 8

                    move_uploaded_file($_FILES["slideimg_" $langcode]['tmp_name'], "../images/slideshow/" $newfilename) or die ("Could not copy the file");

                    //$slideimg_path = "../images/slideshow/".$newfilename;

                    //createthumb($slideimg_path, $slideimg_path, 680, 350);

                    $slideimg[$langcode] = $newfilename;

                } else {
                    echo '<script language="javascript">
                alert("圖片格式必須為 JPEG, GIF, or PNG 及小於 10MB.");
                history.back();
            </script>';

                    exit;
                }

            } else {
                echo '<script language="javascript">
                alert("圖片格式必須為 JPEG, GIF, or PNG 及小於 10MB.");
                history.back();
            </script>';

                exit;
            }

        } else {
            $slideimg[$langcode] = "";
        }
    }

    // Modify
    $sql        "update slideshow set lastupdate=?, lastupby=?, ";
    $parameters = array($nowdate$_SESSION['cmsloginid']);

    foreach ($arraylangcode as $langcode => $langname) {
        $sql .= "slidelink_" $langcode "=?, slidetext1_".$langcode."=?, slidetext2_".$langcode."=?, ";

        $parameters[] = $slidelink[$langcode];
        $parameters[] = $slidetext1[$langcode];
        $parameters[] = $slidetext2[$langcode];

        if ($slideimg[$langcode] != '' || $_POST['delimage_' $langcode] > 0) {
            $sql .= "slideimg_" $langcode "=?, ";
            $parameters[] = $slideimg[$langcode];

            //unlink image
            $unlink_file_path "../images/slideshow/".$old_slideshow_info["slideimg_".$langcode];

            if( is_file ($unlink_file_path) ){
                unlink($unlink_file_path);
            }
        }
    }

    $sql substr_replace($sql"", -2);

    $sql .= " where slideid=?";
    $parameters[] = $slideid;

    bind_pdo($sql$parameters);

    $dbh null;

    header("Location: slideshow_index.php?msg=修改成功");