<?php require_once ('../bootstrap.php'); $title = "UserPicture"; $header = "Verwaltung der User Picture"; include ("includes/header.php"); include ("includes/funktion_schichtplan_aray.php"); if (IsSet ($_GET["action"])) { UnSet ($SQL); switch ($_GET["action"]) { case 'FormUpload' : echo "Hier kannst Du ein Foto hochladen för:"; echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n"; echo "\t<select name=\"UID\">\n"; $usql = "SELECT * FROM `User` ORDER BY `Nick`"; $uErg = mysql_query($usql, $con); for ($k = 0; $k < mysql_num_rows($uErg); $k++) echo "\t\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" . mysql_result($uErg, $k, "Nick") . "</option>\n"; echo "\t</select>\n"; echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n"; echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"" . get_cfg_var("post_max_size") . "\">\n"; echo "\t(max " . get_cfg_var("post_max_size") . "Byte)<br />\n"; echo "\t<input type=\"submit\" value=\"" . Get_Text("upload"), "\">\n"; echo "</form>\n"; break; case 'sendPicture' : if (($_FILES["file"]["size"] > 0) && (isset ($_POST["UID"]))) { if (($_FILES["file"]["type"] == "image/jpeg") || ($_FILES["file"]["type"] == "image/png") || ($_FILES["file"]["type"] == "image/gif")) { $data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"]))); if (GetPicturShow($_POST['UID']) == "") $SQL = "INSERT INTO `UserPicture` " . "( `UID`,`Bild`, `ContentType`, `show`) " . "VALUES ('" . $_POST['UID'] . "', '$data', '" . $_FILES["file"]["type"] . "', 'N')"; else $SQL = "UPDATE `UserPicture` SET " . "`Bild`='$data', " . "`ContentType`='" . $_FILES["file"]["type"] . "' " . "WHERE `UID`='" . $_POST['UID'] . "'"; echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', " . "MIME-Type: " . $_FILES["file"]["type"] . ", " . $_FILES["file"]["size"] . " Byte " . "for " . UID2Nick($_POST["UID"]); } else Print_Text("pub_einstellungen_send_KO"); } else Print_Text("pub_einstellungen_send_KO"); break; case 'SetN' : if (IsSet ($_GET["UID"])) { echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gesperrt:<br />"; $SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='" . $_GET["UID"] . "'"; } else echo "Fehlerhafter Aufruf"; break; case 'SetY' : if (IsSet ($_GET["UID"])) { echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde Freigegeben:<br />"; $SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='" . $_GET["UID"] . "'"; } else echo "Fehlerhafter Aufruf"; break; case 'del' : echo "Wollen Sie das Bild von '" . UID2Nick($_GET["UID"]) . "' wirklich löschen? " . "<a href=\"./UserPicture.php?action=delYes&UID=" . $_GET["UID"] . "\">Yes</a>"; break; case 'delYes' : if (IsSet ($_GET["UID"])) { echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gelöscht:<br />"; $SQL = "DELETE FROM `UserPicture` WHERE `UID`='" . $_GET["UID"] . "' LIMIT 1"; } else echo "Fehlerhafter Aufruf"; break; default : echo "Fehlerhafter Aufruf"; } //switch // Update ??? if (IsSet ($SQL)) { // hier muesste das SQL ausgefuehrt werden... $Erg = mysql_query($SQL, $con); if ($Erg == 1) echo "Änderung wurde gesichert...<br />"; else { echo "Fehler beim speichern... bitte noch ein mal probieren :)"; echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />"; } } // Ende Update echo "<br />\n<hr width=\"100%\">\n<br />\n\n"; } //IF IsSet($action) //ausgabe der Liste $Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;"; $Erg = mysql_query($Sql, $con); echo "Hallo " . $_SESSION['Nick'] . ",<br />\nhier hast du die Möglichkeit, die Bilder der Engel freizugeben:<br /><br />\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<tr class=\"contenttopic\">\n"; echo "\t<td>User</td>\n"; echo "\t<td>Bild</td>\n"; echo "\t<td>Status</td>\n"; echo "\t<td>Löschen</td>\n"; echo "</tr>"; for ($t = 0; $t < mysql_num_rows($Erg); $t++) { $UIDs = mysql_result($Erg, $t, "UID"); echo "\t<tr class=\"content\">\n"; echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $t, "UID")) . "</td>\n"; echo "\t\t<td>" . displayPictur($UIDs, 0) . "</td>\n"; if (GetPicturShow($UIDs) == "Y") echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n"; elseif (GetPicturShow($UIDs) == "N") echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n"; else echo "\t\t<td>ERROR: show='" . GetPicturShow($UIDs) . "'</td>\n"; echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n"; echo "\t</tr>\n"; } // ende Auflistung Raeume echo "</table>"; echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n"; include ("includes/footer.php"); ?>