Редакция 70 | Редакция 82 | К новейшей редакции | Только различия | Не учитывать пробелы | Содержимое файла | Авторство | Последнее изменение | Открыть журнал | RSS
Редакция 70 | Редакция 80 | ||
---|---|---|---|
1 | <?php
|
1 | <?php
|
2 | 2 | ||
3 | /**
|
3 | /**
|
4 | * Project: Ant: sources.list generator
|
4 | * Project: Ant: sources.list generator
|
5 | * File: process.php
|
5 | * File: process.php
|
6 | *
|
6 | *
|
7 | * This application is free software; you can redistribute it and/or
|
7 | * This application is free software; you can redistribute it and/or
|
8 | * modify it under the terms of the GNU Lesser General Public
|
8 | * modify it under the terms of the GNU Lesser General Public
|
9 | * License as published by the Free Software Foundation; either
|
9 | * License as published by the Free Software Foundation; either
|
10 | * version 2.1 of the License, or (at your option) any later version.
|
10 | * version 2.1 of the License, or (at your option) any later version.
|
11 | *
|
11 | *
|
12 | * This application is distributed in the hope that it will be useful,
|
12 | * This application is distributed in the hope that it will be useful,
|
13 | * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
13 | * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
14 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
14 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
15 | * Lesser General Public License for more details.
|
15 | * Lesser General Public License for more details.
|
16 | *
|
16 | *
|
17 | * You should have received a copy of the GNU Lesser General Public
|
17 | * You should have received a copy of the GNU Lesser General Public
|
18 | * License along with this library; if not, write to the Free Software
|
18 | * License along with this library; if not, write to the Free Software
|
19 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
19 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
20 | *
|
20 | *
|
21 | */
|
21 | */
|
22 | 22 | ||
23 | 23 | ||
24 | require_once "./sign-valid.php"; |
24 | require_once "./sign-valid.php"; |
25 | 25 | ||
26 | $mode = abs(intval($_POST["mode"])); |
26 | $mode = abs(intval($_POST["mode"])); |
27 | 27 | ||
28 | $go = "./admin.php"; |
28 | $go = "./admin.php"; |
29 | 29 | ||
30 | switch ($mode) { |
30 | switch ($mode) { |
31 | case '0': |
31 | case '0': |
32 | break; |
32 | break; |
33 | case '1': |
33 | case '1': |
34 | // Добавление нового дистрибутива
|
34 | // Добавление нового дистрибутива
|
35 | $distname = mysql_real_escape_string($_POST["distName"]); |
35 | $distname = mysql_real_escape_string($_POST["distName"]); |
36 | $distua = mysql_real_escape_string($_POST["distUA"]); |
36 | $distua = mysql_real_escape_string($_POST["distUA"]); |
37 | $disttype = abs(intval($_POST["distType"])); |
37 | $disttype = abs(intval($_POST["distType"])); |
- | 38 | ||
- | 39 | $distlogo = 0; |
|
- | 40 | if ($_FILES["distLOGO"]["type"]!=0) { |
|
- | 41 | $folder = "./img/logo/".stripslashes($distua)."-orig.gif"; |
|
- | 42 | $folderN = "./img/logo/".stripslashes($distua).".gif"; |
|
- | 43 | $folderEM = "./img/logo/".stripslashes($distua)."-em.gif"; |
|
- | 44 | if (move_uploaded_file($_FILES["distLOGO"]["tmp_name"],$folder)) { |
|
- | 45 | chmod($folder, 0644); |
|
- | 46 | list($width, $height) = GetImageSize($folder); |
|
- | 47 | $percent = 32/$height; |
|
- | 48 | $newwidth = $width * $percent; |
|
- | 49 | $newheight = $height * $percent; |
|
- | 50 | ||
- | 51 | $output = ImageCreateTrueColor($newwidth, $newheight); |
|
