Редакция 80 | Редакция 83 | К новейшей редакции | Только различия | Не учитывать пробелы | Содержимое файла | Авторство | Последнее изменение | Открыть журнал | RSS
| Редакция 80 | Редакция 82 | ||
|---|---|---|---|
| 1 | <?php
|
1 | <?php
|
| 2 | 2 | ||
| 3 | /**
|
3 | /**
|
| 4 | * Project: Ant: sources.list generator
|
4 | * Project: Ant: sources.list generator
|
| 5 | * File: process.php
|
5 | * File: process.php
|
| 6 | *
|
6 | *
|
| 7 | * This application is free software; you can redistribute it and/or
|
7 | * This application is free software; you can redistribute it and/or
|
| 8 | * modify it under the terms of the GNU Lesser General Public
|
8 | * modify it under the terms of the GNU Lesser General Public
|
| 9 | * License as published by the Free Software Foundation; either
|
9 | * License as published by the Free Software Foundation; either
|
| 10 | * version 2.1 of the License, or (at your option) any later version.
|
10 | * version 2.1 of the License, or (at your option) any later version.
|
| 11 | *
|
11 | *
|
| 12 | * This application is distributed in the hope that it will be useful,
|
12 | * This application is distributed in the hope that it will be useful,
|
| 13 | * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
13 | * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
| 14 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
14 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
| 15 | * Lesser General Public License for more details.
|
15 | * Lesser General Public License for more details.
|
| 16 | *
|
16 | *
|
| 17 | * You should have received a copy of the GNU Lesser General Public
|
17 | * You should have received a copy of the GNU Lesser General Public
|
| 18 | * License along with this library; if not, write to the Free Software
|
18 | * License along with this library; if not, write to the Free Software
|
| 19 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
19 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
| 20 | *
|
20 | *
|
| 21 | */
|
21 | */
|
| 22 | 22 | ||
| 23 | 23 | ||
| 24 | require_once "./sign-valid.php"; |
24 | require_once "./sign-valid.php"; |
| 25 | 25 | ||
| 26 | $mode = abs(intval($_POST["mode"])); |
26 | $mode = abs(intval($_POST["mode"])); |
| 27 | 27 | ||
| 28 | $go = "./admin.php"; |
28 | $go = "./admin.php"; |
| 29 | 29 | ||
| 30 | switch ($mode) { |
30 | switch ($mode) { |
| 31 | case '0': |
31 | case '0': |
| 32 | break; |
32 | break; |
| 33 | case '1': |
33 | case '1': |
| 34 | // Добавление нового дистрибутива
|
34 | // Добавление нового дистрибутива
|
| 35 | $distname = mysql_real_escape_string($_POST["distName"]); |
35 | $distname = mysql_real_escape_string($_POST["distName"]); |
| 36 | $distua = mysql_real_escape_string($_POST["distUA"]); |
36 | $distua = mysql_real_escape_string($_POST["distUA"]); |
| 37 | $disttype = abs(intval($_POST["distType"])); |
37 | $disttype = abs(intval($_POST["distType"])); |
| 38 | 38 | ||
| 39 | $distlogo = 0; |
39 | $distlogo = 0; |
| 40 | if ($_FILES["distLOGO"]["type"]!=0) { |
40 | if ($_FILES["distLOGO"]["type"]!=0) { |
| 41 | $folder = "./img/logo/".stripslashes($distua)."-orig.gif"; |
41 | $folder = "./img/logo/".stripslashes($distua)."-orig.png"; |
| 42 | $folderN = "./img/logo/".stripslashes($distua).".gif"; |
42 | $folderN = "./img/logo/".stripslashes($distua).".png"; |
| 43 | $folderEM = "./img/logo/".stripslashes($distua)."-em.gif"; |
43 | $folderEM = "./img/logo/".stripslashes($distua)."-em.png"; |
