From 8af683b075620c6a68c45770df251bd740a63c83 Mon Sep 17 00:00:00 2001 From: Wisdurm Date: Wed, 19 Nov 2025 08:25:24 +0200 Subject: [PATCH] Pikku korjauksia --- write.php | 86 +++++++++++++++++++++++++++++++------------------------ 1 file changed, 48 insertions(+), 38 deletions(-) diff --git a/write.php b/write.php index e42844e..d04a628 100644 --- a/write.php +++ b/write.php @@ -1,47 +1,55 @@ query($sql); // Aja komento -// Jos tuloksia -$kategoriat = []; -if ($result->num_rows>0){ - while($row = $result->fetch_assoc()){ - $kategoriat[] = $row; + +if ($logged_in) { + // Hanki kategoriat + $sql = "SELECT * FROM kategoriat"; + $result = $conn->query($sql); // Aja komento + // Jos tuloksia + $kategoriat = []; + if ($result->num_rows>0){ + while($row = $result->fetch_assoc()){ + $kategoriat[] = $row; + } } -} -// Upload -if ($_SERVER['REQUEST_METHOD'] == 'POST') { - $user_id = $_SESSION["id"]; - $otsikko = $_POST["title"]; - $teksti = $_POST["text"]; - $kat = $_POST["cat"]; - // Random nimi tiedostolle jotta ei tule kollisioita - $permittedchars = 'abcdefghijklmnopqrstuvwxyz1234567890'; - $random = substr(str_shuffle($permittedchars), 0, 10); - // Ota tärkeät tiedot tiedostosta - $filename = $_FILES['file']["name"]; - $tmp = $_FILES['file']["tmp_name"]; - $size = $_FILES['file']["size"]; - $error = $_FILES['file']["error"]; - $filetype = $_FILES['file']["type"]; - // Tarskista tyyppi - $allowed = array('jpg', 'png', 'tiff', 'jpeg', 'webp'); - $ext = end(explode("/", $filetype)); - if (in_array($ext, $allowed) and $error === 0 and $size < 5000000000) { - echo "Tiedosto meni läpi..."; - $filenameNew = $random . "." . $ext; - $upload = "./images/" . $filenameNew; - move_uploaded_file($tmp, $upload); - echo "Success!"; - $sql = "INSERT INTO `uutiset` (`id`, `otsikko`, `teksti`, `kuva`, `kategoria_id`, `toimittaja_id`) VALUES (NULL, '$otsikko', '$teksti', '$filenameNew', '$kat', '$user_id'); "; - $result = $conn->query($sql); // Aja komento - // Redirect - header("Location: .#$otsikko"); - die(); + // Upload + if ($_SERVER['REQUEST_METHOD'] == 'POST') { + $user_id = $_SESSION["id"]; + $otsikko = $_POST["title"]; + $teksti = $_POST["text"]; + $kat = $_POST["cat"]; + // Random nimi tiedostolle jotta ei tule kollisioita + $permittedchars = 'abcdefghijklmnopqrstuvwxyz1234567890'; + $random = substr(str_shuffle($permittedchars), 0, 10); + // Ota tärkeät tiedot tiedostosta + $filename = $_FILES['file']["name"]; + $tmp = $_FILES['file']["tmp_name"]; + $size = $_FILES['file']["size"]; + $error = $_FILES['file']["error"]; + $filetype = $_FILES['file']["type"]; + // Tarskista tyyppi + $allowed = array('jpg', 'png', 'tiff', 'jpeg', 'webp'); + $ext = end(explode("/", $filetype)); + if (in_array($ext, $allowed) and $error === 0 and $size < 5000000000) { + echo "Tiedosto meni läpi..."; + $filenameNew = $random . "." . $ext; + $upload = "./images/" . $filenameNew; + move_uploaded_file($tmp, $upload); + echo "Success!"; + $sql = "INSERT INTO `uutiset` (`id`, `otsikko`, `teksti`, `kuva`, `kategoria_id`, `toimittaja_id`) VALUES (NULL, '$otsikko', '$teksti', '$filenameNew', '$kat', '$user_id'); "; + $result = $conn->query($sql); // Aja komento + // Redirect + header("Location: .#$otsikko"); + die(); + } } } +else { + // Redirect + header("Location: ."); + die(); +} ?>

@@ -60,5 +68,7 @@ if ($_SERVER['REQUEST_METHOD'] == 'POST') {
+ Käyttäjä: +
-- 2.47.3