403WebShell

403Webshell
Server IP : 103.234.187.230 / Your IP : 216.73.216.216
Web Server : Apache
System : Linux lserver42043-ind.megavelocity.net 3.10.0-1160.108.1.el7.x86_64 #1 SMP Thu Jan 25 16:17:31 UTC 2024 x86_64
User : apache ( 48)
PHP Version : 7.4.33
Disable Function : NONE
MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON
Directory : /var/www/html/b2c.hellogtx.com/application/admin/controllers/
Upload File :
[ Back ]
Current File : /var/www/html/b2c.hellogtx.com/application/admin/controllers/OffersController.php
<?php

/***************************************************************
 * Catabatic Technology Pvt. Ltd.
 * File Name     : StaticpageController.php
 * File Desc.    : Staticpage controller managed all staic content pages
 * Created By    : Piyush Tiwari <piyush@catpl.co.in>
 * Created Date  : 23 May 2018
 * Updated Date  : 23 May 2018
 ***************************************************************/



class Admin_OffersController extends Zend_Controller_Action
{


    public $dbAdapter;
    public $perPageLimit;
    public $siteurl;
    public $DIR_WRITE_MODE;



    public function init()
    {

        /*Initialize db and session access */
        parent::init();
        $aConfig = $this->getInvokeArg('bootstrap')->getOptions();
        $this->view->siteurl = $this->siteurl = $aConfig['bootstrap']['siteUrl'];
        $this->view->stylecss = $this->stylecss = $aConfig['bootstrap']['stylecss'];
        $this->appmode = $aConfig['bootstrap']['appmode'];
        $this->per_page_record   = 20;

        $this->dbAdapter = Zend_Db_Table::getDefaultAdapter();

        $auth        = Zend_Auth::getInstance();
        $authStorage = $auth->getStorage()->read();
        $this->username      = $authStorage->username;
        $this->admin_type    = $authStorage->role;
        $this->large_image_width = $aConfig['bootstrap']['large_image_width'];
        $this->large_image_height = $aConfig['bootstrap']['large_image_height'];
        $this->medium_image_width = $aConfig['bootstrap']['medium_image_width'];
        $this->medium_image_height = $aConfig['bootstrap']['medium_image_height'];
        $this->small_image_width = $aConfig['bootstrap']['small_image_width'];
        $this->small_image_height = $aConfig['bootstrap']['small_image_height'];

        $this->table = 'tbl_offers';
        $this->current_time = time();
        $this->imageUrl     = (($this->appmode == 'MODE_BETA') ? 'beta/' : '') . 'public/upload/' . $this->stylecss . '/offers/';
        $this->DIR_WRITE_MODE = 0777;
    }



    /**
     * index() method is used to admin login for form call
     * @param Null
     * @return Array
     */

    public function indexAction()
    {
        //Check admin logedin or not

        $this->checklogin();
        $this->view->messages = $this->_helper->flashMessenger->getMessages();
        $crud   = new Admin_Model_CRUD();
        $getData = array();
        if ($this->getRequest()->isPost()) {
            $getData = $this->getRequest()->getPost();
            $searchArr = array(
                'heading' => $getData['heading'],
                'rows' => $getData['rofferIdows'],
                'page' => $getData['page'],
            );
            $resulsetold = $crud->getCount($this->table, ['isMarkForDel' => 0], 'Id');
            //        echo "<pre>";print_r($resulsetold);die;
            $crud->searchArr = $searchArr;
            $resultset = $crud->rv_select_all($this->table, ['*'], ['isMarkForDel' => 0,'isb2b'=>0], ['Id ' => 'DESC']);
            if (count($resultset) > 0) {
                foreach ($resultset as $resultkey => $resultval) {
                    $checked = ($resultval['displayOnHome'] == 1) ? 'checked' : '';
                    $expiryDate = explode('-', $resultval['expiryDate']);
                    $result1[] = [
                        'Id' => $resultval['Id'],
                        'category' => $resultval['category'],
                        'heading' => $resultval['heading'],
                        'expiryDate' => $expiryDate[2] . '/' . $expiryDate[1] . '/' . $expiryDate[0],
                        'image' => '<img src="public/upload/' . $this->stylecss . '/offers/' . $resultval['Id'] . '/small/' . $resultval['image'] . '" width="60px" height="60px">',
                        'isActive' => $resultval['isActive'] == 1 ? 'Active' : 'Deactive',
                        'displayOnHome' => '<input type="checkbox" id="displayOnHome_' . $resultval['Id'] . '" value="1" name="" class="" ' . $checked . ' onclick="displayOnHome(' . $resultval['Id'] . ')">',
                    ];
                }
            }

