API tools faq
paste
Advertisement
Guest User

is_items.php

a guest
Mar 13th, 2017
94
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.90 KB | None | 0 0
raw download clone embed print report
  1. <?PHP
  2. error_reporting( E_ALL );
  3. ini_set('display_errors', 1);
  4. if($_SESSION['user_admin']>=$adminRights['is_items']) {
  5. $maxDateiGr = 100; //KByte
  6. $maxDateix = 100; //Pixel X-Achse
  7. $maxDateiy = 100; //Pixel Y-Achse
  8. echo'<h2>Admin - Itemshop-Items</h2>';
  9. echo'<p>Hier k&ouml;nnen die IS-Items bearbeitet werden</p>';
  10.  
  11. if(isset($_POST['submit']) && $_POST['submit']=="eintragen") {
  12. if(!empty($_POST['itemtyp']) && checkInt($_POST['itemgrad']) && checkInt($_POST['preis']) && checkInt($_POST['kategorie'])) {
  13. $bildDatei=imageUpload('bildupload',$maxDateiGr,$maxDateix,$maxDateiy);
  14. if(!$bildDatei) $bildDatei='';
  15.  
  16. $getStufen = compareItems($_POST['itemtyp']);
  17. if($_POST['itemgrad']<=$getStufen['maxStufe']) {
  18. $inVnum = $_POST['itemtyp']+$_POST['itemgrad'];
  19. }
  20. else {
  21. $inVnum = $_POST['itemtyp'];
  22. }
  23.  
  24. $socket0 = (checkInt($_POST['socket0'])) ? $_POST['socket0'] : '0';
  25. $socket1 = (checkInt($_POST['socket1'])) ? $_POST['socket1'] : '0';
  26. $socket2 = (checkInt($_POST['socket2'])) ? $_POST['socket2'] : '0';
  27. $boni0 = ($_POST['boni0']>=0 && $_POST['boni0']<=255) ? $_POST['boni0'] : '0';
  28. $boni1 = ($_POST['boni1']>=0 && $_POST['boni1']<=255) ? $_POST['boni1'] : '0';
  29. $boni2 = ($_POST['boni2']>=0 && $_POST['boni2']<=255) ? $_POST['boni2'] : '0';
  30. $boni3 = ($_POST['boni3']>=0 && $_POST['boni3']<=255) ? $_POST['boni3'] : '0';
  31. $boni4 = ($_POST['boni4']>=0 && $_POST['boni4']<=255) ? $_POST['boni4'] : '0';
  32. $boni5 = ($_POST['boni5']>=0 && $_POST['boni5']<=255) ? $_POST['boni5'] : '0';
  33. $boni6 = ($_POST['boni6']>=0 && $_POST['boni6']<=255) ? $_POST['boni6'] : '0';
  34. $boniv0 = ($_POST['boniv0']>=(-32767) && $_POST['boniv0']<=32767) ? $_POST['boniv0'] : '0';
  35. $boniv1 = ($_POST['boniv1']>=(-32767) && $_POST['boniv1']<=32767) ? $_POST['boniv1'] : '0';
  36. $boniv2 = ($_POST['boniv2']>=(-32767) && $_POST['boniv2']<=32767) ? $_POST['boniv2'] : '0';
  37. $boniv3 = ($_POST['boniv3']>=(-32767) && $_POST['boniv3']<=32767) ? $_POST['boniv3'] : '0';
  38. $boniv4 = ($_POST['boniv4']>=(-32767) && $_POST['boniv4']<=32767) ? $_POST['boniv4'] : '0';
  39. $boniv5 = ($_POST['boniv5']>=(-32767) && $_POST['boniv5']<=32767) ? $_POST['boniv5'] : '0';
  40. $boniv6 = ($_POST['boniv6']>=(-32767) && $_POST['boniv6']<=32767) ? $_POST['boniv6'] : '0';
  41.  
  42.  
  43.  
  44. $inPreis = $_POST['preis'];
  45. $inKategorie = $_POST['kategorie'];
  46. $inBeschreibung = mysql_real_escape_string($_POST['beschreibung']);
  47. $inAnzeigen = ($_POST['anzeigen']=="J") ? "J" : "N";
  48.  