| 44 | if (move_uploaded_file($_FILES["distLOGO"]["tmp_name"],$folder)) { |
44 | if (move_uploaded_file($_FILES["distLOGO"]["tmp_name"],$folder)) { |
| 45 | chmod($folder, 0644); |
45 | chmod($folder, 0644); |
| 46 | list($width, $height) = GetImageSize($folder); |
46 | list($width, $height) = GetImageSize($folder); |
| 47 | $percent = 32/$height; |
47 | $percent = 32/$height; |
| 48 | $newwidth = $width * $percent; |
48 | $newwidth = $width * $percent; |
| 49 | $newheight = $height * $percent; |
49 | $newheight = $height * $percent; |
| 50 | 50 | ||
| 51 | $output = ImageCreateTrueColor($newwidth, $newheight); |
51 | $output = ImageCreateTrueColor($newwidth, $newheight); |
| 52 | $source = ImageCreateFromGIF($folder); |
52 | $source = ImageCreateFromPNG($folder); |
| 53 | 53 | ||
| 54 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
54 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
| 55 | ImageGIF($output, $folderEM); |
55 | ImagePNG($output, $folderEM); |
| 56 | 56 | ||
| 57 | $percent = 15/$height; |
57 | $percent = 15/$height; |
| 58 | $newwidth = $width * $percent; |
58 | $newwidth = $width * $percent; |
| 59 | $newheight = $height * $percent; |
59 | $newheight = $height * $percent; |
| 60 | 60 | ||
| 61 | $output = ImageCreateTrueColor($newwidth, $newheight); |
61 | $output = ImageCreateTrueColor($newwidth, $newheight); |
| 62 | 62 | ||
| 63 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
63 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
| 64 | ImageGIF($output, $folderN); |
64 | ImagePNG($output, $folderN); |
| 65 | 65 | ||
| 66 | unlink($folder); |
66 | unlink($folder); |
| 67 | $distlogo = 1; |
67 | $distlogo = 1; |
| 68 | }
|
68 | }
|
| 69 | }
|
69 | }
|
| 70 | 70 | ||
| 71 | $res =& $db->query("INSERT INTO distribution SET distname='$distname', distua='$distua', disttype='$disttype', distlogo='$distlogo'"); |
71 | $res =& $db->query("INSERT INTO distribution SET distname='$distname', distua='$distua', disttype='$disttype', distlogo='$distlogo'"); |
| 72 | 72 | ||
| 73 | break; |
73 | break; |
| 74 | case '2': |
74 | case '2': |
| 75 | // Правка существующего дистрибутива
|
75 | // Правка существующего дистрибутива
|
| 76 | $distname = mysql_real_escape_string($_POST["distName"]); |
76 | $distname = mysql_real_escape_string($_POST["distName"]); |
| 77 | $distua = mysql_real_escape_string($_POST["distUA"]); |
77 | $distua = mysql_real_escape_string($_POST["distUA"]); |
| 78 | $disttype = abs(intval($_POST["distType"])); |
78 | $disttype = abs(intval($_POST["distType"])); |
| 79 | $distID = abs(intval($_POST["distID"])); |
79 | $distID = abs(intval($_POST["distID"])); |
| 80 | 80 | ||
| 81 | if ($_FILES["distLOGO"]["type"]!=0) { |
81 | if ($_FILES["distLOGO"]["type"]!=0) { |
| 82 | $folder = "./img/logo/".stripslashes($distua)."-orig.gif"; |
82 | $folder = "./img/logo/".stripslashes($distua)."-orig.png"; |
| 83 | $folderN = "./img/logo/".stripslashes($distua).".gif"; |
83 | $folderN = "./img/logo/".stripslashes($distua).".png"; |
| 84 | $folderEM = "./img/logo/".stripslashes($distua)."-em.gif"; |
84 | $folderEM = "./img/logo/".stripslashes($distua)."-em.png"; |
| 85 | if (move_uploaded_file($_FILES["distLOGO"]["tmp_name"],$folder)) { |
85 | if (move_uploaded_file($_FILES["distLOGO"]["tmp_name"],$folder)) { |
| 86 | chmod ($folder, 0644); |
86 | chmod ($folder, 0644); |
| 87 | list($width, $height) = GetImageSize($folder); |
87 | list($width, $height) = GetImageSize($folder); |
| 88 | $percent = 32/$height; |
88 | $percent = 32/$height; |