            $result = Zend_Json::encode($result1);
            $newResult = Zend_Json::decode($result, false);
            $finalResult["total"] = $resulsetold[0]['Id'];
            $finalResult["rows"] = $newResult;

            echo json_encode($finalResult);
            exit;
        }
    }

    // DISPLAY OFFERS

    public function displayOffersAction()
    {
        $this->checklogin();
        $this->_helper->viewRenderer->setNoRender(true);
        $crud = new Admin_Model_CRUD();
        $tId = (int) $this->getRequest()->getParam("id");
        $val = (int) $this->getRequest()->getParam("val");
        // echo"<pre>";print_r($tId);
        // echo"<pre>";print_r($val);
        // die();
        if ($tId) {
            try {
                $updatedata = [
                    'displayOnHome' => $val
                ];

                $result = $crud->rv_update('tbl_offers', $updatedata, ['Id =?' => $tId]);
                if (!$result) {
                    $result_message = ['status' => false, 'message' => 'Oops something wrong!!'];
                    echo Zend_Json::encode($result_message);
                    exit;
                } else {
                    $result_message = ['status' => true, 'message' => 'Active successfully'];
                    echo Zend_Json::encode($result_message);
                    exit;
                }
            } catch (Exception $ex) {
                print_r($ex->getMessage());
                exit;
            }
        }
    }



    public function editoffersAction()
    {
        //Check admin logedin or not
        $this->checklogin();
        $crud = new Admin_Model_CRUD();
        $pId = (int)$this->getRequest()->getParam("id");

        if ($this->getRequest()->isPost()) {
            $getData = $this->getRequest()->getPost();


            //-------Start Code for Approve and Publish content---------//
            if (isset($getData['save']) == "Save") {
                //                         echo "<pre>";print_r($getData);die;
                $id = $getData['id'];
                $orignalFIleName = $image = $_FILES["image"]["name"];
                $fileName = '';
                if (!empty($orignalFIleName)) {
                    $orignalFolderName  = $_SERVER["DOCUMENT_ROOT"] . "/" . $this->imageUrl . $pId;
                    $fileExt    = $this->_helper->General->getFileExtension($orignalFIleName);
                    $fileName   = $this->current_time . '.' . 'webp';


                    if (!file_exists($orignalFolderName)) {
                        mkdir($orignalFolderName, $this->DIR_WRITE_MODE, true);
                    }

                    $temp_file_name = $_FILES["image"]["tmp_name"]; // temprary file name
                    @move_uploaded_file($temp_file_name, $orignalFolderName . "/" . $fileName);

                    $originalLargeFolder = $orignalFolderName . '/large';
                    $originalMediumFolder = $orignalFolderName . '/medium';
                    $originalSmallFolder = $orignalFolderName . '/small';

                    Catabatic_Helper::resizeImages($orignalFolderName, $originalLargeFolder, $fileName, $this->large_image_width, $this->large_image_height);
                    Catabatic_Helper::resizeImages($orignalFolderName, $originalMediumFolder, $fileName, $this->medium_image_width, $this->medium_image_height);
                    Catabatic_Helper::resizeImages($orignalFolderName, $originalSmallFolder, $fileName, $this->small_image_width, $this->small_image_height);
                }


                $expiryDate = explode('/', $getData['expiryDate']);
                $editPageData = [