  49. $sqlCmd="INSERT INTO ".SQL_HP_DB.".is_items
  50. (kategorie_id, bild, beschreibung, preis, anzeigen, attrtype0, attrvalue0, attrtype1, attrvalue1, attrtype2, attrvalue2, attrtype3, attrvalue3, attrtype4, attrvalue4, attrtype5, attrvalue5, attrtype6, attrvalue6, socket0, socket1, socket2)
  51. VALUES
  52. ('".$inKategorie."','".$bildDatei."','".$inBeschreibung."','".$inPreis."','".$inAnzeigen."','".$boni0."', '".$boniv0."', '".$boni1."', '".$boniv1."', '".$boni2."', '".$boniv2."', '".$boni3."', '".$boniv3."', '".$boni4."', '".$boni4."', '".$boni5."', '".$boniv5."', '".$boni6."', '".$boniv6."', '".$socket0."', '".$socket1."', '".$socket1."')";
  53. if($inSql){
  54. echo'<p class="meldung">Item erfolgreich in den Itemshop eingefügt.</p>';
  55. }else{
  56. echo mysql_errno($sqlHp) . ": " . mysql_error($sqlHp) . "\n";
  57. }
  58. die(mysql_error());
  59. if($inSql) echo'<p class="meldung">Item erfolgreich in den Itemshop eingef&uuml;gt.</p>';
  60.  
  61. }
  62. }
  63. elseif(isset($_POST['submit']) && $_POST['submit']=="bearbeiten") {
  64. if(!empty($_POST['itemtyp']) && checkInt($_POST['itemgrad']) && checkInt($_POST['preis']) && checkInt($_POST['kategorie']) && checkInt($_POST['iid'])) {
  65. $bildDatei=imageUpload('bildupload',$maxDateiGr,$maxDateix,$maxDateiy);
  66. if(!$bildDatei) $aktIMG=$_POST['bildAlt'];
  67. else $aktIMG=$bildDatei;
  68. $opDeleted=false;
  69. if((isset($_POST['loeschen']) && $_POST['loeschen']=='loeschen') || !empty($bildDatei)) {
  70. if(!empty($_POST['bildAlt'])) {
  71. if(unlink('./is_img/'.$_POST['bildAlt']))
  72. {
  73. echo'<p class="meldung">Altes Bild erfolgreich gel&ouml;scht.</p>';
  74. $opDeleted=true;
  75. }
  76. }
  77. }
  78.  
  79. if((empty($_POST['bildAlt']) && !$bildDatei) || ($opDeleted==true && !$bildDatei)) {
  80. $aktIMG='';
  81. }
  82.  
  83. $getStufen = compareItems($_POST['itemtyp']);
  84. if($_POST['itemgrad']<=$getStufen['maxStufe']) {
  85. $inVnum = $_POST['itemtyp']+$_POST['itemgrad'];
  86. }
  87. else {
  88. $inVnum = $_POST['itemtyp'];
  89. }
  90.  
  91. $socket0 = (checkInt($_POST['socket0'])) ? $_POST['socket0'] : '0';
  92. $socket1 = (checkInt($_POST['socket1'])) ? $_POST['socket1'] : '0';
  93. $socket2 = (checkInt($_POST['socket2'])) ? $_POST['socket2'] : '0';
  94. $boni0 = ($_POST['boni0']>=0 && $_POST['boni0']<=255) ? $_POST['boni0'] : '0';
  95. $boni1 = ($_POST['boni1']>=0 && $_POST['boni1']<=255) ? $_POST['boni1'] : '0';
  96. $boni2 = ($_POST['boni2']>=0 && $_POST['boni2']<=255) ? $_POST['boni2'] : '0';
  97. $boni3 = ($_POST['boni3']>=0 && $_POST['boni3']<=255) ? $_POST['boni3'] : '0';
  98. $boni4 = ($_POST['boni4']>=0 && $_POST['boni4']<=255) ? $_POST['boni4'] : '0';
  99. $boni5 = ($_POST['boni5']>=0 && $_POST['boni5']<=255) ? $_POST['boni5'] : '0';
  100. $boni6 = ($_POST['boni6']>=0 && $_POST['boni6']<=255) ? $_POST['boni6'] : '0';
  101. $boniv0 = ($_POST['boniv0']>=(-32767) && $_POST['boniv0']<=32767) ? $_POST['boniv0'] : '0';
  102. $boniv1 = ($_POST['boniv1']>=(-32767) && $_POST['boniv1']<=32767) ? $_POST['boniv1'] : '0';
  103. $boniv2 = ($_POST['boniv2']>=(-32767) && $_POST['boniv2']<=32767) ? $_POST['boniv2'] : '0';
  104. $boniv3 = ($_POST['boniv3']>=(-32767) && $_POST['boniv3']<=32767) ? $_POST['boniv3'] : '0';
  105. $boniv4 = ($_POST['boniv4']>=(-32767) && $_POST['boniv4']<=32767) ? $_POST['boniv4'] : '0';
  106. $boniv5 = ($_POST['boniv5']>=(-32767) && $_POST['boniv5']<=32767) ? $_POST['boniv5'] : '0';
  107. $boniv6 = ($_POST['boniv6']>=(-32767) && $_POST['boniv6']<=32767) ? $_POST['boniv6'] : '0';
  108.  
