| Server IP : 103.233.192.212 / Your IP : 3.144.226.114 Web Server : Apache/2 System : Linux sv1.inde.co.th 3.10.0-1160.36.2.el7.x86_64 #1 SMP Wed Jul 21 11:57:15 UTC 2021 x86_64 User : sumpatuan ( 1058) PHP Version : 5.5.38 Disable Function : symlink,shell_exec,exec,proc_close,proc_open,popen,system,dl,putenv,passthru,escapeshellarg,escapeshellcmd,pcntl_exec,proc_get_status,proc_nice,proc_terminate,pclose,ini_alter,virtual,openlog,ini_restore MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /home/sumpatuan/public_html/admin/top/action/ |
Upload File : |
<?php
require_once('session_backend_administrator.php');
header('Content-Type: text/html; charset=UTF-8');
date_default_timezone_set("Asia/Bangkok");
$datetime = date('d/m/Y H.i');
if($STT_login=="admin_login_true"){
if(!isset($_POST['edt_id']) or !isset($_POST['edt_oldid']) or !isset($_POST['edt_name']) ){
echo "<SCRIPT type='text/javascript'>
alert('กรุณากรอกข้อมูลให้ครบ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
$data_oldid = trim($con_db_administrator->real_escape_string($_POST['edt_oldid']));
$data_id = trim($con_db_administrator->real_escape_string($_POST['edt_id']));
$data_name = trim($con_db_administrator->real_escape_string($_POST['edt_name']));
$total_filedoc = $_FILES['uploadFile']['name'];
/////// เช็คข้อมูล name ซ้ำ
$sql_check_name = " SELECT COUNT(*) FROM `data_group` WHERE `name_group`='$data_name' AND `id_group`!='$data_oldid' ";
$qr_check_name = mysqli_query($con_db_administrator, $sql_check_name) or trigger_error("sql_check_village", E_USER_ERROR);
$rs_check_name = mysqli_fetch_row($qr_check_name);
$check_name = $rs_check_name[0];
// echo $check_name;
// exit;
if( $data_id == $data_oldid ){
if($check_name >= 1){
echo "<SCRIPT type='text/javascript'>
alert('ชื่อหน่วยงาน [ $data_name ] ซ้ำ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
/////// UPDATE DATA to SQL
if($total_filedoc!=""){
$del_filedoc = "../../../".$_POST['edt_pathimg'];
@unlink($del_filedoc);
$dt_addfile = date('YmdHis');
$oldname_filedoc = $_FILES['uploadFile']['name'];
$type_filedoc = pathinfo($_FILES['uploadFile']['name'],PATHINFO_EXTENSION);
$newname_filedoc = $dt_addfile."_".$data_name.".".$type_filedoc;
$keep_filedoc = "../../../doc/pf/";
$move_filedoc = $keep_filedoc.$newname_filedoc;
move_uploaded_file($_FILES['uploadFile']['tmp_name'],$move_filedoc);
$path_filedoc = "doc/pf/".$newname_filedoc;
$ud_data = " UPDATE `data_group` SET `name_group`='$data_name', `img_group`='$path_filedoc' WHERE `id_group`='$data_id' ";
}else{
$ud_data = " UPDATE `data_group` SET `name_group`='$data_name' WHERE `id_group`='$data_id' ";
}
$action_ud_data = $con_db_administrator->query($ud_data);
if(!$action_ud_data){
echo "<SCRIPT type='text/javascript'>
alert('เกิดข้อผิดพลาด! แก้ไขข้อมูลไม่สำเร็จ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
/////// UPDATE DATA ตำแหน่ง,บุคคล
$ud_data_pst = " UPDATE `data_position` SET `name_group_position`='$data_name' WHERE `id_group_position`='$data_id' ";
$action_ud_data_pst = $con_db_administrator->query($ud_data_pst);
/////// UPDATE DATA บุคคล
$ud_data_pst = " UPDATE `data_profile` SET `name_group_profile`='$data_name' WHERE `id_group_profile`='$data_id' ";
$action_ud_data_pst = $con_db_administrator->query($ud_data_pst);
echo "<SCRIPT type='text/javascript'>
alert('แก้ไขข้อมูล [ $data_name ] สำเร็จ');
window.location.replace('../ChartGroupMain');
</SCRIPT>";
exit;
}
}
}else{
/////// เช็คข้อมูล id ซ้ำ
$sql_check_id = " SELECT COUNT(*) FROM `data_group` WHERE `id_group`='$data_id' ";
$qr_check_id = mysqli_query($con_db_administrator, $sql_check_id) or trigger_error("sql_check_id", E_USER_ERROR);
$rs_check_id = mysqli_fetch_row($qr_check_id);
$check_id = $rs_check_id[0];
if($check_id >= 1){
echo "<SCRIPT type='text/javascript'>
alert('ลำดับหน่วยงาน [ $data_id ] ซ้ำ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
if($check_name >= 1){
echo "<SCRIPT type='text/javascript'>
alert('ชื่อหน่วยงาน [ $data_name ] ซ้ำ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
/////// UPDATE DATA to SQL
if($total_filedoc!=""){
$oldname_filedoc = $_FILES['uploadFile']['name'];
$type_filedoc = pathinfo($_FILES['uploadFile']['name'],PATHINFO_EXTENSION);
$newname_filedoc = $data_name.".".$type_filedoc;
$keep_filedoc = "../../../doc/pf/";
$move_filedoc = $keep_filedoc.$newname_filedoc;
move_uploaded_file($_FILES['uploadFile']['tmp_name'],$move_filedoc);
$path_filedoc = "doc/pf/".$newname_filedoc;
$ud_data = " UPDATE `data_group` SET `id_group`='$data_id', `name_group`='$data_name', `img_group`='$path_filedoc' WHERE `id_group`='$data_oldid' ";
}else{
$ud_data = " UPDATE `data_group` SET `id_group`='$data_id', `name_group`='$data_name' WHERE `id_group`='$data_oldid' ";
}
$action_ud_data = $con_db_administrator->query($ud_data);
if(!$action_ud_data){
echo "<SCRIPT type='text/javascript'>
alert('เกิดข้อผิดพลาด! แก้ไขข้อมูลไม่สำเร็จ [C-2]');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
/////// UPDATE DATA ตำแหน่ง,บุคคล
$ud_data_pst = " UPDATE `data_position` SET `id_group_position`='$data_id', `name_group_position`='$data_name' WHERE `id_group_position`='$data_oldid' ";
$action_ud_data_pst = $con_db_administrator->query($ud_data_pst);
/////// UPDATE DATA บุคคล
$ud_data_pst = " UPDATE `data_profile` SET `id_group_profile`='$data_id', `name_group_profile`='$data_name' WHERE `id_group_profile`='$data_oldid' ";
$action_ud_data_pst = $con_db_administrator->query($ud_data_pst);
echo "<SCRIPT type='text/javascript'>
alert('แก้ไขข้อมูล [ $data_name ] สำเร็จ');
window.location.replace('../ChartGroupMain');
</SCRIPT>";
exit;
}
}
}
}
}
}else{
echo "<SCRIPT type='text/javascript'>
alert('กรุณาเข้าสู่ระบบ');
window.location.replace('../../index');
</SCRIPT>";
exit;
}
mysqli_close($con_db_administrator);
?>