File: /home/pengthai/domains/pengthaicurry.com/public_html/admin/banner/fn_banner.php
<?php
@session_start();
include ("../include/connect.php");
include("config.inc.php");
include ("../include/chksession.php");
include ("../include/function.php");
mysql_queryx("SET NAMES UTF8");
mysql_select_dbx($dbname, $cn);
//id
$id=$_POST['id'];
//banner
$link=$_POST['link'];
$link_en=$_POST['link_en'];
$name_th=$_POST['name_th'];
$name_en=$_POST['name_en'];
$status=$_POST['status'];
$detail_th=$_POST['detail_th'];
$detail_en=$_POST['detail_en'];
$name_th = str_replace("'","′",$name_th);//single coil
$name_th = str_replace('"','"',$name_th);//double coil
$name_en = str_replace("'","′",$name_en);//single coil
$name_en = str_replace('"','"',$name_en);//double coil
$date_today = date("Y-m-d");
switch ($_POST['action']) {
case "add":
echo"<meta http-equiv='Content-Type' content='text/html; charset=utf-8' />";
$sql="INSERT INTO tb_banner (bann_id,bann_name_th,bann_name_en,bann_link,bann_link_en,bann_detail_th,bann_detail_en,bann_status,bann_sort,bann_date)
VALUE ('$id','$name_th','$name_en','$link','$link_en','$detail_th','$detail_en','$status','0','$date_today') ON DUPLICATE KEY UPDATE
bann_name_th='$name_th',
bann_name_en='$name_en',
bann_link='$link',
bann_link_en='$link_en',
bann_detail_th='$detail_th',
bann_detail_en='$detail_en',
bann_status='$status',
bann_date='$date_today' ";
if(mysql_queryx($sql) == true)
{
if($id=="")
$new_galid = mysql_insert_idx();
else
$new_galid =$id;
if($_FILES["fileupvdo"] !=""){
$ext = pathinfo($_FILES['fileupvdo']['name'], PATHINFO_EXTENSION);
$ext=strtolower($ext);
//$newFileName = md5($_FILES['fileupvdo']['name'].date("d-m-Y H:i:s")).'.'.$ext;
$newFileName = md5($filecontent.date("d-m-Y H:i:s")).'.'.$ext;
if(move_uploaded_file($_FILES["fileupvdo"]["tmp_name"],"../../album/vdo/".$newFileName)){
$sql = "UPDATE tb_banner SET
bann_vdo = '".$newFileName."'
WHERE bann_id='$new_galid' ";
if(mysql_queryx($sql) == false){
$err = 1;
}
}
}
if($_FILES["fileupvdo_en"] !=""){
$ext = pathinfo($_FILES['fileupvdo_en']['name'], PATHINFO_EXTENSION);
$ext=strtolower($ext);
$newFileName = md5($filecontent.date("d-m-Y H:i:s")).'.'.$ext;
//$newFileName = md5($_FILES['fileupvdo_en']['name'].date("d-m-Y H:i:s")).'.'.$ext;
if(move_uploaded_file($_FILES["fileupvdo_en"]["tmp_name"],"../../album/vdo/".$newFileName)){
$sql = "UPDATE tb_banner SET
bann_vdo_en = '".$newFileName."'
WHERE bann_id='$new_galid' ";
if(mysql_queryx($sql) == false){
$err = 1;
}
}
}
foreach ($_FILES["add_image"]["error"] as $key => $error) {
$newfile = 'add_image';
$filename = $_FILES[$newfile]['name'][$key] ;
$filecontent = $_FILES[$newfile]['tmp_name'][$key] ;
if($filename != '' )// ถ้ามีภาพคือ ถ้าไม่ใช่ค่าว่าง
{
$ext = pathinfo($filename, PATHINFO_EXTENSION);
$ext = strtolower($ext );
$newFileName = md5($filecontent.date("d-m-Y H:i:s")).'.'.$ext;
if( move_uploaded_file($filecontent, "../../album/banner/$newFileName") == TRUE )
{
$img= "../../album/banner/$newFileName";
//$new_img= "../../album/banner/small/$newFileName";
//$new_largeimg = "../../album/banner/large/$newFileName";
//$imgsmall = resize($img,$new_img,'700',$ext);
//$imglarge = resize($img,$new_largeimg,'980',$ext) ;
if ( $img== true )
{
$sql = "UPDATE tb_banner SET bann_image ='$newFileName' WHERE bann_id ='$new_galid' ";
if(mysql_queryx($sql) == true )
$sql="DETELE FROM tb_banner WHERE bann_id ='0' ";
mysql_queryx($sql) ;
//ลบ buffer
/*$bufferfile = $img;
if( file_exists($bufferfile)==TRUE )
unlink($bufferfile);*/
$err = 0;
}
else
{
//ลบ buffer
/*$bufferfile = $img;
if( file_exists($bufferfile)==TRUE )
unlink($bufferfile);*/
}
}
}
}// close $filename != "" ไม่เท่ากับค่า null
foreach ($_FILES["add_image2"]["error"] as $key => $error) {
$newfile = 'add_image2';
$filename = $_FILES[$newfile]['name'][$key] ;
$filecontent = $_FILES[$newfile]['tmp_name'][$key] ;
if( $filename != '' )// ถ้ามีภาพคือ ถ้าไม่ใช่ค่าว่าง
{
$ext = pathinfo($filename, PATHINFO_EXTENSION);