| 89 | $newwidth = $width * $percent; |
89 | $newwidth = $width * $percent; |
| 90 | $newheight = $height * $percent; |
90 | $newheight = $height * $percent; |
| 91 | 91 | ||
| 92 | $output = ImageCreateTrueColor($newwidth, $newheight); |
92 | $output = ImageCreateTrueColor($newwidth, $newheight); |
| 93 | $source = ImageCreateFromGIF($folder); |
93 | $source = ImageCreateFromPNG($folder); |
| 94 | 94 | ||
| 95 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
95 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
| 96 | ImageGIF($output, $folderEM); |
96 | ImagePNG($output, $folderEM); |
| 97 | 97 | ||
| 98 | $percent = 15/$height; |
98 | $percent = 15/$height; |
| 99 | $newwidth = $width * $percent; |
99 | $newwidth = $width * $percent; |
| 100 | $newheight = $height * $percent; |
100 | $newheight = $height * $percent; |
| 101 | 101 | ||
| 102 | $output = ImageCreateTrueColor($newwidth, $newheight); |
102 | $output = ImageCreateTrueColor($newwidth, $newheight); |
| 103 | 103 | ||
| 104 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
104 | ImageCopyResized($output, $source, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); |
| 105 | ImageGIF($output, $folderN); |
105 | ImagePNG($output, $folderN); |
| 106 | 106 | ||
| 107 | unlink($folder); |
107 | unlink($folder); |
| 108 | 108 | ||
| 109 | $res =& $db->query("UPDATE distribution SET distlogo='1' WHERE dist_id='$distID'"); |
109 | $res =& $db->query("UPDATE distribution SET distlogo='1' WHERE dist_id='$distID'"); |
| 110 | 110 | ||
| 111 | }
|
111 | }
|
| 112 | }
|
112 | }
|
| 113 | 113 | ||
| 114 | $res =& $db->query("UPDATE distribution SET distname='$distname', distua='$distua', disttype='$disttype', WHERE dist_id='$distID'"); |
114 | $res =& $db->query("UPDATE distribution SET distname='$distname', distua='$distua', disttype='$disttype', WHERE dist_id='$distID'"); |
| 115 | 115 | ||
| 116 | break; |
116 | break; |
| 117 | case '3': |
117 | case '3': |
| 118 | // Удаление существующего дистрибутива
|
118 | // Удаление существующего дистрибутива
|
| 119 | $distID = abs(intval($_POST["distID"])); |
119 | $distID = abs(intval($_POST["distID"])); |
| 120 | $distUA = $_POST["distUA"]; |
120 | $distUA = $_POST["distUA"]; |
| 121 | 121 | ||
| 122 | $folder1 = "./img/logo/".$distUA."-em.gif"; |
122 | $folder1 = "./img/logo/".$distUA."-em.gif"; |
| 123 | $folder2 = "./img/logo/".$distUA.".gif"; |
123 | $folder2 = "./img/logo/".$distUA.".gif"; |
| 124 | 124 | ||
| 125 | if (file_exsists($folder1)) { unlink($folder1); } |
125 | if (file_exsists($folder1)) { unlink($folder1); } |
| 126 | if (file_exsists($folder2)) { unlink($folder2); } |
126 | if (file_exsists($folder2)) { unlink($folder2); } |
| 127 | 127 | ||
| 128 | $res =& $db->query("DELETE FROM distribution WHERE dist_id='$distID'"); |
128 | $res =& $db->query("DELETE FROM distribution WHERE dist_id='$distID'"); |
| 129 | $res =& $db->query("DELETE FROM sect2dist WHERE dist_id='$distID'"); |
129 | $res =& $db->query("DELETE FROM sect2dist WHERE dist_id='$distID'"); |
| 130 | 130 | ||
| 131 | break; |
131 | break; |
| 132 | case '4': |
132 | case '4': |
| 133 | // Добавление новой версии дистрибутива
|
133 | // Добавление новой версии дистрибутива
|
| 134 | $versname = mysql_real_escape_string($_POST["versNam"]); |
134 | $versname = mysql_real_escape_string($_POST["versNam"]); |
| 135 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
135 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
| 136 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
