data_seek($row);
$datarow = $res->fetch_array();
return $datarow[$field];
}
}
if(isset($_COOKIE['login']) && isset($_COOKIE['password']) && isset($_COOKIE['id'])){
$login_check = $_COOKIE['login'];
$password_check = $_COOKIE['password'];
$check_autorize = "SELECT * FROM users WHERE login = '$login_check' AND password = '$password_check' ";
$result_autorize = mysqli_query($dbhandle, $check_autorize);
$autorized = $result_autorize->num_rows;
}
if($autorized == '0' || !isset($_COOKIE['login']) || !isset($_COOKIE['password']) || !isset($_COOKIE['id'])){
if(!@$_POST['do']){
$photo_control = ('
Форма авторизации
Для того, чтобы загружать видео - необходимо авторизоваться, заполните пожалуйста форму авторизации:
Форма авторизации
Не заполнены обязательные поля
');
}
else {
$md5_password = md5(md5($_POST['password']));
$query = "SELECT * FROM users WHERE login = '$_POST[login]' AND password = '$md5_password'";
$result = mysqli_query($dbhandle, $query);
$success = $result->num_rows;
if($success == '0'){
$photo_control = ('
Форма авторизации
Неверный логин или пароль
');
}
else {
$id = mysqli_result($result, 0, 'u_id');
@setcookie('login', $_POST['login'], time()+ 86400 * 30 * 12);
@setcookie('password', $md5_password, time()+ 86400 * 30 * 12);
@setcookie('id', $id, time()+ 86400 * 30 * 12);
header('location: http://avtolak.com.ua/-al/videos/z1/');
}
}
}
}
if($autorized == '1'){
if(!@$_GET['mode']){
$photo_control = ('
Управление видео
Загрузить видео
');
$count_images_query = mysqli_query($dbhandle, 'SELECT * FROM videos');
$count_images = $count_images_query->num_rows;
if($count_images == '0'){
$photo_control .= ('
Нет ни одного видео
');
}
if($count_images != '0'){
$photo_control .= ('
');
$videos = mysqli_query($dbhandle, "SELECT * FROM videos ORDER by f_id DESC");
$x = 0;
while ($x < $videos->num_rows) :
$id = mysqli_result($videos, $x, 'f_id');
$name = mysqli_result($videos, $x, 'name');
$description = mysqli_result($videos, $x, 'description');
$date = mysqli_result($videos, $x, 'date_change');
$image = mysqli_result($videos, $x, 'video');
if (empty($name)) {
$name = 'Без имени';
}
$photo_control .= ('
| ' . $x . ' |
|
'.$name.' |
Удалить |
');
$x++;
endwhile;
$photo_control .= ('
');
}
}
if(@$_GET['mode'] == 'add_photo' && !@$_POST['do']){
$photo_control = ('
Загрузить видео
');
}
if(@$_GET['mode'] == 'edit_photo' && !@$_POST['do']){
$edit_photo = mysqli_query($dbhandle, "SELECT * FROM videos WHERE f_id = '$_GET[f_id]'");
$name = mysqli_result($edit_photo, 0, 'name');
$description = mysqli_result($edit_photo, 0, 'description');
$photo_control = ('
Изменить видео
');
}
if(@$_POST['mode'] == 'edit_photo' && @$_POST['do']){
$photo_control = ('
Изменить видео
');
$date = time();
$is_photo = mysqli_query($dbhandle, "SELECT * FROM videos WHERE f_id = '$_POST[f_id]'");
$is_file = mysqli_result($is_photo, 0, 'video');
if(move_uploaded_file($_FILES['file_upload']['tmp_name'], $_SERVER['DOCUMENT_ROOT'].'/video/' .$date.'_'.basename($_FILES['file_upload']['name']))){
unlink($_SERVER['DOCUMENT_ROOT'].'/video/'.$is_file);
$new_file = basename( $_FILES['file_upload']['name']);
$new_file = $date.'_'.$new_file;
mysqli_query($dbhandle, "UPDATE videos SET name = '$_POST[title]', description = '$_POST[description]', video = '$new_file', date_change = '$date' WHERE f_id = '$_POST[f_id]'");
$photo_control .= ('
Видео успешно изменено
');
}
else {
mysqli_query($dbhandle, "UPDATE videos SET name = '$_POST[title]', description = '$_POST[description]', date_change = '$date' WHERE f_id = '$_POST[f_id]'");
$photo_control .= ('
Видео успешно изменено
');
}
}
if(@$_GET['mode'] == 'add_photo' && @$_POST['do']){
$photo_control = ('
Загрузить видео
');
$date = time();
if(move_uploaded_file($_FILES['file_upload']['tmp_name'], $_SERVER['DOCUMENT_ROOT'].'/video/' .$date.'_'.basename($_FILES['file_upload']['name']))){
$file = basename($_FILES['file_upload']['name']);
$file = $date.'_'.$file;
mysqli_query($dbhandle, "INSERT INTO videos (name, description, video, date_add, date_change) VALUES ('$_POST[title]', '$_POST[description]', '$file', '$date', '$date')");
$photo_control .= ('
Видео успешно добавлено
');
}
else {
$photo_control .= "Не удалось загрузить файл
Код ошибки: ".$_FILES['file_upload']['error']."";
}
}
if(@$_GET['mode'] == 'delete_photo'){
$photo_control = ('
Загрузить видео
');
$image_name = mysqli_query($dbhandle, "SELECT * FROM videos WHERE f_id = '$_GET[f_id]'");
$is_file = mysqli_result($image_name, 0, 'video');
unlink($_SERVER['DOCUMENT_ROOT'].'/video/'.$is_file);
mysqli_query($dbhandle, "DELETE FROM videos WHERE f_id = '$_GET[f_id]'");
$photo_control .= ('
Видео успешно удалено
');
}
}
?>
"АВТОЛАКЦЕНТР" галерея автомобилей, автолакцентр Харьков