-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathdo_moduleAddfile.php
More file actions
56 lines (45 loc) · 1.63 KB
/
do_moduleAddfile.php
File metadata and controls
56 lines (45 loc) · 1.63 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
<?php
require_once(dirname(__FILE__). "/classes/ordermodule.class.php");
if (!defined('W2P_BASE_DIR')) {
die('You should not access this file directly');
}
// Check permissions
$acl = $AppUI->acl();
if (!$acl->checkModule('files', 'add')) {
$AppUI->redirect('m=public&a=access_denied');
}
$paramName = "orderModuleFileIn";
$descr = w2PgetParam($_POST, "orderModuleFileDescr");
$fileObj = new CFile();
// Handle uploaded file
if(isset($_FILES[$paramName])) {
$file = $_FILES[$paramName];
if($file['size'] < 1) {
$AppUI->setMsg("Uploaded file size is 0. Process aborted?", UI_MSG_ERROR);
$AppUI->redirect();
}
$fileObj->file_name = $file['name'];
$fileObj->file_type = $file['type'];
$fileObj->file_size = $file['size'];
$fileObj->file_description = $descr;
$fileObj->file_parent = 0;
$fileObj->file_owner = $AppUI->user_id;
$fileObj->file_date = str_replace("'", '', $db->DBTimeStamp(time()));
$fileObj->file_real_filename = uniqid(rand());
// Move tmp file
$result = $fileObj->moveTemp($file);
if(!$result) {
$AppUI->setMsg("Failed to move uploaded file.", UI_MSG_ERROR);
$AppUI->redirect();
}
// Store file in database
$dbResult = $fileObj->store();
if(!$dbResult === true) {
$AppUI->setMsg($dbResult, UI_MSG_ERROR);
$AppUI->redirect();
} else {
$moduleId = w2PgetParam($_POST, 'orderModuleId');
COrderModule::attachFile($moduleId, $fileObj->file_id);
$AppUI->setMsg("File successfully uploaded and attached to order", UI_MSG_OK, true);
}
}