136 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
| 137 | $distname = abs(intval($_POST["distName"])); |
137 | $distname = abs(intval($_POST["distName"])); |
| 138 | 138 | ||
| 139 | $res =& $db->query("INSERT INTO version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode'"); |
139 | $res =& $db->query("INSERT INTO version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode'"); |
| 140 | 140 | ||
| 141 | break; |
141 | break; |
| 142 | case '5': |
142 | case '5': |
| 143 | // Правка имеющейся версии дистрибутива
|
143 | // Правка имеющейся версии дистрибутива
|
| 144 | $versname = mysql_real_escape_string($_POST["versNam"]); |
144 | $versname = mysql_real_escape_string($_POST["versNam"]); |
| 145 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
145 | $versnumb = mysql_real_escape_string($_POST["versNum"]); |
| 146 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
146 | $verscode = mysql_real_escape_string($_POST["versCN"]); |
| 147 | $distname = abs(intval($_POST["distName"])); |
147 | $distname = abs(intval($_POST["distName"])); |
| 148 | $versID = abs(intval($_POST["versID"])); |
148 | $versID = abs(intval($_POST["versID"])); |
| 149 | 149 | ||
| 150 | $res =& $db->query("UPDATE version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode' WHERE version_id='$versID'"); |
150 | $res =& $db->query("UPDATE version SET dist_id='$distname', vname='$versname', version='$versnumb', vcodename='$verscode' WHERE version_id='$versID'"); |
| 151 | 151 | ||
| 152 | break; |
152 | break; |
| 153 | case '6': |
153 | case '6': |
| 154 | // Удаление существующей версии дистрибутива
|
154 | // Удаление существующей версии дистрибутива
|
| 155 | $versID = abs(intval($_POST["versID"])); |
155 | $versID = abs(intval($_POST["versID"])); |
| 156 | 156 | ||
| 157 | $res =& $db->query("DELETE FROM version WHERE version_id='$versID'"); |
157 | $res =& $db->query("DELETE FROM version WHERE version_id='$versID'"); |
| 158 | $res =& $db->query("DELETE FROM ver2rep WHERE ver_id='$versID'"); |
158 | $res =& $db->query("DELETE FROM ver2rep WHERE ver_id='$versID'"); |
| 159 | 159 | ||
| 160 | break; |
160 | break; |
| 161 | case '7': |
161 | case '7': |
| 162 | // Добавление нового репозитория
|
162 | // Добавление нового репозитория
|
| 163 | $versID = abs(intval($_POST["vers"])); |
163 | $versID = abs(intval($_POST["vers"])); |
| 164 | $repname = mysql_real_escape_string($_POST["repName"]); |
164 | $repname = mysql_real_escape_string($_POST["repName"]); |
| 165 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
165 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
| 166 | $repsche = abs(intval($_POST["scheme"])); |
166 | $repsche = abs(intval($_POST["scheme"])); |
| 167 | $reptype = abs(intval($_POST["rtype"])); |
167 | $reptype = abs(intval($_POST["rtype"])); |
| 168 | 168 | ||
| 169 | $res =& $db->query("INSERT INTO repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype'"); |
169 | $res =& $db->query("INSERT INTO repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype'"); |
| 170 | $res =& $db->query("SELECT rep_id FROM repository ORDER BY rep_id DESC LIMIT 1"); |
170 | $res =& $db->query("SELECT rep_id FROM repository ORDER BY rep_id DESC LIMIT 1"); |
| 171 | $res->fetchInto($rep, DB_FETCHMODE_ASSOC); |
171 | $res->fetchInto($rep, DB_FETCHMODE_ASSOC); |
| 172 | $rep_id = $rep["rep_id"]; |
172 | $rep_id = $rep["rep_id"]; |
| 173 | 173 | ||
| 174 | $res =& $db->query("INSERT INTO ver2rep SET ver_id='$versID', rep_id='$rep_id'"); |
