Rev 153 | Blame | Compare with Previous | Last modification | View Log | RSS feed
<?phpinclude_once ('php/hosting.php');include_once ('php/constants.php');include_once ('php/sessions_db.php');include_once ('php/cryptor.php');include_once ('php/tools.php');include_once ('php/clsLibGTIN.php');include_once ("php/NonceUtil.php");error_reporting(E_ALL);$configFile = parse_ini_file(FCM_CONFIGFILE, true);$crypt = Cryptor::getInstance($configFile['cryptor']);$tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);$handler = MySessionHandler::getInstance($tmpSessionTab, $configFile['mysqli']);$systemConf = $configFile['system'];unset($configFile);session_set_cookie_params(604800, '/', '.findcheapmusic.com', true, true);session_set_save_handler($handler, true);if (!empty($_COOKIE['PHPSESSID'])) {session_id($_COOKIE['PHPSESSID']);}session_start();initSessionVariables($systemConf);if ($_SERVER["REQUEST_METHOD"] == "POST") {if (!getPGV("nonce") || NonceUtil::check($systemConf["nonce_secret"], getPGV("nonce")) === false) {exit;}$barcode = getPGV("barcode");if ($_POST["submitBtn"] == "check") {if (empty($barcode) || !is_numeric($barcode) || strlen($barcode) > 14 || strlen($barcode) < 8) {myExit("Invalid Barcode", null, null, true);}$type = clsLibGTIN::GTINCheck($barcode, false, 1);$value = clsLibGTIN::GTINCheck($barcode);if (!$type) {myExit("Barcode does not have a valid check digit", null, null, true);} else {myExit("Valid barcode<br>" . $type . " " . $value, $value, $type);}} else if ($_POST["submitBtn"] == "calc") {if (empty($barcode) || strlen($barcode) > 14 || strlen($barcode) < 8) {myExit("Invalid Barcode", null, null, true);}$type = clsLibGTIN::GTINCheck($barcode, false, 1);$value = clsLibGTIN::GTINCheck($barcode);if ($type) {myExit("Barcode already has a valid check digit" . "<br>" . $type . " " . $value, $value, $type);} else if (strlen($barcode) > 13) {myExit("Invalid Barcode", null, null, true);}$res = $checkDigit = clsLibGTIN::GTINCalcCheckDigit($barcode);$type = clsLibGTIN::GTINCheck($barcode . $checkDigit, false, 1);$value = clsLibGTIN::GTINCheck($barcode . $checkDigit);if (!$res || !$type) {myExit("Invalid Barcode", null, null, true);}$type = clsLibGTIN::GTINCheck($barcode . $checkDigit, false, 1);$value = clsLibGTIN::GTINCheck($barcode . $checkDigit);myExit("Check Digit is " . $checkDigit . "<br>" . $type . " " . $value, $value, $type);}}MySessionHandler::commit(session_id());exit;function myExit($msg, $value, $type = null, $isError = false) {$xh = new HTML;$xh->init($_SESSION["htmlIndent"]);$xh->add_attribute("class", ($isError ? "alert alert-danger" : "text-success"));$xh->tag('span', $msg);$html = $xh->flush();// error_log(print_r($html, 1));echo $html;if (!$isError && !empty($value)) {$xh->tag('div');$xh->insert_code(getBarcodeImage($value, $type));$xh->close(); // div$xh->add_attribute("class", "mt-3");$xh->tag('div');$xh->add_attribute("id", "barcodeSearchForm");$xh->add_attribute("method", "post");$xh->add_attribute("action", "/index.php");$xh->tag('form');$xh->insert_code(inputSessionTab());$xh->add_attribute("id", "barcodeSearchTerm");$xh->add_attribute("type", "hidden");$xh->add_attribute("name", "searchTerm");$xh->add_attribute("value", $value);$xh->single_tag('input');$xh->add_attribute("id", "barcodeSearchBtn");$xh->add_attribute("type", "submit");$xh->add_attribute("class", "btn btn-success");$xh->add_attribute("name", "submitBtn");$xh->add_attribute("value", "Search");$xh->tag('button');$xh->add_attribute("class", "material-icons material-text");$xh->tag('i', "search");$xh->tag('span', " Search");$xh->close(); //span$xh->close(); // form$xh->close(); // div$html = $xh->flush();// error_log(print_r($html, 1));echo $html;saveBarcodeSearch($value);}MySessionHandler::commit(session_id());exit;}function saveBarcodeSearch($value) {$_sess_db = MySessionHandler::getDBSessionId();$access = mysqli_real_escape_string($_sess_db, time());$barcode = mysqli_real_escape_string($_sess_db, $value);$userId = (empty($_SESSION['sessData']['userID']) ? null : $_SESSION['sessData']['userID']);$ip = inet_pton($_SERVER['REMOTE_ADDR']);$sessionId = session_id();$sql = "INSERTINTO barcodeChecks(sessId, access, ip, barcode, userId)VALUES (?, ?, ?, ?, ?)";$stmt = mysqli_prepare($_sess_db, $sql);mysqli_stmt_bind_param($stmt, 'sdssd', $sessionId, $access, $ip, $barcode, $userId);if (!mysqli_stmt_execute($stmt)) {error_log("Error: " . $sql . " | " . mysqli_error($_sess_db));}mysqli_stmt_close($stmt);}function getBarcodeImage($value, $type) {include('php/php-barcode.php');$fontSize = 10;$marge = 10;$x = 100;$y = 30;$height = 50;$width = 2;$angle = 0;$code = substr($value, 0, -1);if ($type == "EAN") { $type = 'ean13'; }$im = imagecreatetruecolor(200, 60);$black = ImageColorAllocate($im,0x00,0x00,0x00);$white = ImageColorAllocate($im,0xff,0xff,0xff);imagefilledrectangle($im, 0, 0, 200, 60, $white);$data = Barcode::gd($im, $black, $x, $y, $angle, $type, array('code'=>$code), $width, $height);ob_start();imagegif($im);$data = ob_get_contents();ob_end_clean();imagedestroy($im);$data = base64_encode($data);return("<img alt='Barcode $value Image' src='data:image/gif;base64,$data'>");}