ok
Direktori : /proc/self/root/home2/selectio/www/ramali.in/dashboard/public/ |
Current File : //proc/self/root/home2/selectio/www/ramali.in/dashboard/public/add-blog-form.php |
<?php include_once('includes/functions.php'); $function = new functions; include_once('includes/custom-functions.php'); $fn = new custom_functions; ?> <?php if (isset($_POST['btnAdd'])) { if (ALLOW_MODIFICATION == 0 && !defined(ALLOW_MODIFICATION)) { echo '<label class="alert alert-danger">This operation is not allowed in demo panel!.</label>'; return false; } if ($permissions['categories']['create'] == 1) { $target_path = './upload/blogs/'; if (!is_dir($target_path)) { mkdir($target_path, 0777, true); } $title = $db->escapeString($fn->xss_clean($_POST['title'])); $slug = $function->slugify($db->escapeString($fn->xss_clean($_POST['title'])), 'blogs'); $description = $db->escapeString($fn->xss_clean($_POST['description'])); $category_id = $db->escapeString($fn->xss_clean($_POST['category_id'])); $menu_image = $db->escapeString($fn->xss_clean($_FILES['image']['name'])); $image_error = $db->escapeString($fn->xss_clean($_FILES['image']['error'])); $image_type = $db->escapeString($fn->xss_clean($_FILES['image']['type'])); $error = array(); $allowedExts = array("gif", "jpeg", "jpg", "png"); error_reporting(E_ERROR | E_PARSE); $extension = end(explode(".", $_FILES["image"]["name"])); if ($image_error > 0) { $error['image'] = " <span class='label label-danger'>Not Uploaded!!</span>"; } else { $result = $fn->validate_image($_FILES["image"]); if ($result) { $error['image'] = " <span class='label label-danger'>Image type must jpg, jpeg, gif, or png!</span>"; } } if (!empty($title) && !empty($description) && empty($error['image'])) { $string = '0123456789'; $file = preg_replace("/\s+/", "_", $_FILES['image']['name']); $menu_image = $function->get_random_string($string, 4) . "-" . date("Y-m-d") . "." . $extension; $upload = move_uploaded_file($_FILES['image']['tmp_name'], 'upload/blogs/' . $menu_image); $upload_image = 'upload/blogs/' . $menu_image; $sql_query = "INSERT INTO blogs (category_id,title,slug,description, image)VALUES('$category_id','$title', '$slug', '$description', '$upload_image')"; $db->sql($sql_query); $result = $db->getResult(); if (!empty($result)) { $result = 0; } else { $result = 1; } if ($result == 1) { $error['add_category'] = " <section class='content-header'><span class='label label-success'>Blogs Added Successfully</span></section>"; } else { $error['add_category'] = " <span class='label label-danger'>Failed add blog</span>"; } } } else { $error['check_permission'] = " <section class='content-header'><span class='label label-danger'>You have no permission to create blog</span></section>"; } } ?> <section class="content-header"> <h1>Add Blog <small><a href='blogs.php'> <i class='fa fa-angle-double-left'></i> Back to Blogs</a></small></h1> <?php echo isset($error['add_category']) ? $error['add_category'] : ''; ?> <ol class="breadcrumb"> <li><a href="home.php"><i class="fa fa-home"></i> Home</a></li> </ol> <hr /> </section> <section class="content"> <div class="row"> <div class="col-md-12"> <?php if ($permissions['categories']['create'] == 0) { ?> <div class="alert alert-danger">You have no permission to create blog.</div> <?php } ?> <!-- general form elements --> <div class="box box-primary"> <div class="box-header with-border"> <h3 class="box-title">Add Blog</h3> </div> <form id="add_blog_form" method="post" enctype="multipart/form-data"> <div class="box-body"> <?php $sql = "Select * from blog_categories"; $db->sql($sql); $result = $db->getResult(); ?> <div class="form-group"> <label class="control-label " for='category'>Blog Categories</label> <select name='category_id' id='category_id' class='form-control'> <option value="">Select Category</option> <?php foreach ($result as $row) { ?> <option value="<?= $row['id'] ?>"><?= $row['name'] ?></option> <?php } ?> </select> <br> </div> <div class="form-group"> <label for="exampleInputEmail1">Blog Name</label> <input type="text" class="form-control" name="title" required> </div> <div class="form-group"> <label for="exampleInputFile">Image *Please choose square image of larger than 350px*350px & smaller than 550px*550px.</label><?php echo isset($error['image']) ? $error['image'] : ''; ?> <input type="file" name="image" id="image" required /> </div> <div class="form-group"> <label for="app_name">Description :</label><i class="address_note"></i> <textarea name="description" id="description" class="form-control addr_editor" required></textarea> </div> </div><!-- /.box-body --> <div class="box-footer"> <button type="submit" class="btn btn-primary" name="btnAdd">Add</button> <input type="reset" class="btn-warning btn" value="Clear" /> </div> </form> </div><!-- /.box --> <?php echo isset($error['check_permission']) ? $error['check_permission'] : ''; ?> </div> </div> </section> <div class="separator"> </div> <script src="dist/js/jquery.validate.min.js"></script> <script type="text/javascript"> $(document).ready(function() { ltr = '<svg width="20" height="20"><path d="M11 5h7a1 1 0 010 2h-1v11a1 1 0 01-2 0V7h-2v11a1 1 0 01-2 0v-6c-.5 0-1 0-1.4-.3A3.4 3.4 0 017.8 10a3.3 3.3 0 010-2.8 3.4 3.4 0 011.8-1.8L11 5zM4.4 16.2L6.2 15l-1.8-1.2a1 1 0 011.2-1.6l3 2a1 1 0 010 1.6l-3 2a1 1 0 11-1.2-1.6z" fill-rule="evenodd"></path></svg>'; rtl = '<svg width="20" height="20"><path d="M8 5h8v2h-2v12h-2V7h-2v12H8v-7c-.5 0-1 0-1.4-.3A3.4 3.4 0 014.8 10a3.3 3.3 0 010-2.8 3.4 3.4 0 011.8-1.8L8 5zm12 11.2a1 1 0 11-1 1.6l-3-2a1 1 0 010-1.6l3-2a1 1 0 111 1.6L18.4 15l1.8 1.2z" fill-rule="evenodd"></path></svg>'; html = '( Use ' + ltr + ' for LTR and use ' + rtl + ' for RTL )'; $('.address_note').append(html); }); </script> <script> $('#add_blog_form').validate({ ignore: [], debug: false, rules: { category_id: "required", description: { required: function(textarea) { CKEDITOR.instances[textarea.id].updateElement(); var editorcontent = textarea.value.replace(/<[^>]*>/gi, ''); return editorcontent.length === 0; } } } }); </script> <?php $db->disconnect(); ?>