Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- NOTE TEST PROGRAMMATION DERY
- ____________________________________________________________________________
- CONNECTION A DATABASE
- __________________________
- -----------------------
- Config.php
- -----------------------
- /**
- * These are the database login details
- */
- define("HOST", "localhost"); // The host you want to connect to.
- define("USER", "sec_user"); // The database username.
- define("PASSWORD", "vNNmQVbpY8ZxJv2L"); // The database password.
- define("DATABASE", "clubnautique"); // The database name.
- define("CAN_REGISTER", "any");
- define("DEFAULT_ROLE", "member");
- define("SECURE", FALSE); // FOR DEVELOPMENT ONLY!!!!
- -------------------------
- Connection.php
- -------------------------
- include_once 'Config.php'; // As functions.php is not included
- try
- {
- $PDO=new PDO('mysql:HOST='.HOST.';dbname='.DATABASE,USER,PASSWORD);
- }
- catch(Exception $e)
- {
- die('Erreur : ' . $e->getMessage());
- }
- ____________________________________________________________________________
- recuperer du data dans la BD
- ____________________________________________________________________________
- ---------------------------------
- get sets from the DB
- getinitialdata.php
- ---------------------------------
- <?php
- if(isset($_GET["Icb"]))
- {
- include'../Connection/Connection.php';
- }
- else
- include'/Connection/Connection.php';
- $pagination="";
- $start=0;
- $htmlId="MainContainer";
- $sql="SELECT
- id
- FROM
- news";
- $news=$PDO->query($sql);
- $numrow=$news->rowCount();
- if(isset($_GET['page']))
- {
- $start=$_GET['page']*3;
- }
- $currentpage=$start/3+1;
- if($numrow>3)
- {
- $url='/PhpMethods/GetInitialData.php';
- $pages=ceil($numrow/3);
- $pagination="<ul class='pagination' >";
- //ajouter le precedant;
- if($currentpage==1)
- {
- $pagination.="<li class='disabled'><a>«</a></li>";
- }
- else
- $pagination.="<li onclick='GetData(".($currentpage-2).",\"{$url}\",\"{$htmlId}\")'><a>«</a></li>";
- //ajouter les pages
- for($i=0;$i<$pages;$i++)
- {
- $page=$i+1;
- if($page==$currentpage)
- {
- $pagination.="<li class='active'><a>".$page."</a></li>";
- }
- else
- $pagination.="<li onclick='GetData(".$i.",\"{$url}\",\"{$htmlId}\")'><a>".$page."</a></li>";
- }
- //ajouter le suivant
- if($currentpage==$pages)
- {
- $pagination.="<li class='disabled'><a>»</a></li>";
- }
- else
- $pagination.="<li onclick='GetData(".$currentpage.",\"{$url}\",\"{$htmlId}\")'><a>»</a></li>";
- $pagination.="</ul>";
- }
- $sql ="SELECT id ,title,SUBSTRING(descript,1,300) as descript,date,picture
- FROM
- news
- ORDER BY id
- DESC LIMIT ".$start.",3";
- $stmt = $PDO->query($sql);
- $output = "<div style='max-height:650px;'>";
- while($row = $stmt->fetch()){
- extract($row);
- $output .= "<div id='".$row["id"]."' page='".$currentpage."' class='news' style='height:200px;max-height:200px;'>";
- $output .= "<div style='color:white; width:100%; clear:both; margin-left:5%;'>";
- $output .= "<a><h2>" . utf8_encode($row["title"]) . "</h2></a></div>";
- $output .= "<div class='ImgNews'style=' background-image : url(/img/".$row["picture"].")'></div>";
- $output .= "<div style='width:75%; font-size:12px; padding-top:1%; padding-left:25%;'>";
- $output .= "<a style='text-decoration:none;color:#F2F2F2'>" . utf8_encode($row["descript"]) . " ...</a>";
- $output .= "<div style='margin-top:2%'><p style='color:#F2F2F2;text-decoration:none;' >Date de parution : ". utf8_encode($row["date"]) . "</p></div></div>";
- $output .= "</div>";
- }
- $output .= "</div>";
- echo $output;
- echo "<div style='margin-left:40%;'>".$pagination."</div>";
- ?>
- ---------------------------------
- get a specfic data from DB
- getnewsdetail.php
- ---------------------------------
- <?php
- include'../Connection/Connection.php';
- $Id = $_GET["id"];
- $Json=$_GET["json"];
- $sql = "SELECT * FROM news where id =" . $Id;
- if(isset($_GET["page"]))
- {
- $page=$_GET["page"];
- }
- else $page="";