174 | $res =& $db->query("INSERT INTO ver2rep SET ver_id='$versID', rep_id='$rep_id'"); |
| 175 | 175 | ||
| 176 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
176 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
| 177 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$rep_id'"); |
177 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$rep_id'"); |
| 178 | }
|
178 | }
|
| 179 | break; |
179 | break; |
| 180 | case '8': |
180 | case '8': |
| 181 | // Правка репозитория
|
181 | // Правка репозитория
|
| 182 | $repID = abs(intval($_POST["rep"])); |
182 | $repID = abs(intval($_POST["rep"])); |
| 183 | $repname = mysql_real_escape_string($_POST["repName"]); |
183 | $repname = mysql_real_escape_string($_POST["repName"]); |
| 184 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
184 | $repinfo = mysql_real_escape_string($_POST["repInfo"]); |
| 185 | $repsche = abs(intval($_POST["scheme"])); |
185 | $repsche = abs(intval($_POST["scheme"])); |
| 186 | $reptype = abs(intval($_POST["rtype"])); |
186 | $reptype = abs(intval($_POST["rtype"])); |
| 187 | 187 | ||
| 188 | $res =& $db->query("UPDATE repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype' WHERE rep_id='$repID'"); |
188 | $res =& $db->query("UPDATE repository SET repname='$repname', repdescribe='$repinfo', scheme_id='$repsche', rtype_id='$reptype' WHERE rep_id='$repID'"); |
| 189 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
189 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
| 190 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
190 | for ($i=0;$i<count($_POST["sect"]);$i++) { |
| 191 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$repID'"); |
191 | $res =& $db->query("INSERT INTO sect2rep SET sect_id='".$_POST["sect"][$i]."', rep_id='$repID'"); |
| 192 | }
|
192 | }
|
| 193 | break; |
193 | break; |
| 194 | case '9': |
194 | case '9': |
| 195 | // Удаление репозитория
|
195 | // Удаление репозитория
|
| 196 | $repID = abs(intval($_POST["rep"])); |
196 | $repID = abs(intval($_POST["rep"])); |
| 197 | 197 | ||
| 198 | $res =& $db->query("DELETE FROM repository WHERE rep_id='$repID'"); |
198 | $res =& $db->query("DELETE FROM repository WHERE rep_id='$repID'"); |
| 199 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
199 | $res =& $db->query("DELETE FROM sect2rep WHERE rep_id='$repID'"); |
| 200 | $res =& $db->query("DELETE FROM ver2rep WHERE rep_id='$repID'"); |
200 | $res =& $db->query("DELETE FROM ver2rep WHERE rep_id='$repID'"); |
| 201 | 201 | ||
| 202 | break; |
202 | break; |
| 203 | case '10': |
203 | case '10': |
| 204 | // Создание секции
|
204 | // Создание секции
|
| 205 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
205 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
| 206 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
206 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
| 207 | 207 | ||
| 208 | $req =& $db->query("INSERT INTO section SET sectname='$sectname', sectinfo='$sectinfo'"); |
208 | $req =& $db->query("INSERT INTO section SET sectname='$sectname', sectinfo='$sectinfo'"); |
| 209 | $req =& $db->query("SELECT sect_id FROM section ORDER BY sect_id DESC LIMIT 1"); |
209 | $req =& $db->query("SELECT sect_id FROM section ORDER BY sect_id DESC LIMIT 1"); |
| 210 | $req->fetchInto($sect, DB_FETCHMODE_ASSOC); |
210 | $req->fetchInto($sect, DB_FETCHMODE_ASSOC); |
| 211 | 211 | ||
| 212 | for($i=0;$i<count($_POST["dist"]);$i++) { |
212 | for($i=0;$i<count($_POST["dist"]);$i++) { |
