2022-12-11 13:55:49 +05:00
|
|
|
|
<?php
|
2023-03-05 20:22:21 +05:00
|
|
|
|
ini_set( 'display_errors', 0);
|
2022-12-11 13:55:49 +05:00
|
|
|
|
//проверяем кто мы
|
|
|
|
|
|
$access = 0;
|
|
|
|
|
|
if ( $_SESSION['dostup'] =='a' ) $access=1;
|
|
|
|
|
|
if ( $_SESSION['dostup'] =='u' ) $access=1;
|
|
|
|
|
|
if ( $access==0 ) die( "Нет прав" );
|
|
|
|
|
|
|
|
|
|
|
|
switch(@$_POST['act']) {
|
|
|
|
|
|
|
|
|
|
|
|
/* ----------------------------------------------------------------------
|
|
|
|
|
|
23.08.2022
|
|
|
|
|
|
Поиск товара в Базе для редактирования
|
|
|
|
|
|
!!! убрать \"
|
|
|
|
|
|
---------------------------------------------------------------------- */
|
|
|
|
|
|
|
|
|
|
|
|
case 'search_tovar':
|
|
|
|
|
|
if ( strlen ( $_POST['find'] ) > 3 ){
|
2022-12-17 18:15:09 +05:00
|
|
|
|
$massiv = \DB::getAll('SELECT `id`, `title` FROM `tovar` WHERE `artikul` LIKE "%' . $_POST['find'] . '%" OR `title` LIKE "%' . $_POST['find'] . '%"');
|
|
|
|
|
|
if ($massiv) print \core::to_j( $massiv );
|
2022-12-11 13:55:49 +05:00
|
|
|
|
}
|
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
|
|
/* ----------------------------------------------------------------------
|
|
|
|
|
|
06.09.2022
|
|
|
|
|
|
Загрузка изображений товара
|
|
|
|
|
|
!!! сделать сверку по md5 и не давать загружать дубли, вместо это привязывать существующую картинку к товару
|
|
|
|
|
|
!!! проверить не опубликованное - и опубликовать если есть
|
|
|
|
|
|
---------------------------------------------------------------------- */
|
|
|
|
|
|
|
|
|
|
|
|
case 'upload':
|
|
|
|
|
|
if ( preg_match( '/[.](jpg)|(jpeg)|(JPG)|(JPEG)$/', $_FILES['file']['name'] ) ) {
|
|
|
|
|
|
$src = $_FILES['file']['tmp_name'];
|
2022-12-17 18:15:09 +05:00
|
|
|
|
$f1 = \core::genpassword(30);
|
2023-03-05 20:22:21 +05:00
|
|
|
|
$target = 'img/' . $_SERVER['SERVER_NAME'] . ' /tovar/' . $f1 . '.jpg';
|
2022-12-11 13:55:49 +05:00
|
|
|
|
copy( $src, $target );
|
|
|
|
|
|
|
2023-03-05 20:22:21 +05:00
|
|
|
|
\DB::add("INSERT INTO `tovar_img` (`tovar_id`, `filename`) VALUES (?, ?)", array(
|
|
|
|
|
|
$_SESSION['tovar_id'], $f1
|
|
|
|
|
|
));
|
2022-12-11 13:55:49 +05:00
|
|
|
|
}
|
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
|
|
case 'del_page':
|
|
|
|
|
|
unset( $_POST['act'] );
|
|
|
|
|
|
$db -> del_id( 'pages', $_POST['id'] );
|
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
|
|
/* ----------------------------------------------------------------------
|
|
|
|
|
|
07.09.2022
|
|
|
|
|
|
Удаление фото товара - снятие с публикации
|
|
|
|
|
|
---------------------------------------------------------------------- */
|
|
|
|
|
|
|
|
|
|
|
|
case 'delImg':
|
|
|
|
|
|
unset( $_POST['act'] );
|
|
|
|
|
|
$db -> del_id( 'img', $_POST['id'] );
|
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
?>
|