- | 52 | $source = ImageCreateFromGIF($folder); |
|
- | 53 | ||
- | 54 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
|
- | 55 | ImageGIF($output, $folderEM); |
|
- | 56 | ||
- | 57 | $percent = 15/$height; |
|
- | 58 | $newwidth = $width * $percent; |
|
- | 59 | $newheight = $height * $percent; |
|
- | 60 | ||
- | 61 | $output = ImageCreateTrueColor($newwidth, $newheight); |
|
- | 62 | ||
- | 63 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
|
- | 64 | ImageGIF($output, $folderN); |
|
- | 65 | ||
- | 66 | unlink($folder); |
|
- | 67 | $distlogo = 1; |
|
- | 68 | }
|
|
- | 69 | }
|
|
38 | 70 | ||
39 | $res =& $db->query("INSERT INTO distribution SET distname='$distname', distua='$distua', disttype='$disttype'"); |
71 | $res =& $db->query("INSERT INTO distribution SET distname='$distname', distua='$distua', disttype='$disttype', distlogo='$distlogo'"); |
40 | 72 | ||
41 | break; |
73 | break; |
42 | case '2': |
74 | case '2': |
43 | // Правка существующего дистрибутива
|
75 | // Правка существующего дистрибутива
|
44 | $distname = mysql_real_escape_string($_POST["distName"]); |
76 | $distname = mysql_real_escape_string($_POST["distName"]); |
45 | $distua = mysql_real_escape_string($_POST["distUA"]); |
77 | $distua = mysql_real_escape_string($_POST["distUA"]); |
46 | $disttype = abs(intval($_POST["distType"])); |
78 | $disttype = abs(intval($_POST["distType"])); |
47 | $distID = abs(intval($_POST["distID"])); |
79 | $distID = abs(intval($_POST["distID"])); |
- | 80 | ||
- | 81 | if ($_FILES["distLOGO"]["type"]!=0) { |
|
- | 82 | $folder = "./img/logo/".stripslashes($distua)."-orig.gif"; |
|
- | 83 | $folderN = "./img/logo/".stripslashes($distua).".gif"; |
|
- | 84 | $folderEM = "./img/logo/".stripslashes($distua)."-em.gif"; |
|
- | 85 | if (move_uploaded_file($_FILES["distLOGO"]["tmp_name"],$folder)) { |
|
- | 86 | chmod ($folder, 0644); |
|
- | 87 | list($width, $height) = GetImageSize($folder); |
|
- | 88 | $percent = 32/$height; |
|
- | 89 | $newwidth = $width * $percent; |
|
- | 90 | $newheight = $height * $percent; |
|
- | 91 | ||
- | 92 | $output = ImageCreateTrueColor($newwidth, $newheight); |
|
- | 93 | $source = ImageCreateFromGIF($folder); |
|
- | 94 | ||
- | 95 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
|
- | 96 | ImageGIF($output, $folderEM); |
|
- | 97 | ||
- | 98 | $percent = 15/$height; |
|
- | 99 | $newwidth = $width * $percent; |
|
- | 100 | $newheight = $height * $percent; |
|
- | 101 | ||
- | 102 | $output = ImageCreateTrueColor($newwidth, $newheight); |
|
- | 103 | ||
- | 104 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
|
- | 105 | ImageGIF($output, $folderN); |
|
- | 106 | ||
- | 107 | unlink($folder); |
|
- | 108 | ||
- | 109 | $res =& $db->query("UPDATE distribution SET distlogo='1' WHERE dist_id='$distID'"); |
|
- | 110 | ||
- | 111 | }
|
|
- | 112 | }
|
|
48 | 113 | ||
49 | $res =& $db->query("UPDATE distribution SET distname='$distname', distua='$distua', disttype='$disttype' WHERE dist_id='$distID'"); |
114 | $res =& $db->query("UPDATE distribution SET distname='$distname', distua='$distua', disttype='$disttype', WHERE dist_id='$distID'"); |
50 | 115 | ||
51 | break; |
116 | break; |
52 | case '3': |
117 | case '3': |
53 | // Удаление существующего дистрибутива
|
118 | // Удаление существующего дистрибутива
|
54 | $distID = abs(intval($_POST["distID"])); |
119 | $distID = abs(intval($_POST["distID"])); |
- | 120 | $distUA = $_POST["distUA"]; |
|
- | 121 | ||
- | 122 | $folder1 = "./img/logo/".$distUA."-em.gif"; |
|
- | 123 | $folder2 = "./img/logo/".$distUA.".gif"; |
