diff options
Diffstat (limited to 'www-ssl_old/admin/UserPicture.php')
| -rw-r--r-- | www-ssl_old/admin/UserPicture.php | 132 |
1 files changed, 132 insertions, 0 deletions
diff --git a/www-ssl_old/admin/UserPicture.php b/www-ssl_old/admin/UserPicture.php new file mode 100644 index 00000000..25f8b54b --- /dev/null +++ b/www-ssl_old/admin/UserPicture.php @@ -0,0 +1,132 @@ +<?php +require_once ('../bootstrap.php'); + +$title = "UserPicture"; +$header = "Verwaltung der User Picture"; + +include ("includes/header.php"); +include ("includes/funktion_schichtplan_aray.php"); + +if (IsSet ($_GET["action"])) { + UnSet ($SQL); + + switch ($_GET["action"]) { + case 'FormUpload' : + echo "Hier kannst Du ein Foto hochladen för:"; + echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n"; + echo "\t<select name=\"UID\">\n"; + $usql = "SELECT * FROM `User` ORDER BY `Nick`"; + $uErg = mysql_query($usql, $con); + for ($k = 0; $k < mysql_num_rows($uErg); $k++) + echo "\t\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" . mysql_result($uErg, $k, "Nick") . "</option>\n"; + echo "\t</select>\n"; + echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n"; + echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"" . get_cfg_var("post_max_size") . "\">\n"; + echo "\t(max " . get_cfg_var("post_max_size") . "Byte)<br />\n"; + echo "\t<input type=\"submit\" value=\"" . Get_Text("upload"), "\">\n"; + echo "</form>\n"; + break; + case 'sendPicture' : + if (($_FILES["file"]["size"] > 0) && (isset ($_POST["UID"]))) { + if (($_FILES["file"]["type"] == "image/jpeg") || ($_FILES["file"]["type"] == "image/png") || ($_FILES["file"]["type"] == "image/gif")) { + $data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"]))); + + if (GetPicturShow($_POST['UID']) == "") + $SQL = "INSERT INTO `UserPicture` " . + "( `UID`,`Bild`, `ContentType`, `show`) " . + "VALUES ('" . $_POST['UID'] . "', '$data', '" . $_FILES["file"]["type"] . "', 'N')"; + else + $SQL = "UPDATE `UserPicture` SET " . + "`Bild`='$data', " . + "`ContentType`='" . $_FILES["file"]["type"] . "' " . + "WHERE `UID`='" . $_POST['UID'] . "'"; + + echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', " . + "MIME-Type: " . $_FILES["file"]["type"] . ", " . + $_FILES["file"]["size"] . " Byte " . + "for " . UID2Nick($_POST["UID"]); + } else + Print_Text("pub_einstellungen_send_KO"); + } else + Print_Text("pub_einstellungen_send_KO"); + break; + + case 'SetN' : + if (IsSet ($_GET["UID"])) { + echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gesperrt:<br />"; + $SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='" . $_GET["UID"] . "'"; + } else + echo "Fehlerhafter Aufruf"; + break; + case 'SetY' : + if (IsSet ($_GET["UID"])) { + echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde Freigegeben:<br />"; + $SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='" . $_GET["UID"] . "'"; + } else + echo "Fehlerhafter Aufruf"; + break; + case 'del' : + echo "Wollen Sie das Bild von '" . UID2Nick($_GET["UID"]) . "' wirklich löschen? " . + "<a href=\"./UserPicture.php?action=delYes&UID=" . $_GET["UID"] . "\">Yes</a>"; + break; + case 'delYes' : + if (IsSet ($_GET["UID"])) { + echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gelöscht:<br />"; + $SQL = "DELETE FROM `UserPicture` WHERE `UID`='" . $_GET["UID"] . "' LIMIT 1"; + } else + echo "Fehlerhafter Aufruf"; + break; + default : + echo "Fehlerhafter Aufruf"; + + } //switch + + // Update ??? + if (IsSet ($SQL)) { + // hier muesste das SQL ausgefuehrt werden... + $Erg = mysql_query($SQL, $con); + if ($Erg == 1) + echo "Änderung wurde gesichert...<br />"; + else { + echo "Fehler beim speichern... bitte noch ein mal probieren :)"; + echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />"; + } + } // Ende Update + echo "<br />\n<hr width=\"100%\">\n<br />\n\n"; +} //IF IsSet($action) + +//ausgabe der Liste +$Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;"; +$Erg = mysql_query($Sql, $con); + +echo "Hallo " . $_SESSION['Nick'] . ",<br />\nhier hast du die Möglichkeit, die Bilder der Engel freizugeben:<br /><br />\n"; + +echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; +echo "<tr class=\"contenttopic\">\n"; +echo "\t<td>User</td>\n"; +echo "\t<td>Bild</td>\n"; +echo "\t<td>Status</td>\n"; +echo "\t<td>Löschen</td>\n"; +echo "</tr>"; + +for ($t = 0; $t < mysql_num_rows($Erg); $t++) { + $UIDs = mysql_result($Erg, $t, "UID"); + echo "\t<tr class=\"content\">\n"; + + echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $t, "UID")) . "</td>\n"; + echo "\t\t<td>" . displayPictur($UIDs, 0) . "</td>\n"; + + if (GetPicturShow($UIDs) == "Y") + echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n"; + elseif (GetPicturShow($UIDs) == "N") echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n"; + else + echo "\t\t<td>ERROR: show='" . GetPicturShow($UIDs) . "'</td>\n"; + echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n"; + echo "\t</tr>\n"; +} // ende Auflistung Raeume +echo "</table>"; + +echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n"; + +include ("includes/footer.php"); +?> |