| 213 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sect["sect_id"]."'"); |
213 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sect["sect_id"]."'"); |
| 214 | }
|
214 | }
|
| 215 | 215 | ||
| 216 | break; |
216 | break; |
| 217 | case '11': |
217 | case '11': |
| 218 | // Правка секции
|
218 | // Правка секции
|
| 219 | $sectID = abs(intval($_POST["sectID"])); |
219 | $sectID = abs(intval($_POST["sectID"])); |
| 220 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
220 | $sectname = mysql_real_escape_string($_POST["sectName"]); |
| 221 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
221 | $sectinfo = mysql_real_escape_string($_POST["sectInfo"]); |
| 222 | 222 | ||
| 223 | $req =& $db->query("UPDATE section SET sectname='$sectname', sectinfo='$sectinfo' WHERE sect_id='$sectID'"); |
223 | $req =& $db->query("UPDATE section SET sectname='$sectname', sectinfo='$sectinfo' WHERE sect_id='$sectID'"); |
| 224 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
224 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
| 225 | 225 | ||
| 226 | for($i=0;$i<count($_POST["dist"]);$i++) { |
226 | for($i=0;$i<count($_POST["dist"]);$i++) { |
| 227 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sectID."'"); |
227 | $req =& $db->query("INSERT INTO sect2dist SET dist_id='".$_POST["dist"][$i]."', sect_id='".$sectID."'"); |
| 228 | }
|
228 | }
|
| 229 | 229 | ||
| 230 | break; |
230 | break; |
| 231 | case '12': |
231 | case '12': |
| 232 | // Удаление секции
|
232 | // Удаление секции
|
| 233 | $sectID = abs(intval($_POST["sectID"])); |
233 | $sectID = abs(intval($_POST["sectID"])); |
| 234 | 234 | ||
| 235 | $req =& $db->query("DELETE FROM section WHERE sect_id='$sectID'"); |
235 | $req =& $db->query("DELETE FROM section WHERE sect_id='$sectID'"); |
| 236 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
236 | $req =& $db->query("DELETE FROM sect2dist WHERE sect_id='$sectID'"); |
| 237 | $req =& $db->query("DELETE FROM sect2rep WHERE sect_id='$sectID'"); |
237 | $req =& $db->query("DELETE FROM sect2rep WHERE sect_id='$sectID'"); |
| 238 | 238 | ||
| 239 | break; |
239 | break; |
| 240 | case '13': |
240 | case '13': |
| 241 | // Добавление новой схемы
|
241 | // Добавление новой схемы
|
| 242 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
242 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
| 243 | 243 | ||
| 244 | $req =& $db->query("INSERT INTO scheme SET scheme='$scheme'"); |
244 | $req =& $db->query("INSERT INTO scheme SET scheme='$scheme'"); |
| 245 | 245 | ||
| 246 | break; |
246 | break; |
| 247 | case '14': |
247 | case '14': |
| 248 | // Правка схемы
|
248 | // Правка схемы
|
| 249 | $schemeID = abs(intval($_POST["schemeID"])); |
249 | $schemeID = abs(intval($_POST["schemeID"])); |
| 250 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
250 | $scheme = mysql_real_escape_string($_POST["scheme"]); |
| 251 | 251 | ||
| 252 | $req =& $db->query("UPDATE scheme SET scheme='$scheme' WHERE scheme_id='$schemeID'"); |
252 | $req =& $db->query("UPDATE scheme SET scheme='$scheme' WHERE scheme_id='$schemeID'"); |
| 253 | 253 | ||
| 254 | break; |
254 | break; |
| 255 | case '15': |
255 | case '15': |
| 256 | // Удаление схемы
|
256 | // Удаление схемы
|
| 257 | $schemeID = abs(intval($_POST["schemeID"])); |
257 | $schemeID = abs(intval($_POST["schemeID"])); |
| 258 | 258 | ||
| 259 | $req =& $db->query("DELETE FROM scheme WHERE scheme_id='$schemeID'"); |
259 | $req =& $db->query("DELETE FROM scheme WHERE scheme_id='$schemeID'"); |
| 260 | 260 | ||