|
- | 124 | ||
- | 125 | if (file_exsists($folder1)) { unlink($folder1); } |
|
- | 126 | if (file_exsists($folder2)) { unlink($folder2); } |
|
55 | 127 | ||
56 | $res =& $db->query("DELETE FROM distribution WHERE dist_id='$distID'"); |
128 | $res =& $db->query("DELETE FROM distribution WHERE dist_id='$distID'"); |
57 | $res =& $db->query("DELETE FROM sect2dist WHERE dist_id='$distID'"); |
129 | $res =& $db->query("DELETE FROM sect2dist WHERE dist_id='$distID'"); |
58 | 130 | ||
59 | break; |
131 | break; |
60 | case '4': |
132 | case '4': |
61 | // Добавление новой версии дистрибутива
|
133 | // Добавление новой версии дистрибутива
|
62 | $versname = mysql_real_escape_string($_POST["versNam"]); |
134 | $versname = mysql_real_escape_string($_POST["versNam"]); |
63 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
135 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
64 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
136 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
65 | $distname = abs(intval($_POST["distName"])); |
137 | $distname = abs(intval($_POST["distName"])); |
66 | 138 | ||
67 | $res =& $db->query("INSERT INTO version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode'"); |
139 | $res =& $db->query("INSERT INTO version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode'"); |
68 | 140 | ||
69 | break; |
141 | break; |
70 | case '5': |
142 | case '5': |
71 | // Правка имеющейся версии дистрибутива
|
143 | // Правка имеющейся версии дистрибутива
|
72 | $versname = mysql_real_escape_string($_POST["versNam"]); |
144 | $versname = mysql_real_escape_string($_POST["versNam"]); |
73 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
145 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
74 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
146 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
75 | $distname = abs(intval($_POST["distName"])); |
147 | $distname = abs(intval($_POST["distName"])); |
76 | $versID = abs(intval($_POST["versID"])); |
148 | $versID = abs(intval($_POST["versID"])); |
77 | 149 | ||
78 | $res =& $db->query("UPDATE version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode' WHERE version_id='$versID'"); |
150 | $res =& $db->query("UPDATE version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode' WHERE version_id='$versID'"); |
79 | 151 | ||
80 | break; |
152 | break; |
81 | case '6': |
153 | case '6': |
82 | // Удаление существующей версии дистрибутива
|
154 | // Удаление существующей версии дистрибутива
|
83 | $versID = abs(intval($_POST["versID"])); |
155 | $versID = abs(intval($_POST["versID"])); |
84 | 156 | ||
85 | $res =& $db->query("DELETE FROM version WHERE version_id='$versID'"); |
157 | $res =& $db->query("DELETE FROM version WHERE version_id='$versID'"); |
86 | $res =& $db->query("DELETE FROM ver2rep WHERE ver_id='$versID'"); |
158 | $res =& $db->query("DELETE FROM ver2rep WHERE ver_id='$versID'"); |
87 | 159 | ||
88 | break; |
160 | break; |
89 | case '7': |
161 | case '7': |
90 | // Добавление нового репозитория
|
162 | // Добавление нового репозитория
|
91 | $versID = abs(intval($_POST["vers"])); |
163 | $versID = abs(intval($_POST["vers"])); |
92 | $repname = mysql_real_escape_string($_POST["repName"]); |
164 | $repname = mysql_real_escape_string($_POST["repName"]); |
93 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
165 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
94 | $repsche = abs(intval($_POST["scheme"])); |
166 | $repsche = abs(intval($_POST["scheme"])); |
95 | $reptype = abs(intval($_POST["rtype"])); |