  109. $inPreis = $_POST['preis'];
  110. $inKategorie = $_POST['kategorie'];
  111. $inBeschreibung = mysql_real_escape_string($_POST['beschreibung']);
  112. $inAnzeigen = ($_POST['anzeigen']=="J") ? "J" : "N";
  113.  
  114. $sqlCmd="UPDATE ".SQL_HP_DB.".is_items
  115. SET vnum='".$inVnum."', kategorie_id='".$inKategorie."', bild='".$aktIMG."', beschreibung='".$inBeschreibung."', preis='".$inPreis."', anzeigen='".$inAnzeigen."' ,attrtype0='".$boni0."', attrvalue0='".$boniv0."', attrtype1='".$boni1."', attrvalue1='".$boniv1."', attrtype2='".$boni2."', attrvalue2='".$boniv2."', attrtype3='".$boni3."', attrvalue3='".$boniv3."', attrtype4='".$boni4."', attrvalue4='".$boniv4."', attrtype5='".$boni5."', attrvalue5='".$boniv5."', attrtype6='".$boni6."', attrvalue6='".$boniv6."', socket0='".$socket0."', socket1='".$socket1."', socket2='".$socket2."'
  116. WHERE id='".$_POST['iid']."'";
  117. echo $sqlCmd;
  118. $inSql = mysql_query($sqlCmd,$sqlHp) or die(mysql_error());
  119. if($inSql) echo'<p class="meldung">Item erfolgreich aktualisiert</p>';
  120. }
  121. }
  122.  
  123. if(isset($_GET['do']) && $_GET['do']=="add") {
  124. include("./pages/admin/is_item_add.inc.php");
  125. }
  126. elseif(isset($_GET['do']) && $_GET['do']=="edit") {
  127. include("./pages/admin/is_item_edit.inc.php");
  128. }
  129. elseif(isset($_GET['do']) && $_GET['do']=="delete") {
  130. include("./pages/admin/is_item_delete.inc.php");
  131. }
  132.  
  133. ?>
  134. <p><a href="index.php?s=admin&a=is_items&do=add">Item hinzuf&uuml;gen</a></p>
  135. <table>
  136. <tr>
  137. <th class="topLine">IS-ID</th>
  138. <th class="topLine">Item/Vnum</th>
  139. <th class="topLine">Bild</th>
  140. <th class="topLine">Kategorie</th>
  141. <th class="topLine">Preis</th>
  142. <th class="topLine">Beschreibung</th>
  143. <th class="topLine">Funktionen</th>
  144. </tr>
  145. <?PHP
  146. $sqlCmd="SELECT is_items.*,is_kategorien.titel AS kat_titel FROM ".SQL_HP_DB.".is_items
  147. INNER JOIN ".SQL_HP_DB.".is_kategorien
  148. ON is_kategorien.id=is_items.kategorie_id
  149. ORDER BY is_items.kategorie_id ASC";
  150. $sqlQry=mysql_query($sqlCmd,$sqlHp);
  151. $x=0;
  152. while($getIS=mysql_fetch_object($sqlQry)) {
  153. $aktItem = compareItems($getIS->vnum);
  154. $itemStufe = (checkInt($aktItem['stufe'])) ? "+".$aktItem['stufe'] : '';
  155. $zF=($x%2==0) ? "tdunkel" : "thell";
  156. $zBild = (!empty($getIS->bild)) ? "success.gif" : "fail.gif";
  157. echo'<tr>
  158. <td class="'.$zF.'">'.$getIS->id.'</td>
  159. <td class="'.$zF.'">'.$aktItem['item'].$itemStufe.'</td>
  160. <td class="'.$zF.'"><img src="./img/'.$zBild.'"/></td>
  161. <td class="'.$zF.'">'.$getIS->kat_titel.'</td>
  162. <td class="'.$zF.'">'.$getIS->preis.'</td>
  163. <td class="'.$zF.'">'.$getIS->beschreibung.'</td>
  164. <td class="'.$zF.'">[<a href="index.php?s=admin&a=is_items&do=edit&id='.$getIS->id.'">bearbeiten</a>]&nbsp;[<a href="index.php?s=admin&a=is_items&do=delete&id='.$getIS->id.'">l&ouml;schen</a>]</td>
  165. </tr>';
  166. $x++;
  167. }
  168. ?>
  169. </table>
  170.  
  171. <?PHP
  172. }
  173. else {
  174. echo'<p class="meldung">Kein Zugriff auf diesen Bereich!</p>';
  175. }
  176. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!