| 261 | break; |
261 | break; |
| 262 | case '16': |
262 | case '16': |
| 263 | // Добавление новой настройки Ant
|
263 | // Добавление новой настройки Ant
|
| 264 | $option = mysql_real_escape_string($_POST["setoption"]); |
264 | $option = mysql_real_escape_string($_POST["setoption"]); |
| 265 | $value = mysql_real_escape_string($_POST["setvalue"]); |
265 | $value = mysql_real_escape_string($_POST["setvalue"]); |
| 266 | 266 | ||
| 267 | $req =& $db->query("INSERT INTO settings SET opt='$option', optvalue='$value'"); |
267 | $req =& $db->query("INSERT INTO settings SET opt='$option', optvalue='$value'"); |
| 268 | 268 | ||
| 269 | break; |
269 | break; |
| 270 | case '17': |
270 | case '17': |
| 271 | // Правка настройки Ant
|
271 | // Правка настройки Ant
|
| 272 | $optID = abs(intval($_POST["optID"])); |
272 | $optID = abs(intval($_POST["optID"])); |
| 273 | $option = mysql_real_escape_string($_POST["setoption"]); |
273 | $option = mysql_real_escape_string($_POST["setoption"]); |
| 274 | $value = mysql_real_escape_string($_POST["setvalue"]); |
274 | $value = mysql_real_escape_string($_POST["setvalue"]); |
| 275 | 275 | ||
| 276 | $req =& $db->query("UPDATE settings SET opt='$option', optvalue='$value' WHERE opt_id='$optID'"); |
276 | $req =& $db->query("UPDATE settings SET opt='$option', optvalue='$value' WHERE opt_id='$optID'"); |
| 277 | 277 | ||
| 278 | break; |
278 | break; |
| 279 | case '18': |
279 | case '18': |
| 280 | // Удаление настройки
|
280 | // Удаление настройки
|
| 281 | $optID = abs(intval($_POST["optID"])); |
281 | $optID = abs(intval($_POST["optID"])); |
| 282 | 282 | ||
| 283 | $req =& $db->query("DELETE FROM settings WHERE opt_id='$optID'"); |
283 | $req =& $db->query("DELETE FROM settings WHERE opt_id='$optID'"); |
| 284 | 284 | ||
| 285 | break; |
285 | break; |
| 286 | case '19': |
286 | case '19': |
| 287 | // Добавление нового типа репозитория
|
287 | // Добавление нового типа репозитория
|
| 288 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
288 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
| 289 | 289 | ||
| 290 | $req =& $db->query("INSERT INTO rtype SET rtype='$rtype'"); |
290 | $req =& $db->query("INSERT INTO rtype SET rtype='$rtype'"); |
| 291 | 291 | ||
| 292 | break; |
292 | break; |
| 293 | case '20': |
293 | case '20': |
| 294 | // Правка существующего типа репозитория
|
294 | // Правка существующего типа репозитория
|
| 295 | $rtypeID = abs(intval($_POST["rtypeID"])); |
295 | $rtypeID = abs(intval($_POST["rtypeID"])); |
| 296 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
296 | $rtype = mysql_real_escape_string($_POST["rtype"]); |
| 297 | 297 | ||
| 298 | $req =& $db->query("UPDATE rtype SET rtype='$rtype' WHERE rtype_id='$rtypeID'"); |
298 | $req =& $db->query("UPDATE rtype SET rtype='$rtype' WHERE rtype_id='$rtypeID'"); |
| 299 | 299 | ||
| 300 | break; |
300 | break; |
| 301 | case '21': |
301 | case '21': |
| 302 | // Удаление типа репозитория
|
302 | // Удаление типа репозитория
|
| 303 | $rtypeID = abs(intval($_POST["rtypeID"])); |
303 | $rtypeID = abs(intval($_POST["rtypeID"])); |
| 304 | 304 | ||
| 305 | $req =& $db->query("DELETE FROM rtype WHERE rtype_id='$rtypeID'"); |
305 | $req =& $db->query("DELETE FROM rtype WHERE rtype_id='$rtypeID'"); |
| 306 | 306 | ||
| 307 | break; |
307 | break; |
| 308 | case '22': |
308 | case '22': |
| 309 | // Смена пароля
|
309 | // Смена пароля
|
| 310 | // $OID = abs(intval($_POST["OID"]));
|
310 | // $OID = abs(intval($_POST["OID"]));
|