167 | $reptype = abs(intval($_POST["rtype"])); |
96 | 168 | ||
97 | $res =& $db->query("INSERT INTO repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype'"); |
169 | $res =& $db->query("INSERT INTO repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype'"); |
98 | $res =& $db->query("SELECT rep_id FROM repository ORDER BY rep_id DESC LIMIT 1"); |
170 | $res =& $db->query("SELECT rep_id FROM repository ORDER BY rep_id DESC LIMIT 1"); |
99 | $res->fetchInto($rep, DB_FETCHMODE_ASSOC); |
171 | $res->fetchInto($rep, DB_FETCHMODE_ASSOC); |
100 | $rep_id = $rep["rep_id"]; |
172 | $rep_id = $rep["rep_id"]; |
101 | 173 | ||
102 | $res =& $db->query("INSERT INTO ver2rep SET ver_id='$versID', rep_id='$rep_id'"); |
174 | $res =& $db->query("INSERT INTO ver2rep SET ver_id='$versID', rep_id='$rep_id'"); |
103 | 175 | ||
104 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
176 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
105 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$rep_id'"); |
177 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$rep_id'"); |
106 | }
|
178 | }
|
107 | break; |
179 | break; |
108 | case '8': |
180 | case '8': |
109 | // Правка репозитория
|
181 | // Правка репозитория
|
110 | $repID = abs(intval($_POST["rep"])); |
182 | $repID = abs(intval($_POST["rep"])); |
111 | $repname = mysql_real_escape_string($_POST["repName"]); |
183 | $repname = mysql_real_escape_string($_POST["repName"]); |
112 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
184 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
113 | $repsche = abs(intval($_POST["scheme"])); |
185 | $repsche = abs(intval($_POST["scheme"])); |
114 | $reptype = abs(intval($_POST["rtype"])); |
186 | $reptype = abs(intval($_POST["rtype"])); |
115 | 187 | ||
116 | $res =& $db->query("UPDATE repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype' WHERE rep_id='$repID'"); |
188 | $res =& $db->query("UPDATE repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype' WHERE rep_id='$repID'"); |
117 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
189 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
118 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
190 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
119 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$repID'"); |
191 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$repID'"); |
120 | }
|
192 | }
|
121 | break; |
193 | break; |
122 | case '9': |
194 | case '9': |
123 | // Удаление репозитория
|
195 | // Удаление репозитория
|
124 | $repID = abs(intval($_POST["rep"])); |
196 | $repID = abs(intval($_POST["rep"])); |
125 | 197 | ||
126 | $res =& $db->query("DELETE FROM repository WHERE rep_id='$repID'"); |
198 | $res =& $db->query("DELETE FROM repository WHERE rep_id='$repID'"); |
127 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
199 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
128 | $res =& $db->query("DELETE FROM ver2rep WHERE rep_id='$repID'"); |
200 | $res =& $db->query("DELETE FROM ver2rep WHERE rep_id='$repID'"); |
129 | 201 | ||
130 | break; |
202 | break; |
131 | case '10': |
203 | case '10': |
132 | // Создание секции
|
204 | // Создание секции
|
133 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
205 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
134 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
206 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
135 | 207 | ||
136 | $req =& $db->query("INSERT INTO section SET sectname='$sectname', sectinfo='$sectinfo'"); |
