ҳ̸Ҳ̸ҳ Rabiza Ekel ҳ̸Ҳ̸ҳ
:
18.222.107.181
:
47.103.87.29 / bstest.wagas.com.cn
:
Linux Wagas-WebServer 3.10.0-1160.11.1.el7.x86_64 #1 SMP Fri Dec 18 16:34:56 UTC 2020 x86_64
:
/
usr
/
html
/
www
/
admin
/
Upload File:
files >> /usr/html/www/admin/store_add.php
<?php include_once("inc/function.php"); if($_SERVER["REQUEST_METHOD"] == "POST") { $storename=isset($_POST['storename'])?$_POST['storename']:null; $storeaddress=isset($_POST['storeaddress'])?$_POST['storeaddress']:null; $storeename=isset($_POST['storeename'])?$_POST['storeename']:null; $storeeaddress=isset($_POST['storeeaddress'])?$_POST['storeeaddress']:null; $storetel=isset($_POST['storetel'])?$_POST['storetel']:null; $level=isset($_POST['level'])?$_POST['level']:'1'; if($storename&&$storeaddress&&$storetel&&$level&&$storeename&&$storeeaddress){ if(isset($_GET['type'])&&$_GET['type']=='update'){ //更新操作 $id=$_GET['id']; $sql="select pic from wagas_store WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $row=$res->fetch_array(); }else{ $_SESSION['message']='id失效'; header("location:store_add.php?type=update&id=$id");exit; } if(isset($_FILES)&&$_FILES['img']['size']>0){ // 处理图片上传 if (($_FILES['img']["type"] == "image/gif") || ($_FILES["img"]["type"] == "image/jpeg") || ($_FILES["img"]["type"] == "image/png") || ($_FILES["img"]["type"] == "image/pjpeg") || ($_FILES["img"]["type"] == "image/jpg")) { $fillname = $_FILES['img']['name']; // 得到文件全名 $dotArray = explode('.', $fillname); // 以.分割字符串,得到数组 $type = end($dotArray); // 得到最后一个元素:文件后缀 //uniqid以微秒计的当前时间,生成一个唯一的 ID $pathinfo = "/admin/img/storeimg/".md5(uniqid(rand())).'.'.$type; $path = $_SERVER["DOCUMENT_ROOT"].$pathinfo; // 产生随机唯一的名字 move_uploaded_file( // 从临时目录复制到目标目录 $_FILES["img"]["tmp_name"], // 存储在服务器的文件的临时副本的名称 $path); $sql="update wagas_store set `name`='$storename',address='$storeaddress',`ename`='$storeename',eaddress='$storeeaddress',tel='$storetel',pic='$pathinfo',level='$level' WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $res=unlink($_SERVER["DOCUMENT_ROOT"].$row['pic']); if($res){ $_SESSION['message']='更新成功'; header("location:store_add.php?type=update&id=$id");exit; }else{ $_SESSION['message']='删除旧图片失败'; header("location:store_add.php?type=update&id=$id");exit; } }else{ $_SESSION['message']='更新失败'; header("location:store_add.php?type=update&id=$id");exit; } }else{ $_SESSION['message']="图片类型不合规范"; header("location:store_add.php?type=update&id=$id");exit; } }else{ $sql="update wagas_store set `name`='$storename',address='$storeaddress',`ename`='$storeename',eaddress='$storeeaddress',tel='$storetel',level='$level' WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $_SESSION['message']='更新成功'; header("location:store_add.php?type=update&id=$id");exit; }else{ $_SESSION['message']='更新失败'; header("location:store_add.php?type=update&id=$id");exit; } } }else{ //新增操作 if(isset($_FILES)&&$_FILES['img']['size']>0){ // 处理图片上传 if (($_FILES['img']["type"] == "image/gif") || ($_FILES["img"]["type"] == "image/jpeg") || ($_FILES["img"]["type"] == "image/png") || ($_FILES["img"]["type"] == "image/pjpeg") || ($_FILES["img"]["type"] == "image/jpg")) { $fillname = $_FILES['img']['name']; // 得到文件全名 $dotArray = explode('.', $fillname); // 以.分割字符串,得到数组 $type = end($dotArray); // 得到最后一个元素:文件后缀 //uniqid以微秒计的当前时间,生成一个唯一的 ID $pathinfo = "/admin/img/storeimg/".md5(uniqid(rand())).'.'.$type; $path = $_SERVER["DOCUMENT_ROOT"].