$ext = strtolower($ext );
$newFileName = md5($filecontent.date("d-m-Y H:i:s")).'.'.$ext;
if( move_uploaded_file($filecontent, "../../album/banner/$newFileName") == TRUE )
{
$img= "../../album/banner/$newFileName";
if ( $img== true )
{
$sql = "UPDATE tb_banner SET bann_image_en ='$newFileName' WHERE bann_id ='$new_galid' ";
if(mysql_queryx($sql) == true )
$sql="DETELE FROM tb_banner WHERE bann_id ='0' ";
mysql_queryx($sql) ;
$err = 0;
}
}
}
}// close $filename != "" ไม่เท่ากับค่า null
echo "<script language='javascript'>alert('บันทึกลงฐานข้อมูลเรียบร้อยแล้วค่ะ');</script> <meta http-equiv=\"refresh\" content=\"0;URL=index.php?id=$new_galid\" />";
}
break;
case "del-banner-vdo":
$id=$_POST['id'];
$sqlfind = "SELECT * FROM tb_banner WHERE bann_id = '$id' ";
$resfind = mysql_queryx($sqlfind);
while($resfind && $rfind=mysql_fetch_arrayx($resfind)){
$delfile = "../../album/vdo/$rfind[bann_vdo]";
if(file_exists($delfile)==true && $rfind[bann_name] !="")
unlink($delfile);
}
$sql="UPDATE tb_banner SET bann_vdo = '' WHERE bann_id='$id'";
if(mysql_queryx($sql) == false ){
die(msg("2","เกิดความผิดพลาดบางประการเกี่ยวกับการบันทึกลงฐานข้อมูล"));
}else{
die(msg("1","ลบรายการสำเร็จค่ะ"));
}
break;
case "del-banner-vdoen":
$id=$_POST['id'];
$sqlfind = "SELECT * FROM tb_banner WHERE bann_id = '$id' ";
$resfind = mysql_queryx($sqlfind);
while($resfind && $rfind=mysql_fetch_arrayx($resfind)){
$delfile = "../../album/vdo/$rfind[bann_vdo_en]";
if(file_exists($delfile)==true && $rfind[bann_name] !="")
unlink($delfile);
}
$sql="UPDATE tb_banner SET bann_vdo_en = '' WHERE bann_id='$id'";
if(mysql_queryx($sql) == false ){
die(msg("2","เกิดความผิดพลาดบางประการเกี่ยวกับการบันทึกลงฐานข้อมูล"));
}else{
die(msg("1","ลบรายการสำเร็จค่ะ"));
}
break;
case "del-image":
$file=$_POST['file'];
$field=$_POST['field']; // check ฟีลด์ ว่า ลบ ภาษาไทยหรือ อังกฤษ
if ($field == 'bann_image'){
$sql="UPDATE tb_banner SET bann_image='' WHERE bann_id ='$id' ";
if( mysql_queryx($sql) == true )
{
$bufferfile = "../../album/banner/".$file;
if( file_exists($bufferfile)==TRUE )
unlink($bufferfile);
}
} else if ($field == 'bann_image_en'){
$sql="UPDATE tb_banner SET bann_image_en ='' WHERE bann_id ='$id' ";
if( mysql_queryx($sql) == true ) {
$bufferfile = "../../album/banner/".$file;
if( file_exists($bufferfile)==TRUE )
unlink($bufferfile);
}
}
// exit();
die(msg("1","ลบรูปภาพสำเร็จค่ะ"));
break;
case "del-list":
$delall = $_POST["del"];
$delid = explode(",", $delall);
$x = 0;
while( $delid[$x] != "" )
{
$sqlfind = "SELECT * FROM tb_banner WHERE bann_id ='$delid[$x]'";
$resfind = mysql_queryx($sqlfind);
while($resfind && $rfind=mysql_fetch_arrayx($resfind))
{
$delfile = "../../album/banner/$rfind[bann_image]";
if( file_exists($delfile)==true && $rfind[bann_image] !="")
unlink($delfile);
$delfile2 = "../../album/banner/$rfind[bann_image_en]";
if( file_exists($delfile2)==true && $rfind[bann_image_en] !="")
unlink($delfile2);
}
$sql="DELETE FROM tb_banner WHERE bann_id ='$delid[$x]'";
if( mysql_queryx($sql) == false )
die(msg("2","เกิดความผิดพลาดบางประการเกี่ยวกับการบันทึกลงฐานข้อมูล"));
$x++;
}
die(msg("1","ลบรายการสำเร็จค่ะ"));
break;
case "save-list":
$save=$_POST["save"];
$save = urldecode($save);
$rec = explode("||", $save);
$i = 0;
while( $rec[$i] )
{
$each = $rec[$i];
$arr = explode(";;", $each);
$sql = "UPDATE tb_banner SET ";
$sql .= " bann_sort='$arr[1]',";
$sql .= " bann_status='$arr[2]'"; //สุดท้าย
$sql .= " WHERE bann_id ='$arr[0]' ";
if( mysql_queryx($sql) == false )
die(msg("2","เกิดความผิดพลาดบางประการเกี่ยวกับการบันทึกลงฐานข้อมูล"));
$i++;
}
die(msg("1","บันทึกลงฐานข้อมูลเรียบร้อยแล้วค่ะ"));
break;
case "move":
$data=$_POST["data"];
$err = 0;
$i = 0;
$rec_arr = explode("||",$data);
$count =0;
while($rec_arr[$count]){
$arr = explode(",",$rec_arr[$count]);
$sql = "update tb_banner set";
$sql .= " imag_sort='$arr[1]' WHERE imag_id = '$arr[0]' ";
if( mysql_queryx($sql) == false )
$err = 1;
$count ++;
}
break;
}
mysql_closex($cn);
?>