208 | $req =& $db->query("INSERT INTO section SET sectname='$sectname', sectinfo='$sectinfo'"); |
137 | $req =& $db->query("SELECT sect_id FROM section ORDER BY sect_id DESC LIMIT 1"); |
209 | $req =& $db->query("SELECT sect_id FROM section ORDER BY sect_id DESC LIMIT 1"); |
138 | $req->fetchInto($sect, DB_FETCHMODE_ASSOC); |
210 | $req->fetchInto($sect, DB_FETCHMODE_ASSOC); |
139 | 211 | ||
140 | for($i=0;$i<count($_POST["dist"]);$i++) { |
212 | for($i=0;$i<count($_POST["dist"]);$i++) { |
141 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sect["sect_id"]."'"); |
213 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sect["sect_id"]."'"); |
142 | }
|
214 | }
|
143 | 215 | ||
144 | break; |
216 | break; |
145 | case '11': |
217 | case '11': |
146 | // Правка секции
|
218 | // Правка секции
|
147 | $sectID = abs(intval($_POST["sectID"])); |
219 | $sectID = abs(intval($_POST["sectID"])); |
148 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
220 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
149 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
221 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
150 | 222 | ||
151 | $req =& $db->query("UPDATE section SET sectname='$sectname', sectinfo='$sectinfo' WHERE sect_id='$sectID'"); |
223 | $req =& $db->query("UPDATE section SET sectname='$sectname', sectinfo='$sectinfo' WHERE sect_id='$sectID'"); |
152 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
224 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
153 | 225 | ||
154 | for($i=0;$i<count($_POST["dist"]);$i++) { |
226 | for($i=0;$i<count($_POST["dist"]);$i++) { |
155 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sectID."'"); |
227 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sectID."'"); |
156 | }
|
228 | }
|
157 | 229 | ||
158 | break; |
230 | break; |
159 | case '12': |
231 | case '12': |
160 | // Удаление секции
|
232 | // Удаление секции
|
161 | $sectID = abs(intval($_POST["sectID"])); |
233 | $sectID = abs(intval($_POST["sectID"])); |
162 | 234 | ||
163 | $req =& $db->query("DELETE FROM section WHERE sect_id='$sectID'"); |
235 | $req =& $db->query("DELETE FROM section WHERE sect_id='$sectID'"); |
164 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
236 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
165 | $req =& $db->query("DELETE FROM sect2rep WHERE sect_id='$sectID'"); |
237 | $req =& $db->query("DELETE FROM sect2rep WHERE sect_id='$sectID'"); |
166 | 238 | ||
167 | break; |
239 | break; |
168 | case '13': |
240 | case '13': |
169 | // Добавление новой схемы
|
241 | // Добавление новой схемы
|
170 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
242 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
171 | 243 | ||
172 | $req =& $db->query("INSERT INTO scheme SET scheme='$scheme'"); |
244 | $req =& $db->query("INSERT INTO scheme SET scheme='$scheme'"); |
173 | 245 | ||
174 | break; |
246 | break; |
175 | case '14': |
247 | case '14': |
176 | // Правка схемы
|
248 | // Правка схемы
|
177 | $schemeID = abs(intval($_POST["schemeID"])); |
249 | $schemeID = abs(intval($_POST["schemeID"])); |
178 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
250 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
179 | 251 | ||
180 | $req =& $db->query("UPDATE scheme SET scheme='$scheme' WHERE scheme_id='$schemeID'"); |
252 | $req =& $db->query("UPDATE scheme SET scheme='$scheme' WHERE scheme_id='$schemeID'"); |
181 | 253 | ||
182 | break; |
254 | break; |
183 | case '15': |
255 | case '15': |
184 | // Удаление схемы
|
256 | // Удаление схемы