$pathinfo; // 产生随机唯一的名字 move_uploaded_file( // 从临时目录复制到目标目录 $_FILES["img"]["tmp_name"], // 存储在服务器的文件的临时副本的名称 $path); $sql="insert into wagas_store (`name`,address,tel,pic,level,ename,eaddress) VALUES ('$storename','$storeaddress','$storetel','$pathinfo','$level','$storeename','$storeaddress')"; $res=$mysqli->query($sql); if($res){ $_SESSION['message']='新增成功'; header("location:store_add.php");exit; }else{ $_SESSION['message']='插入失败'; header("location:store_add.php");exit; } }else{ $_SESSION['message']="图片类型不合规范"; header("location:store_add.php");exit; } }else{ $_SESSION['message']="请上传图片"; header("location:store_add.php");exit; } } }else{ $_SESSION['message']="请填写完整后再提交"; header("location:store_add.php");exit; } } if(isset($_GET['type'])&&$_GET['type']=='update'){ $id=isset($_GET['id'])?$_GET['id']:null; if($id){ $sql="select * FROM wagas_store WHERE id=$id"; $res=$mysqli->query($sql); if($res){ $row=$res->fetch_array(); }else{ $_SESSION['message']="查询失败:".$mysqli->error; header("location:store.php");exit; } } } ?> <?php include_once ("head.php");?> <div id="page-wrapper"> <div class="main-page"> <?php if(isset($_SESSION['message'])&&$_SESSION['message']):?> <div class="alert alert-danger"> <?php print $_SESSION['message'];?> <?php unset($_SESSION['message']);?> </div> <?php endif;?> <div class="form-three widget-shadow"> <?php if(isset($_GET['type'])&&$_GET['type']=='update'){?> <form class="form-horizontal" method="post" enctype="multipart/form-data" action="store_add.php?type=update&id=<?php echo $row['id'];?>"> <?php }else{?> <form class="form-horizontal" method="post" enctype="multipart/form-data"> <?php }?> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">店名</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="Store Name" name="storename" required="required" <?php if(isset($row)){echo "value='".$row['name']."'";}?> > </div> </div> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">英文店名</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="Store EName" name="storeename" required="required" <?php if(isset($row)){echo "value='".$row['ename']."'";}?> > </div> </div> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">店址</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="Store Address" name="storeaddress" required="required" <?php if(isset($row)){echo "value='".$row['address']."'";}?>> </div> </div> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">英文店址</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="Store EAddress" name="storeeaddress" required="required" <?php if(isset($row)){echo "value='".$row['eaddress']."'";}?>> </div> </div> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">联系电话</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="Tel Number" name="storetel" required="required" <?php if(isset($row)){echo "value='".$row['tel']."'";}?>> </div> </div> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">优先级</label> <div class="col-sm-8"> <input type="text" class="form-control1" id="focusedinput" placeholder="Level" name="level" <?php if(isset($row)){echo "value='".$row['level']."'";}?>> </div> </div> <?php if(isset($row)){?> <div class="form-group"> <label for="focusedinput" class="col-sm-2 control-label">图片</label> <div > <img width="600" height="400" src="<?php echo $row['pic'];?>"> </div> </div> <?php }?> <div class="form-group"> <label for="exampleInputFile" class="col-sm-2 control-label">更换图片(718*392)</label> <div class="col-sm-8"> <input type="file" class="exampleInputFile" name="img" <?php if(!isset($row)){?>required="required" <?php }?> > </div> </div> <div class="form-group" style="text-align: center;margin: 0 auto;"> <button type="submit" class="btn btn-default">提交</button> </div> </form> </div> </div> </div> <?php include_once ("foot.php");?>
ҳ̸Ҳ̸ҳ Rabiza Ekel ҳ̸Ҳ̸ҳ