parent.videoRefresh("'.$_POST["userID"].'") '; } if(isset($_POST["clientVideoEdit"])){ $valid=$_POST["date"]." ".$_POST["time"].":00.000000"; $sql="UPDATE `access` SET `timeLimit` = '$valid',`videoId` = '".$_POST["videoID"]."' WHERE `access`.`id` = ".$_POST["ligneID"]; //$sql="INSERT INTO `access` (`id`, `videoId`, `userId`, `timeLimit`) VALUES (NULL, '".$_POST["videoID"]."', '".$_POST["userID"]."', '$valid')"; $req_add_alias=mysqli_query($db,$sql); //echo $sql; echo ''; } if(isset($_POST["clientVideoDelete"])){ $sql="DELETE FROM `access` WHERE `id`=".$_POST["ligneID"]; $req_add_alias=mysqli_query($db,$sql); //echo $sql; echo ''; } //clients if(isset($_POST["clientAdd"])){ $sql="INSERT INTO `users` (`id`, `nom`, `prenom`, `mail`, `telephone`, `notes`) VALUES (NULL, '".$_POST["nom"]."', '".$_POST["prenom"]."', '".$_POST["mail"]."', '".$_POST["telephone"]."', '".addslashes($_POST["notes"])."')"; $req_add_alias=mysqli_query($db,$sql); //echo $sql."
".mysqli_insert_id($db); $photoID=mysqli_insert_id($db); $userfileUploaded = $_FILES["userfile"]["name"]; $extension = explode('.', $userfileUploaded); $ext = $extension[sizeof($extension) - 1]; $userfile = $_FILES["userfile"]["tmp_name"]; if($userfile!=""){ $userfile = $_FILES["userfile"]["tmp_name"]; if (!move_uploaded_file($userfile, "../id/".$photoID.".".$ext)) { echo 'La copie du fichier '.$userfile.' n\'a pas réussi...
'; }else{ $fileID=$photoID.".".$ext; } } $sql="UPDATE `users` SET `photo` = '".$fileID."' WHERE `id` = ".$photoID; $req_add_alias=mysqli_query($db,$sql); echo ''; } if(isset($_POST["clientEdit"])){ if ($_FILES["userfile"]["name"]!=""){ $userfileUploaded = $_FILES["userfile"]["name"]; $extension = explode('.', $userfileUploaded); $ext = $extension[sizeof($extension) - 1]; $targetfile="../id/".$_POST["id"].".".$ext; $sql="SELECT * FROM users WHERE `id`=".$_POST["id"]; $req = mysqli_query($db,$sql); $data_user = mysqli_fetch_assoc($req); if($data_user["photo"]!=""){ unlink($targetfile="../id/".$data_user["photo"]); } $userfile = $_FILES["userfile"]["tmp_name"]; if($userfile!=""){ $userfile = $_FILES["userfile"]["tmp_name"]; if (!move_uploaded_file($userfile, "../id/".$_POST["id"].".".$ext)) { echo 'La copie du fichier '.$userfile.' n\'a pas réussi...
'; }else{ $fileID=$_POST["id"].".".$ext; } } $sql="UPDATE `users` SET `nom` = '".$_POST["nom"]."',`prenom` = '".$_POST["prenom"]."',`mail` = '".$_POST["mail"]."',`telephone` = '".$_POST["telephone"]."',`notes` = '".addslashes($_POST["notes"])."',`photo` = '".$fileID."' WHERE `id` = ".$_POST["id"]; }else{ $sql="UPDATE `users` SET `nom` = '".$_POST["nom"]."',`prenom` = '".$_POST["prenom"]."',`mail` = '".$_POST["mail"]."',`telephone` = '".$_POST["telephone"]."',`notes` = '".addslashes($_POST["notes"])."' WHERE `id` = ".$_POST["id"]; } $req_add_alias=mysqli_query($db,$sql); //echo $sql; echo ''; } ?>