                    'category' => ($getData['category']),
                    'heading' => ($getData['heading']),
                    'subHeading' => ($getData['subHeading']),
                    'expiryDate' => $expiryDate[2] . '-' . $expiryDate[1] . '-' . $expiryDate[0],
                    'url' => ($getData['url']),
                    'tab' => ($getData['tab']) ? $getData['tab'] : 0,
                    'isActive' => ($getData['isActive']),
                ];

                if ($fileName != '') {
                    $editPageData['image'] = $fileName;
                }
                //                 echo "<pre>";print_r($editPageData);die;
                $crud->rv_update($this->table, $editPageData, ['Id =?' => $pId]);
                $this->view->successMessage = "Page content has been saved successfully.";
                $this->_helper->flashMessenger->addMessage("Page content has been updated successfully.");
                $this->_redirect("/admin/offers/index");
            }
        }

        $result = $crud->getCmsdata($this->table, ['*'], ['Id' => $pId], ['Id' => 'DESC']);

        $editdata["Id"] = @$result->Id;
        $editdata["category"] = @$result->category;
        $editdata["heading"] = @$result->heading;
        $editdata["image"] = @$result->image;
        $editdata["subHeading"] = @$result->subHeading;
        $expiryDate = explode('-', $result->expiryDate);
        $editdata["expiryDate"] = $expiryDate[2] . '/' . $expiryDate[1] . '/' . $expiryDate[0];
        $editdata["url"] = @$result->url;
        $editdata["tab"] = @$result->tab;
        $editdata["isActive"] = @$result->isActive;
        //        echo "<pre>";print_r($editdata);die;

        $this->view->image = @$result->image;
        $this->view->editdata = $editdata;
    }


    public function addoffersAction()
    {

        //Check admin logedin or not
        $this->checklogin();
        $crud = new Admin_Model_CRUD();

        if ($this->getRequest()->isPost()) {
            $getData = $this->getRequest()->getPost();
            $lastRow = $crud->getCmsdata($this->table, ['Id'], ['Id'], ['Id' => 'DESC']);
            $pId = $lastRow['Id'] + 1;
            if (isset($getData['save']) == "Save") {
                //      echo "<pre>";print_r($getData);die;
                $id = $getData['id'];
                $orignalFIleName = $image = $_FILES["image"]["name"];
                $fileName = '';
                if (!empty($orignalFIleName)) {
                    $orignalFolderName  = $_SERVER["DOCUMENT_ROOT"] . "/" . $this->imageUrl . $pId;
                    $fileExt    = $this->_helper->General->getFileExtension($orignalFIleName);
                    $fileName   = $this->current_time . '.' . 'webp';


                    if (!file_exists($orignalFolderName)) {
                        mkdir($orignalFolderName, $this->DIR_WRITE_MODE, true);
                    }

                    $temp_file_name = $_FILES["image"]["tmp_name"]; // temprary file name
                    @move_uploaded_file($temp_file_name, $orignalFolderName . "/" . $fileName);

                    $originalLargeFolder = $orignalFolderName . '/large';
                    $originalMediumFolder = $orignalFolderName . '/medium';
                    $originalSmallFolder = $orignalFolderName . '/small';

                    Catabatic_Helper::resizeImages($orignalFolderName, $originalLargeFolder, $fileName, $this->large_image_width, $this->large_image_height);
                    Catabatic_Helper::resizeImages($orignalFolderName, $originalMediumFolder, $fileName, $this->medium_image_width, $this->medium_image_height);
                    Catabatic_Helper::resizeImages($orignalFolderName, $originalSmallFolder, $fileName, $this->small_image_width, $this->small_image_height);
                }

                $expiryDate = explode('/', $getData['expiryDate']);
                $savePageData = [
                    'category' => ($getData['category']),
                    'heading' => ($getData['heading']),
                    'subHeading' => ($getData['subHeading']),
                    'expiryDate' => $expiryDate[2] . '-' . $expiryDate[1] . '-' . $expiryDate[0],
                    'url' => ($getData['url']),
                    'tab' => (int)($getData['tab']),
                    'image' =>   $fileName,