- $url='PhpMethods/GetInitialData.php';
- $htmlId='MainContainer';
- $result = $PDO->query($sql);
- If($Json=="false")
- {
- while($row = $result->fetch()){
- extract($row);
- $news = "<div style='min-height:420px;'>";
- $news .= "<div style='margin-left:2%;'><h2 style='color:#F2F2F2' id='title'>" . utf8_encode($row["title"]) . "</h2></div>";
- if(utf8_encode($row["picture"]) != null)
- {
- $news .= "<img src='../img/". utf8_encode($row["picture"]) ."' style='float:right;
- min-height:100px; max-height:50%; min-width:40%; max-width:40%;' class='round' />";
- }
- $news .= "<div id='desc' style='width:100%; padding:2%;color:#F2F2F2;'>" . utf8_encode($row["descript"]) . "</div>" ;
- $news.="<div class='share-button' style='margin-top:2%;margin-left:2%;'></div>";
- $news .= "</div>";
- $news .="<div style='margin-left:45%'><button class='btn btn-default' style='background:#d4d4d4;' onclick='GetData(".($page-1).",\"{$url}\",\"{$htmlId}\")'><a>Retour</a></button></div>";
- echo $news ;
- }
- }
- else
- {
- if($Id!=0)
- {
- $row = $result->fetch();
- $newsdetails= array(
- 'id' => ($row["id"]),
- 'title' => ($row["title"]),
- 'picture' => ($row["picture"]),
- 'descript' => ($row["descript"])
- );
- }
- else
- {
- $sql = "SELECT * FROM news
- LIMIT 0 ,1";
- $result = $PDO->query($sql);
- $row = $result->fetch();
- $newsdetails= array(
- 'id' => ($row["id"]),
- 'title' => ($row["title"]),
- 'picture' => ($row["picture"]),
- 'descript' => ($row["descript"])
- );
- }
- echo json_encode($newsdetails);
- }
- ?>
- ---------------------------------------------------------------
- insert dans DB
- ---------------------------------------------------------------
- <?php
- include_once '../Connection/Connection.php';
- include_once 'LoginFunctions.php';
- $error_msg = "";
- if (!isset($_SESSION['user_id'],
- $_SESSION['email'],
- $_SESSION['login_string']))
- {
- safe_session_start();
- }
- if(login_check($PDO)==true)
- {
- if(isset($_FILES['file-0']))
- {
- $uploads_dir = '../img';
- $tmp_name = $_FILES["file-0"]["tmp_name"];
- $name = $_FILES["file-0"]["name"];
- $userfile_type = $_FILES['file-0']['type'];
- $allowed_image_types = array( 'image/pjpeg' => "jpg",
- 'image/jpeg' => "jpg",
- 'image/jpg' => "jpg",
- 'image/png' => "png",
- 'image/x-png' => "png",
- 'image/gif' => "gif"
- );
- $allowed_image_ext = array_unique($allowed_image_types);
- $image_ext = "";
- foreach ( $allowed_image_ext as $mime_type => $ext )
- {
- $image_ext .= strtoupper( $ext ) . " ";
- }
- $filename = basename( $_FILES['file-0']['name'] );
- $partFileName = substr( $filename, 0, strrpos($filename, '.') );
- $file_ext = strtolower( substr( $filename, strrpos($filename, '.') + 1 ));
- foreach ( $allowed_image_types as $mime_type => $ext )
- {
- //loop through the specified image types and if they match the extension then break out
- //everything is ok so go and check file size
- if( $file_ext == $ext && $userfile_type == $mime_type )
- {
- $output = "";
- break;
- }
- else
- {
- $output = "<br><h2 style='color:red; margin:20px;'>La zone de texte et de titre doivent obligatoirement être remplient</h2>";
- }
- }
- echo $output;
- move_uploaded_file($tmp_name, "$uploads_dir/$name");
- }
- else
- $filename="N/A";
- if(isset($_GET['name'],$_GET['desc']) & !isset($_GET['issub']))
- {
- $name=$_GET['name'];
- $desc=$_GET['desc'];
- if($name!="")
- {
- //Converit les accent corectement dans la bd
- $name = htmlentities($name, ENT_COMPAT, 'UTF-8');
- $desc = htmlentities($desc, ENT_COMPAT, 'UTF-8');
- $sql = "INSERT INTO categories
- (name, picture, descript)
- VALUES (?,?,?)";
- $stmt=$PDO->prepare($sql);
- if($stmt->execute(array($name,$filename,$desc)))
- {
- echo"success";
- }
- else
- echo "<div class='alert alert-danger alert-dismissible' role='alert'>Erreur lors de l'insertion dans la base de donnée <button class='close' data-dismiss='alert'>
- <span aria-hidden='true'>×</span><span class='sr-only'>Close</span></button> </div>";
- }
- }
- else
