connect();
$template = new template();
$web_obj = new web();
$admin_obj = new admin();
if($fields[0] == "pictures")
{
include $_SERVER['DOCUMENT_ROOT']."/classes/class.image.php";
$image = new image();
if($fields[1] == "article")
{
$file = explode(".", $fields[3]);
$size = explode("_", $file[0]);
$imgagesize = getimagesize($_SERVER['DOCUMENT_ROOT']."/pictures/".$fields[1]."/".$fields[2]."/".$size[0].".jpg");
$width = $imgagesize[0];
$height = $imgagesize[1];
$image->resize("pictures/".$fields[1]."/".$fields[2]."/".$size[0].".jpg", $size[1]);
}
elseif($fields[1] == "photo")
{
$file = explode(".", $fields[2]);
$size = explode("_", $file[0]);
$imgagesize = getimagesize($_SERVER['DOCUMENT_ROOT']."/pictures/".$fields[1]."/".$size[0].".jpg");
$width = $imgagesize[0];
$height = $imgagesize[1];
$image->resize("pictures/".$fields[1]."/".$size[0].".jpg", $size[1]);
}
}
if($fields[0] == "admin")
{
$template->usethis("admin.html");
}
elseif($fields[0] == "akarmi")
{
$template->usethis("popup.html");
}
else
{
$template->usethis("main.html");
}
if($fields[0] == "admin")
{
if(!isset($_SESSION["loggedin"]) && $fields[1] != "login")
{
echo "";
}
elseif($fields[1] == "login")
{
$template->replacethis("#CONTENT#", $admin_obj->login_screen());
}
elseif(!isset($fields[1]) && isset($_SESSION["loggedin"]))
{
echo "";
}
elseif($fields[1] == "1" || $fields[1] == "2" || $fields[1] == "3" || $fields[1] == "4" || $fields[1] == "5" || $fields[1] == "6")
{
$template->replacethis("#MENU#", $admin_obj->menu());
if(!isset($fields[2]))
{
$template->replacethis("#CONTENT#", $admin_obj->article_list($fields[1]));
}
elseif($fields[2] == "new")
{
$admin_obj->insert_article($fields[1]);
}
elseif($fields[2] == "delete")
{
mysql_query("UPDATE Article SET ArticleTemporary = 1
WHERE ArticleID = ".$fields[3])or die(mysql_error());
echo "";
}
}
elseif($fields[1] == "modify")
{
$template->replacethis("#MENU#", $admin_obj->menu());
$template->replacethis("#CONTENT#", $admin_obj->update_article_screen($fields[2]));
if(isset($fields[3]) && $fields[3] == "delete")
{
$admin_obj->delete_picture($fields[2], $fields[4]);
}
}
elseif($fields[1] == "photo")
{
$template->replacethis("#MENU#", $admin_obj->menu());
$template->replacethis("#CONTENT#", $admin_obj->photo_list());
if(isset($fields[2]) && $fields[2] == "status")
{
mysql_query("UPDATE Photo SET PhotoActive = ".$fields[4]."
WHERE PhotoID = ".$fields[3])or die(mysql_error());
echo "";
}
if(isset($fields[2]) && $fields[2] == "delete")
{
mysql_query("DELETE FROM Photo
WHERE PhotoID = ".$fields[3])or die(mysql_error());
echo "";
}
}
elseif($fields[1] == "logout")
{
session_destroy();
echo "";
}
else
{
$template->replacethis("#CONTENT#", "Nincs ilyen oldal!");
}
}
elseif($fields[0] == "")
{
$template->replacethis("#CONTENT#", $web_obj->photos_list());
}
elseif($fields[0] == "nyeremenyek")
{
$template->replacethis("#CONTENT#", $web_obj->simple_page(1));
}
elseif($fields[0] == "versenybirak")
{
$template->replacethis("#CONTENT#", $web_obj->simple_page(2));
}
elseif($fields[0] == "alapitvany")
{
$template->replacethis("#CONTENT#", $web_obj->simple_page(99));
}
elseif($fields[0] == "bovebben")
{
$template->replacethis("#CONTENT#", $web_obj->bovebb($fields[1]));
}
else
{
$template->replacethis("#CONTENT#", "Nincs ilyen oldal!