|
185 | $schemeID = abs(intval($_POST["schemeID"])); |
257 | $schemeID = abs(intval($_POST["schemeID"])); |
186 | 258 | ||
187 | $req =& $db->query("DELETE FROM scheme WHERE scheme_id='$schemeID'"); |
259 | $req =& $db->query("DELETE FROM scheme WHERE scheme_id='$schemeID'"); |
188 | 260 | ||
189 | break; |
261 | break; |
190 | case '16': |
262 | case '16': |
191 | // Добавление новой настройки Ant
|
263 | // Добавление новой настройки Ant
|
192 | $option = mysql_real_escape_string($_POST["setoption"]); |
264 | $option = mysql_real_escape_string($_POST["setoption"]); |
193 | $value = mysql_real_escape_string($_POST["setvalue"]); |
265 | $value = mysql_real_escape_string($_POST["setvalue"]); |
194 | 266 | ||
195 | $req =& $db->query("INSERT INTO settings SET opt='$option', optvalue='$value'"); |
267 | $req =& $db->query("INSERT INTO settings SET opt='$option', optvalue='$value'"); |
196 | 268 | ||
197 | break; |
269 | break; |
198 | case '17': |
270 | case '17': |
199 | // Правка настройки Ant
|
271 | // Правка настройки Ant
|
200 | $optID = abs(intval($_POST["optID"])); |
272 | $optID = abs(intval($_POST["optID"])); |
201 | $option = mysql_real_escape_string($_POST["setoption"]); |
273 | $option = mysql_real_escape_string($_POST["setoption"]); |
202 | $value = mysql_real_escape_string($_POST["setvalue"]); |
274 | $value = mysql_real_escape_string($_POST["setvalue"]); |
203 | 275 | ||
204 | $req =& $db->query("UPDATE settings SET opt='$option', optvalue='$value' WHERE opt_id='$optID'"); |
276 | $req =& $db->query("UPDATE settings SET opt='$option', optvalue='$value' WHERE opt_id='$optID'"); |
205 | 277 | ||
206 | break; |
278 | break; |
207 | case '18': |
279 | case '18': |
208 | // Удаление настройки
|
280 | // Удаление настройки
|
209 | $optID = abs(intval($_POST["optID"])); |
281 | $optID = abs(intval($_POST["optID"])); |
210 | 282 | ||
211 | $req =& $db->query("DELETE FROM settings WHERE opt_id='$optID'"); |
283 | $req =& $db->query("DELETE FROM settings WHERE opt_id='$optID'"); |
212 | 284 | ||
213 | break; |
285 | break; |
214 | case '19': |
286 | case '19': |
215 | // Добавление нового типа репозитория
|
287 | // Добавление нового типа репозитория
|
216 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
288 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
217 | 289 | ||
218 | $req =& $db->query("INSERT INTO rtype SET rtype='$rtype'"); |
290 | $req =& $db->query("INSERT INTO rtype SET rtype='$rtype'"); |
219 | 291 | ||
220 | break; |
292 | break; |
221 | case '20': |
293 | case '20': |
222 | // Правка существующего типа репозитория
|
294 | // Правка существующего типа репозитория
|
223 | $rtypeID = abs(intval($_POST["rtypeID"])); |
295 | $rtypeID = abs(intval($_POST["rtypeID"])); |
224 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
296 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
225 | 297 | ||
226 | $req =& $db->query("UPDATE rtype SET rtype='$rtype' WHERE rtype_id='$rtypeID'"); |
298 | $req =& $db->query("UPDATE rtype SET rtype='$rtype' WHERE rtype_id='$rtypeID'"); |
227 | 299 | ||
228 | break; |
300 | break; |
229 | case '21': |
301 | case '21': |
230 | // Удаление типа репозитория
|
302 | // Удаление типа репозитория
|
231 | $rtypeID = abs(intval($_POST["rtypeID"])); |
303 | $rtypeID = abs(intval($_POST["rtypeID"])); |
232 | 304 | ||
233 | $req =& $db->query("DELETE FROM rtype WHERE rtype_id='$rtypeID'"); |
305 | $req =& $db->query("DELETE FROM rtype WHERE rtype_id='$rtypeID'"); |
234 | 306 | ||
235 | break; |
307 | break; |
236 | case '22': |
308 | case '22': |