- {
- $name=$_GET['name'];
- $desc=$_GET['desc'];
- $categoryId=$_GET['id'];
- if($name!="")
- {
- //Converit les accent corectement dans la bd
- $name = htmlentities($name, ENT_COMPAT, 'UTF-8');
- $desc = htmlentities($desc, ENT_COMPAT, 'UTF-8');
- $sql = "INSERT INTO subcategories
- (name,descript,categoryId)
- VALUES (?,?,?)";
- $stmt=$PDO->prepare($sql);
- if($stmt->execute(array($name,$desc,$categoryId)))
- {
- echo"success";
- }
- else
- echo "<div class='alert alert-danger alert-dismissible' role='alert'>Erreur lors de l'insertion dans la base de donnée <button class='close' data-dismiss='alert'>
- <span aria-hidden='true'>×</span><span class='sr-only'>Close</span></button> </div>";
- }
- }
- }
- ?>
- ---------------------------------------------------------------
- update dans DB
- ---------------------------------------------------------------
- <?php
- include_once'../Connection/Connection.php';
- include_once 'LoginFunctions.php';
- $error_msg="";
- if (!isset($_SESSION['user_id'],
- $_SESSION['email'],
- $_SESSION['login_string']))
- {
- safe_session_start();
- }
- if(login_check($PDO)==true)
- {
- $id=$_GET["id"];
- //cheker si on delete ou edit la news
- if(isset($_GET["del"]))
- {
- $sql="DELETE FROM news
- WHERE id=?";
- $stmt = $PDO->prepare($sql);
- if($stmt->execute(array($id)))
- {
- echo "success";
- }else
- $error_msg="erreur lors de la supression";
- }
- else
- {
- // $title = filter_input(INPUT_GET, 'title', FILTER_SANITIZE_STRING);
- // $desc = filter_input(INPUT_GET, 'desc', FILTER_SANITIZE_STRING);
- $title=$_GET['title'];
- $desc=$_GET['desc'];
- $title = htmlentities($title, ENT_COMPAT, 'UTF-8');
- $desc = htmlentities($desc, ENT_COMPAT, 'UTF-8');
- if(isset($_GET['title'],$_GET['desc'],$_FILES['file-0']))
- {
- $uploads_dir = '../img';
- $tmp_name = $_FILES["file-0"]["tmp_name"];
- $name = $_FILES["file-0"]["name"];
- $userfile_type = $_FILES['file-0']['type'];
- $allowed_image_types = array( 'image/pjpeg' => "jpg",
- 'image/jpeg' => "jpg",
- 'image/jpg' => "jpg",
- 'image/png' => "png",
- 'image/x-png' => "png",
- 'image/gif' => "gif"
- );
- $allowed_image_ext = array_unique($allowed_image_types);
- $image_ext = "";
- foreach ( $allowed_image_ext as $mime_type => $ext )
- {
- $image_ext .= strtoupper( $ext ) . " ";
- }
- $filename = basename( $_FILES['file-0']['name'] );
- $partFileName = substr( $filename, 0, strrpos($filename, '.') );
- $file_ext = strtolower( substr( $filename, strrpos($filename, '.') + 1 ));
- foreach ( $allowed_image_types as $mime_type => $ext )
- {
- //loop through the specified image types and if they match the extension then break out
- //everything is ok so go and check file size
- if( $file_ext == $ext && $userfile_type == $mime_type )
- {
- $output = "";
- break;
- }
- else
- {
- $output = "<br><h2 style='color:red; margin:20px;'>La zone de texte et de titre doivent obligatoirement être remplient</h2>";
- }
- }
- echo $output;
- move_uploaded_file($tmp_name, "$uploads_dir/$name");
- $sql="UPDATE news
- SET title= ? ,
- descript= ? ,
- picture= ?
- WHERE id=?";
- $stmt=$PDO->prepare($sql);
- if($stmt->execute(array($title,$desc,$filename,$id)))
- {
- echo("<div class='alert alert-success alert-dismissible' role='alert'>Nouvelle modifiée avec succès
- <button type='button' class='close' data-dismiss='alert'><span aria-hidden='true'>×</span><span class='sr-only'>Close</span></button></div>");
- include'../Admin/EditNewsForm.php';
- }
- else
- echo "<div class='alert alert-danger alert-dismissible' role='alert'>Erreur lors de la modification dans la base de donnée
- <span class='glyphicon glyphicon-arrow-right'></span> Erreur lors de l'exécution <button type='button' class='close'
- data-dismiss='alert'><span aria-hidden='true'>×</span><span class='sr-only'>Close</span></button> </div>";
- }
- else
- {
- if(isset($_GET['title'],$_GET['desc']))
- {
- //donc on modifie seulement titre et description
- $sql="UPDATE news
- SET title= ? ,
- descript= ?
- WHERE id=?";
- $stmt=$PDO->prepare($sql);
- if($stmt->execute(array($title,$desc,$id)))
- {
- echo("<div class='alert alert-success alert-dismissible' role='alert'>Nouvelle modifiée avec succès<button class='close' data-dismiss='alert'>
- <span aria-hidden='true'>×</span><span class='sr-only'>Close</span></button></div>");
- include'../Admin/EditNewsForm.php';
- }
- else
- echo "<div class='alert alert-danger alert-dismissible' role='alert'>Erreur lors de la modification dans la base de donnée <span class='glyphicon glyphicon-arrow-right'>
- </span> Erreur lors de l'exécution <button type='button' class='close' data-dismiss='alert'><span aria-hidden='true'>×</span><span class='sr-only'>Close</span></button></div>";
- }
- else
- echo "<div class='alert alert-danger alert-dismissible' role='alert'>Erreur lors de la modification dans la base de donnée <span class='glyphicon glyphicon-arrow-right'></span>
- titre ou description manquante<button type='button' class='close' data-dismiss='alert'><span aria-hidden='true'>×</span><span class='sr-only'>Close</span></button></div>";
- }
- echo $error_msg;
- }
- }
- ?>
- ---------------------------------------------------------
- DELETE dans DB
- ---------------------------------------------------------
- bien valider et faire pareil que le update en haut
- DELETE FROM table_name
- WHERE some_column = some_val
- ------------------------------------------------------------
- verifycredentials.php
- --------------------------------------------------------------
- <?php
- session_start();
- if(empty($_POST["username"] ))
- {
- $usernameisrequired="username is required";
- header("Location: ../login.php?missinginfo=true");
- }
- if(empty($_POST["password"] ))
- {
- $usernameisrequired="username is required";
- header("Location: ../login.php?missinginfo=true");
- }
- else
- {
- if(isset($_POST["username"],$_POST["password"]))
- {
- include_once '../connection/connection.php';
- $username=test_input($_POST["username"]);
- $password=test_input($_POST["password"]);
- $sql="SELECT * FROM USERS WHERE USERNAME=? AND PASS=?";
- $match=$PDO->prepare($sql);
- $match->execute(array($username,$password));
- $numrow=$match->rowCount();
- if($numrow==1)
- {
- $_SESSION["user"]=$username;
- $_SESSION["islogged"]=true;
- header("Location: ../administration.php");
- }
- else
- {
- header("Location: ../login.php?invalidlogin=true");
- }
- }
- else
- {
- header("Location: ../login.php?missinginfo=true");
- die();
- }
- }
- function test_input($data) {
- $data = trim($data);
- $data = stripslashes($data);
- $data = htmlspecialchars($data);
- return $data;
- }
- ?>
- ------------------------------------------------------------
- getnews.php
- --------------------------------------------------------------
- <?php
- include "/connection/connection.php";
- $sql="select * from news";
- $news=$PDO->query($sql);
- $numrow=$news->rowCount();
- $output="<div class='newscontainer'>";
- while($row=$news->fetch())
- {
- extract($row);
- $output.="<div id='".$row["id"]."' class='news'>";
- $output.="<h1>".utf8_encode($row["titre"])."</h1></br>";
- $output.= utf8_encode($row["text"]);
- $output.="</div>";
- }
- $output.="</div>";
- echo $output;
- ?>
- ------------------------------------------------------------
- getimg.php
- --------------------------------------------------------------
- <?php
- include_once '../connection/connection.php';
- if(isset($_GET["id"]))
- {
- $id=$_GET["id"];
- $sql="SELECT img from news WHERE id=".$id;
- $result=$PDO->query($sql);
- while($row=$result->fetch())
- {
- extract($row);
- $img= $row["img"];
- }
- echo $img;
- }
- else
- {
- echo"no id is set";
- }
- ?>
- ----------------------------------------------------------
- PAGES
- ----------------------------------------------------------
- index.php (dery)
- <html>
- <head>
- <title>PMAX</title>
- <link href="style/site.css" rel="stylesheet" type="text/css" />
- <link href="/style/bootstrap-theme.css" rel="stylesheet" type="text/css" />
- <link href="/style/bootstrap.css" rel="stylesheet" type="text/css" />
- <script src="scripts/jquery-1.7.2.min.js" type="text/javascript"></script>
- <script src="scripts/juizDropDownMenu-2.0.0.min.js" type="text/javascript"></script>
- <script src="/scripts/bootstrap.js" type="text/javascript"></script>
- <script src="scripts/scripts.js" type="text/javascript"></script>
- </head>
- <body>
- <div class="Page">
- <div class="LeftSide">
-
- </div>
- <div class="MainContainer" id="MainContainer">
- bienvenue chez dery telecom :)
- <?php
- try{
- include"methods/getnews.php";
- }
- catch(Exception $e)
- {
- die('Erreur : ' . $e->getMessage());
- }
- ?>
- <a href="login.php">se connecter</a>
- <div class="response-output">
- </div>
- </div>
- <div class="RightSide">
-
- </div>
- </div>
- </body>
- </html>
- --------------------------------------------------------------------
- login.php
- ----------------------------------------------------------------------
- <html>
- <head>
- <title>PMAX</title>
- <link href="style/site.css" rel="stylesheet" type="text/css" />
- <link href="/style/bootstrap-theme.css" rel="stylesheet" type="text/css" />
- <link href="/style/bootstrap.css" rel="stylesheet" type="text/css" />
- <script src="scripts/jquery-1.7.2.min.js" type="text/javascript"></script>
- <script src="scripts/juizDropDownMenu-2.0.0.min.js" type="text/javascript"></script>
- <script src="/scripts/bootstrap.js" type="text/javascript"></script>
- <script src="scripts/scripts.js" type="text/javascript"></script>
- </head>
- <body>
- <div class="Page">
- <div class="LeftSide">
-
- </div>
- <div class="MainContainer" id="MainContainer">
- <h1>Connection a dery intranet</h1>
- <?php
- if(isset($_SESSION["islogged"]))
- {
- if($_SESSION["islogged"])
- {
- header("Location:administration.php");
- }
- }
- if(isset($_POST["username"] , $_POST["password"] ))
- {
- $username=htmlentities($_POST["username"],ENT_QUOTES,'UTF-8');
- $password=htmlentities($_POST["password"],ENT_QUOTES,'UTF-8');
- echo "username = ".$username;
- echo 'password = '.$password;
- }
- ?>
- <form action="methods/VerifyUserCredential.php" method="post" onsubmit="return validateMyForm();">
- <p>username: <input type="text" name="username" id="username" /></p>
- <span class="error"></span>
- <p>password: <input type="password" name="password" id="password" /></p>
- <span class="error"></span>
- <input type="submit" id="login-button"/>
- </form>
- <div class="response-output">
- <?php
- if(isset($_GET["missinginfo"]))
- {
- $output="<div> all infos are required</div>";
- echo $output;
- }
- else
- {
- if(isset($_GET["invalidlogin"]))
- {
- $output="<div> invalid login plz try again</div>";
- echo $output;
- }
- }
- ?>
- </div>
- </div>
- <div class="RightSide">
-
- </div>
- </div>
- </body>
- </html>
- --------------------------------------------------------------------------------
- administration.php
- -------------------------------------------------------------------------------
- <html>
- <head>
- <title>PMAX</title>
- <link href="style/site.css" rel="stylesheet" type="text/css" />
- <link href="/style/bootstrap-theme.css" rel="stylesheet" type="text/css" />
- <link href="/style/bootstrap.css" rel="stylesheet" type="text/css" />
- <script src="scripts/jquery-1.7.2.min.js" type="text/javascript"></script>
- <script src="scripts/juizDropDownMenu-2.0.0.min.js" type="text/javascript"></script>
- <script src="/scripts/bootstrap.js" type="text/javascript"></script>
- <script src="scripts/scripts.js" type="text/javascript"></script>
- </head>
- <body>
- <div class="Page">
- <div class="LeftSide">
-
- </div>
- <div class="MainContainer" id="MainContainer">
- <h1>Administration a dery intranet</h1>
- <?php
- session_start();
- if(isset($_SESSION["islogged"]))
- {
- if($_SESSION["islogged"]!=true)
- {
- header("Location:login.php");
- }
- }
- else
- {
- header("Location:login.php");
- }
- ?>
- <form action="<?php session_destroy(); ?>" method="post">
- <input type="submit" value="deconexion"/>
- </form>
- </div>
- <div class="RightSide">
-
- </div>
- </div>
- </body>
- </html>
Add Comment
Please, Sign In to add comment