| 311 | $oldpass = mysql_real_escape_string($_POST["oldPW"]); |
311 | $oldpass = mysql_real_escape_string($_POST["oldPW"]); |
| 312 | $newpass1 = mysql_real_escape_string($_POST["newPW1"]); |
312 | $newpass1 = mysql_real_escape_string($_POST["newPW1"]); |
| 313 | $newpass2 = mysql_real_escape_string($_POST["newPW2"]); |
313 | $newpass2 = mysql_real_escape_string($_POST["newPW2"]); |
| 314 | 314 | ||
| 315 | $errpwd = 0; |
315 | $errpwd = 0; |
| 316 | $spass = md5($newpass1."ANT"); |
316 | $spass = md5($newpass1."ANT"); |
| 317 | $soldpass = md5($oldpass."ANT"); |
317 | $soldpass = md5($oldpass."ANT"); |
| 318 | if ($soldpass != $_COOKIE[$CookiePasswd]) { |
318 | if ($soldpass != $_COOKIE[$CookiePasswd]) { |
| 319 | $go .= "?error=1"; |
319 | $go .= "?error=1"; |
| 320 | $errpwd = 1; |
320 | $errpwd = 1; |
| 321 | }
|
321 | }
|
| 322 | if ($newpass1 != $newpass2) { |
322 | if ($newpass1 != $newpass2) { |
| 323 | $go .= "?error=2"; |
323 | $go .= "?error=2"; |
| 324 | $errpwd = 2; |
324 | $errpwd = 2; |
| 325 | }
|
325 | }
|
| 326 | 326 | ||
| 327 | if ($errpwd==0) { |
327 | if ($errpwd==0) { |
| 328 | // fix: Для многопользовательского варианта придется запрос переписать
|
328 | // fix: Для многопользовательского варианта придется запрос переписать
|
| 329 | $req =& $db->query("UPDATE owner SET passwd='$spass' WHERE login='admin'"); |
329 | $req =& $db->query("UPDATE owner SET passwd='$spass' WHERE login='admin'"); |
| 330 | }
|
330 | }
|
| 331 | 331 | ||
| 332 | break; |
332 | break; |
| 333 | case '23': |
333 | case '23': |
| 334 | // Добавление интерфейса
|
334 | // Добавление интерфейса
|
| 335 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
335 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
| 336 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
336 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
| 337 | $ifname = str_replace(".php","",$ifname); |
337 | $ifname = str_replace(".php","",$ifname); |
| 338 | $req =& $db->query("INSERT INTO interfaces SET interface='$ifname', interfaceinfo='$ifinfo'"); |
338 | $req =& $db->query("INSERT INTO interfaces SET interface='$ifname', interfaceinfo='$ifinfo'"); |
| 339 | break; |
339 | break; |
| 340 | case '24': |
340 | case '24': |
| 341 | // Правка интерфейса
|
341 | // Правка интерфейса
|
| 342 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
342 | $ifname = mysql_real_escape_string($_POST["ifname"]); |
| 343 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
343 | $ifinfo = mysql_real_escape_string($_POST["ifinfo"]); |
| 344 | $if = abs(intval($_POST["if"])); |
344 | $if = abs(intval($_POST["if"])); |
| 345 | $ifname = str_replace(".php","",$ifname); |
345 | $ifname = str_replace(".php","",$ifname); |
| 346 | $req =& $db->query("UPDATE interfaces SET interface='$ifname', interfaceinfo='$ifinfo' WHERE if_id='$if'"); |
346 | $req =& $db->query("UPDATE interfaces SET interface='$ifname', interfaceinfo='$ifinfo' WHERE if_id='$if'"); |
| 347 | break; |
347 | break; |
| 348 | case '25': |
348 | case '25': |
| 349 | // Удаление интерфейса
|
349 | // Удаление интерфейса
|
| 350 | $if = abs(intval($_POST["if"])); |
350 | $if = abs(intval($_POST["if"])); |
| 351 | $req =& $db->query("DELETE FROM interfaces WHERE if_id='$if'"); |
351 | $req =& $db->query("DELETE FROM interfaces WHERE if_id='$if'"); |
| 352 | break; |
352 | break; |
| 353 | }
|
353 | }
|
| 354 | 354 | ||
| 355 | header("Location: $go\n\n"); |
355 | header("Location: $go\n\n"); |
| 356 | 356 | ||
| 357 | ?>
|
357 | ?>
|
| 358 | 358 | ||