Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if( (isset($_COOKIE['login'])) & (isset($_COOKIE['pass'])) ) {
- $avatar =($_SESSION['login']);
- if ($avatar == "") $avatar = "default.jpg";
- echo "<p>Здравствуйте, <b>".$_SESSION['login']."</b>!";
- echo "<p><img width='170' src='images/avatars/default.jpg' alt='Аватарка' /></p>";
- echo "<br />";
- echo "<a href = 'editavatar.php' title = 'Редактировать аватарку'>Изменить аватарку</a>";
- echo "<br />";
- echo "<a href = 'editprofile.php' title = 'Редактировать профиль'>Редактировать профиль</a>";
- echo "<br />";
- echo "<a href = 'allusers.php' title = 'Все зарегистрированные пользователи'>Другие пользователи</a>";
- echo "<br />";
- echo "<a href = 'messages.php' title = 'Сообщения'>Сообщения</a>";
- echo "<br />";
- echo "<a href = 'logout.php' title = 'Выход'>Выход</a>";
- function connectDB() {
- return new mysqli("localhost", "root", "", "test");
- }
- function closeDB($mysqli) {
- $mysqli->close();
- }
- function resultToArray($result_set) {
- $results = array();
- while (($row = $result_set->fetch_assoc()) != false) {
- $results[] = $row;
- }
- return $results;
- }
- function getAvatar($login) {
- $mysqli = connectDB();
- $result_set = $mysqli->query("SELECT `avatar` FROM users WHERE `login`='$login'");
- $row = $result_set->fetch_assoc;
- closeDB($mysqli);
- return $row[""];
- }
- function isSecurity($avatar) {
- $name = $avatar["name"];
- $type = $avatar["type"];
- $size = $avatar["size"];
- $blacklist = array(".php",".phtml",".php3",".php4");
- foreach ($blacklist as $item) {
- if (preg_match("/$item\$/i", $name)) return false;
- }
- if (($type != "image/gif") && ($type != "image/png") && ($type != "image/jpg") && ($type != "image/jpeg")) return false;
- if ($size > 5 * 1024 * 1024) return false;
- return true;
- }
- function loadAvatar($avatar, $login) {
- $type = $avatar["type"];
- $uploaddir = "images/avatars/";
- $name = md5(microtime()).".".substr($type, strlen("image/"));
- $uploadfile = $uploaddir.$name;
- if (move_uploaded_file($avatar["tmp_name"], $uploadfile)) {
- setAvatar($login, $name);
- return true;
- }
- else return false;
- }
- function setAvatar($login, $name) {
- $mysqli = connectDB();
- $mysqli->query("UPDATE `users` SET `avatar`='$name' WHERE `login`='$login'");
- closeDB($mysqli);
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement