connect(); $template = new template(); $web_obj = new web(); $admin_obj = new admin(); if($fields[0] == "pictures") { include $_SERVER['DOCUMENT_ROOT']."/classes/class.image.php"; $image = new image(); if($fields[1] == "article") { $file = explode(".", $fields[3]); $size = explode("_", $file[0]); $imgagesize = getimagesize($_SERVER['DOCUMENT_ROOT']."/pictures/".$fields[1]."/".$fields[2]."/".$size[0].".jpg"); $width = $imgagesize[0]; $height = $imgagesize[1]; $image->resize("pictures/".$fields[1]."/".$fields[2]."/".$size[0].".jpg", $size[1]); } elseif($fields[1] == "photo") { $file = explode(".", $fields[2]); $size = explode("_", $file[0]); $imgagesize = getimagesize($_SERVER['DOCUMENT_ROOT']."/pictures/".$fields[1]."/".$size[0].".jpg"); $width = $imgagesize[0]; $height = $imgagesize[1]; $image->resize("pictures/".$fields[1]."/".$size[0].".jpg", $size[1]); } } if($fields[0] == "admin") { $template->usethis("admin.html"); } else { $template->usethis("main.html"); } if($fields[0] == "admin") { if(!isset($_SESSION["loggedin"]) && $fields[1] != "login") { echo ""; } elseif($fields[1] == "login") { $template->replacethis("#CONTENT#", $admin_obj->login_screen()); } elseif(!isset($fields[1]) && isset($_SESSION["loggedin"])) { echo ""; } elseif($fields[1] == "1" || $fields[1] == "2" || $fields[1] == "3" || $fields[1] == "4" || $fields[1] == "5" || $fields[1] == "6") { $template->replacethis("#MENU#", $admin_obj->menu()); if(!isset($fields[2])) { $template->replacethis("#CONTENT#", $admin_obj->article_list($fields[1])); } elseif($fields[2] == "new") { $admin_obj->insert_article($fields[1]); } elseif($fields[2] == "delete") { mysql_query("UPDATE Article SET ArticleTemporary = 1 WHERE ArticleID = ".$fields[3])or die(mysql_error()); echo ""; } } elseif($fields[1] == "modify") { $template->replacethis("#MENU#", $admin_obj->menu()); $template->replacethis("#CONTENT#", $admin_obj->update_article_screen($fields[2])); if(isset($fields[3]) && $fields[3] == "delete") { $admin_obj->delete_picture($fields[2], $fields[4]); } } elseif($fields[1] == "photo") { $template->replacethis("#MENU#", $admin_obj->menu()); $template->replacethis("#CONTENT#", $admin_obj->photo_list()); if(isset($fields[2]) && $fields[2] == "status") { mysql_query("UPDATE Photo SET PhotoActive = ".$fields[4]." WHERE PhotoID = ".$fields[3])or die(mysql_error()); echo ""; } if(isset($fields[2]) && $fields[2] == "delete") { mysql_query("DELETE FROM Photo WHERE PhotoID = ".$fields[3])or die(mysql_error()); echo ""; } } elseif($fields[1] == "logout") { session_destroy(); echo ""; } else { $template->replacethis("#CONTENT#", "Nincs ilyen oldal!"); } } /*elseif($fields[0] == "" || $fields[0] == "fooldal") { $template->replacethis("#CONTENT#", $web_obj->fooldal()); $template->replacethis("#MENU1#", "_hot"); }*/ elseif($fields[0] == "kepek") { if(!isset($fields[1])) { $template->replacethis("#CONTENT#", $web_obj->kepek()); } else { $template->replacethis("#CONTENT#", $web_obj->kepek_reszletes($fields[1])); $template->replacethis("#FACEBOOK_IMAGE#", ""); $template->replacethis("#META#", ' '); } $template->replacethis("#MENU2#", "_hot"); } elseif($fields[0] == "kereses") { if(isset($fields[1])) { $template->replacethis("#CONTENT#", $web_obj->kepek($fields[1], 1)); } } elseif($fields[0] == "jelentkezek-a-jatekra") { $template->replacethis("#CONTENT#", $web_obj->jelentkezek_a_jatekra()); $template->replacethis("#MENU3#", "_hot"); } elseif($fields[0] == "nyeremenyek") { $template->replacethis("#CONTENT#", $web_obj->nyeremenyek(1)); $template->replacethis("#MENU4#", "_hot"); } elseif($fields[0] == "palyazok") { $template->replacethis("#CONTENT#", $web_obj->palyazok()); } else { $template->replacethis("#CONTENT#", "

Nincs ilyen oldal!

"); } if(isset($_POST["admin_login"])) { if($_POST["name"] == "admin" && $_POST["pwd"] == "image2014") { $_SESSION["loggedin"] = 1; echo ""; } else { $template->replacethis("#MESSAGE#", "Login failed!"); } } if(isset($_POST["article_modify"])) { $admin_obj->update_article($_POST["articleid"], (isset($_POST["name"]) ? $_POST["name"] : ""), (isset($_POST["text"]) ? $_POST["text"] : "")); if (is_uploaded_file($_FILES["image"]["tmp_name"])) { $admin_obj->upload_picture($_POST["articleid"]); } echo ""; } if(isset($_POST["PhotoTitle"])) { if (is_uploaded_file($_FILES["image"]["tmp_name"])) { $ext = explode(".", $_FILES['image']['name']); if($ext[count($ext)-1] == "jpg" || $ext[count($ext)-1] == "JPG" || $ext[count($ext)-1] == "JPEG" || $ext[count($ext)-1] == "jpeg") { mysql_query("INSERT Photo (PhotoTitle, PhotoUserName, PhotoEmail, PhotoNewsletter, PhotoActive) SELECT '".$_POST["PhotoTitle"]."', '".$_POST["PhotoUserName"]."', '".$_POST["PhotoEmail"]."', ".(isset($_POST["PhotoNewsletter"]) ? 1 : 0).", 1")or die(mysql_error()); $imagename = mysql_insert_id().'.jpg'; move_uploaded_file($_FILES['image']['tmp_name'], $_SERVER['DOCUMENT_ROOT'].'/pictures/photo/'.$imagename); chmod($_SERVER['DOCUMENT_ROOT'].'/pictures/photo//'.$imagename, 0777); include $_SERVER['DOCUMENT_ROOT']."/classes/class.phpmailer.php"; $email = new PHPMailer(); $email->AddAddress("bolgar.zsanett@omnisdesign.hu"); $email->IsHTML(true); $email->From = "info@royalclinics.hu"; $email->FromName = "Royal Clinics Játék"; $email->Subject = "Royal Clinics Játék képfeltöltés"; $email->Body = "Új fotó lett feltöltve!"; $email -> Send(); echo ""; } else { echo ""; } } else { echo ""; } } if(isset($_POST["vote"])) { $ip = $_SERVER["REMOTE_ADDR"]; $today = date("Y-m-d"); $PhotoID = $_POST["PhotoID"]; setcookie('szavazat', true, time()+86400); if(!isset($_COOKIE["szavazat"])) { if(isset($_POST["sorsolas"])) { mysql_query("INSERT User (UserName, UserAddress, UserPhone, UserEmail, UserInfo) SELECT '".$_POST["UserName"]."', '".$_POST["UserAddress"]."', '".$_POST["UserPhone"]."', '".$_POST["UserEmail"]."', '".$_POST["UserInfo"]."'")or die(mysql_error()); } mysql_query("INSERT UserVote (PhotoID, UserIP, UserVoteDate) SELECT $PhotoID, '$ip', NOW()")or die(mysql_error()); echo ""; } else { echo ""; } /*$ex = mysql_query("SELECT * FROM UserVote WHERE UserIP = '$ip' AND UserVoteDate = '$today'")or die(mysql_error()); if(mysql_num_rows($ex) == 0) { if(isset($_POST["sorsolas"])) { mysql_query("INSERT User (UserName, UserAddress, UserPhone, UserEmail, UserInfo) SELECT '".$_POST["UserName"]."', '".$_POST["UserAddress"]."', '".$_POST["UserPhone"]."', '".$_POST["UserEmail"]."', '".$_POST["UserInfo"]."'")or die(mysql_error()); } mysql_query("INSERT UserVote (PhotoID, UserIP, UserVoteDate) SELECT $PhotoID, '$ip', NOW()")or die(mysql_error()); echo ""; } else { echo ""; }*/ } if(isset($_POST["search_text"])) { echo ""; } $template->replacethis("#MENU1#", ""); $template->replacethis("#MENU2#", ""); $template->replacethis("#MENU3#", ""); $template->replacethis("#MENU4#", ""); $template->replacethis("#MENU#", ""); $template->replacethis("#MESSAGE#", ""); $template->replacethis("#META#", ' '); $template->output(); $database->disconnect(); ?>