237 | // Смена пароля
|
309 | // Смена пароля
|
238 | // $OID = abs(intval($_POST["OID"]));
|
310 | // $OID = abs(intval($_POST["OID"]));
|
239 | $oldpass = mysql_real_escape_string($_POST["oldPW"]); |
311 | $oldpass = mysql_real_escape_string($_POST["oldPW"]); |
240 | $newpass1 = mysql_real_escape_string($_POST["newPW1"]); |
312 | $newpass1 = mysql_real_escape_string($_POST["newPW1"]); |
241 | $newpass2 = mysql_real_escape_string($_POST["newPW2"]); |
313 | $newpass2 = mysql_real_escape_string($_POST["newPW2"]); |
242 | 314 | ||
243 | $errpwd = 0; |
315 | $errpwd = 0; |
244 | $spass = md5($newpass1."ANT"); |
316 | $spass = md5($newpass1."ANT"); |
245 | $soldpass = md5($oldpass."ANT"); |
317 | $soldpass = md5($oldpass."ANT"); |
246 | if ($soldpass != $_COOKIE[$CookiePasswd]) { |
318 | if ($soldpass != $_COOKIE[$CookiePasswd]) { |
247 | $go .= "?error=1"; |
319 | $go .= "?error=1"; |
248 | $errpwd = 1; |
320 | $errpwd = 1; |
249 | }
|
321 | }
|
250 | if ($newpass1 != $newpass2) { |
322 | if ($newpass1 != $newpass2) { |
251 | $go .= "?error=2"; |
323 | $go .= "?error=2"; |
252 | $errpwd = 2; |
324 | $errpwd = 2; |
253 | }
|
325 | }
|
254 | 326 | ||
255 | if ($errpwd==0) { |
327 | if ($errpwd==0) { |
256 | // fix: Для многопользовательского варианта придется запрос переписать
|
328 | // fix: Для многопользовательского варианта придется запрос переписать
|
257 | $req =& $db->query("UPDATE owner SET passwd='$spass' WHERE login='admin'"); |
329 | $req =& $db->query("UPDATE owner SET passwd='$spass' WHERE login='admin'"); |
258 | }
|
330 | }
|
259 | 331 | ||
260 | break; |
332 | break; |
261 | case '23': |
333 | case '23': |
262 | // Добавление интерфейса
|
334 | // Добавление интерфейса
|
263 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
335 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
264 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
336 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
265 | $ifname = str_replace(".php","",$ifname); |
337 | $ifname = str_replace(".php","",$ifname); |
266 | $req =& $db->query("INSERT INTO interfaces SET interface='$ifname', interfaceinfo='$ifinfo'"); |
338 | $req =& $db->query("INSERT INTO interfaces SET interface='$ifname', interfaceinfo='$ifinfo'"); |
267 | break; |
339 | break; |
268 | case '24': |
340 | case '24': |
269 | // Правка интерфейса
|
341 | // Правка интерфейса
|
270 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
342 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
271 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
343 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
272 | $if = abs(intval($_POST["if"])); |
344 | $if = abs(intval($_POST["if"])); |
273 | $ifname = str_replace(".php","",$ifname); |
345 | $ifname = str_replace(".php","",$ifname); |
274 | $req =& $db->query("UPDATE interfaces SET interface='$ifname', interfaceinfo='$ifinfo' WHERE if_id='$if'"); |
346 | $req =& $db->query("UPDATE interfaces SET interface='$ifname', interfaceinfo='$ifinfo' WHERE if_id='$if'"); |
275 | break; |
347 | break; |
276 | case '25': |
348 | case '25': |
277 | // Удаление интерфейса
|
349 | // Удаление интерфейса
|
278 | $if = abs(intval($_POST["if"])); |
350 | $if = abs(intval($_POST["if"])); |
279 | $req =& $db->query("DELETE FROM interfaces WHERE if_id='$if'"); |
351 | $req =& $db->query("DELETE FROM interfaces WHERE if_id='$if'"); |
280 | break; |
352 | break; |
281 | }
|
353 | }
|
282 | 354 | ||
283 | header("Location: $go\n\n"); |
355 | header("Location: $go\n\n"); |
284 | 356 | ||
285 | ?>
|
357 | ?>
|
286 | 358 |