");
}
if(isset($_POST["admin_login"]))
{
if($_POST["name"] == "admin" && $_POST["pwd"] == "alapitvany123")
{
$_SESSION["loggedin"] = 1;
echo "";
}
else
{
$template->replacethis("#MESSAGE#", "Login failed!");
}
}
if(isset($_POST["article_modify"]))
{
$admin_obj->update_article($_POST["articleid"], (isset($_POST["name"]) ? $_POST["name"] : ""), (isset($_POST["text"]) ? $_POST["text"] : ""));
if (is_uploaded_file($_FILES["image"]["tmp_name"]))
{
$admin_obj->upload_picture($_POST["articleid"]);
}
echo "";
}
if(isset($_POST["PhotoTitle"]))
{
if (is_uploaded_file($_FILES["image1"]["tmp_name"]))
{
mysql_query("INSERT Photo (PhotoTitle, PhotoUserName, PhotoEmail, PhotoPhone, PatientSex, PatientAge, StringNumber1, StringNumber2, StringNumber3, StringNumber4, Combined, Date) SELECT
'".$_POST["PhotoTitle"]."', '".$_POST["PhotoUserName"]."', '".$_POST["PhotoEmail"]."', '".$_POST["PhotoPhone"]."', '".$_POST["PatientSex"]."', '".$_POST["PatientAge"]."', '".$_POST["StringNumber1"]."', '".$_POST["StringNumber2"]."', '".$_POST["StringNumber3"]."', '".$_POST["StringNumber4"]."', '".$_POST["Combined"]."', NOW()")or die(mysql_error());
$azon = mysql_insert_id();
$imagename = $azon.'-1.jpg';
move_uploaded_file($_FILES['image1']['tmp_name'], $_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename);
chmod($_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename, 0777);
$imagename = $azon.'-2.jpg';
move_uploaded_file($_FILES['image2']['tmp_name'], $_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename);
chmod($_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename, 0777);
$imagename = $azon.'-3.jpg';
move_uploaded_file($_FILES['image3']['tmp_name'], $_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename);
chmod($_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename, 0777);
$imagename = $azon.'-4.jpg';
move_uploaded_file($_FILES['image4']['tmp_name'], $_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename);
chmod($_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename, 0777);
include $_SERVER['DOCUMENT_ROOT']."/classes/class.phpmailer.php";
$email = new PHPMailer();
$email->AddAddress("bolgar.tibor@zencm.hu");
$email->IsHTML(true);
$email->From = "651951@bwmarketing.hu";
$email->FromName = "Alapitvany_tokeletesbor";
$email->Subject = "Tökéletesbőr Alapítvány képfeltöltés";
$email->Body = "Új fotó lett feltöltve!";
$email -> Send();
echo "";
}
}
if(isset($_POST["vote"]))
{
$ip = $_SERVER["REMOTE_ADDR"];
$today = date("Y-m-d");
$PhotoID = $_POST["PhotoID"];
$ex = mysql_query("SELECT * FROM UserVote
WHERE UserIP = '$ip'
AND UserVoteDate = '$today'")or die(mysql_error());
if(mysql_num_rows($ex) == 0)
{
if(isset($_POST["sorsolas"]))
{
mysql_query("INSERT User (UserName, UserAddress, UserPhone, UserEmail, UserInfo)
SELECT
'".$_POST["UserName"]."',
'".$_POST["UserAddress"]."',
'".$_POST["UserPhone"]."',
'".$_POST["UserEmail"]."',
'".$_POST["UserInfo"]."'")or die(mysql_error());
}
mysql_query("INSERT UserVote (PhotoID, UserIP, UserVoteDate)
SELECT $PhotoID, '$ip', NOW()")or die(mysql_error());
echo "";
}
else
{
echo "";
}
}
if(isset($_POST["search_text"]))
{
echo "";
}
$template->replacethis("#MENU1#", "");
$template->replacethis("#MENU2#", "");
$template->replacethis("#MENU3#", "");
$template->replacethis("#MENU4#", "");
$template->replacethis("#MENU#", "");
$template->replacethis("#MESSAGE#", "");
$template->output();
$database->disconnect();
?>