                    'isActive' => ($getData['isActive']),
                    'isMarkForDel' => 0,
                ];
                // echo "<pre>";print_r($savePageData);die;
                $crud->rv_insert($this->table, $savePageData);
                $this->view->successMessage = "Page content has been saved successfully.";
                $this->_helper->flashMessenger->addMessage("Page content has been added successfully.");
                $this->_redirect("/admin/offers/index");
            }
        }


        $this->view->messages   = $this->_helper->flashMessenger->getMessages();
    }


























    //                if (isset($getData['save']) == "Save") {
    // //                echo "<pre>";print_r($getData);die;

    //                 $orignalFIleName = $image = $_FILES["image"]["name"];

    // $fileName = '';

    //                 if (!empty($orignalFIleName)) {
    //                                  $orignalFolderName  = $_SERVER["DOCUMENT_ROOT"] . "/" . $this->imageUrl ;
    //                                  $fileExt    = $this->_helper->General->getFileExtension($orignalFIleName);
    //                                  $fileName   = $this->current_time . '.' . 'webp';
    //                                     if (!file_exists($orignalFolderName)) {
    //                                         mkdir($orignalFolderName, $this->DIR_WRITE_MODE, true);
    //                                         }
    //                                   $temp_file_name = $_FILES["image"]["tmp_name"]; // temprary file name
    //                                     @move_uploaded_file($temp_file_name, $orignalFolderName . "/" . $fileName);

    //                              }


    //                 $expiryDate = explode('/',$getData['expiryDate']);
    //                 $savePageData = [
    //                     'category' => ($getData['category']),
    //                     'heading' => ($getData['heading']),
    //                     'subHeading' => ($getData['subHeading']),
    //                     'expiryDate' => $expiryDate[2].'-'.$expiryDate[1].'-'.$expiryDate[0],
    //                     'url' => ($getData['url']),
    //                     'tab' => (int)($getData['tab']),
    //                     'image' =>   $fileName ,

    //                     'isActive' => ($getData['isActive']),
    //                     'isMarkForDel' => 0,
    //                 ];
    // //                echo "<pre>";print_r($savePageData);die;
    //                 $crud->rv_insert($this->table, $savePageData);
    //                 $this->view->successMessage = "Page content has been saved successfully.";
    //                 $this->_helper->flashMessenger->addMessage("Page content has been added successfully.");
    //                 $this->_redirect("/admin/offers/index");

    //          }


    //     }


    //     $this->view->messages   = $this->_helper->flashMessenger->getMessages();


    // }



    public function deleteoffersAction()
    {
        $this->checklogin();
        $crud = new Admin_Model_CRUD();
        $tId = (int) $this->getRequest()->getParam("id");
        //echo $tId;die;
        if ($tId) {
            $checkdata = $crud->rv_select_row($this->table, ['Id'], ['Id' => $tId], ['Id' => 'asc']);
            if (count($checkdata) > 0) {
                $crud->rv_update($this->table, ['isMarkForDel' => 1], ['Id  =?' => $tId]);
                $this->_helper->flashMessenger->addMessage("Deleted successfully.");
                $this->_redirect("/admin/offers/index");
            } else {
                die('Oops some thing wrong!!.');
            }
        }
    }



    public function sanitize_data($string)
    {
        $searchArr = array("iframe", "script", "document", "write", "alert", "%", "@", "$", ";", "+", "|", "#", "<", ">", ")", "(", "'", "\'", ",", "and ", " &", "& ", "and", " and", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9");
        $input_data = strtolower($string);
        $input_data = str_replace($searchArr, "", $input_data);

        $input_data = str_replace(" ", "-", $input_data);
        //echo $input_data; die;
        return $input_data;
    }



    /**
     * checklogin() method is used to check admin logedin or not
     * @param Null
     * @return Array
     */
    public function checklogin()
    {
        if (($this->admin_type == "superadmin") || ($this->admin_type == "admin")) {
            $auth = Zend_Auth::getInstance();
            $hasIdentity = $auth->hasIdentity();
            /*************** check admin identity ************/
            if (!$hasIdentity) {
                $this->_redirect('admin/index/index');
            }
        } else {
            $this->_redirect('admin/index/index');
        }
    }
}
Youez - 2016 - github.com/yon3zu
LinuXploit