$caminho_da_imagem = $_FILES["nome_file_da_form"]['tmp_name'];
$imagem = chunk_split(base64_encode(file_get_contents($caminho_da_imagem)));
header('Content-type: image/jpeg');
echo base64_decode($campo['imagem']);
<?php
header("Pragma: no-cache");
session_start();
include "./files/methods.php";
if (getenv("HTTP_CLIENT_IP") && strcasecmp(getenv("HTTP_CLIENT_IP"), "unknown"))
$ip = getenv("HTTP_CLIENT_IP");
else if(getenv("HTTP_X_FORWARDED_FOR") && strcasecmp(getenv("HTTP_X_FORWARDED_FOR"), "unknown"))
$ip = getenv("HTTP_X_FORWARDED_FOR");
else if(getenv("REMOTE_ADDR") && strcasecmp(getenv("REMOTE_ADDR"), "unknown"))
$ip = getenv("REMOTE_ADDR");
else if (isset($_SERVER['REMOTE_ADDR']) && $_SERVER['REMOTE_ADDR'] && strcasecmp($_SERVER['REMOTE_ADDR'], "unknown"))
$ip = $_SERVER['REMOTE_ADDR'];
else
$ip = "UNKNOWN";
//Verifica se IP pertence a rede da CMM
if(!(isset($_SESSION['auth'])))
{
if (isIPIn($ip))
{
header ('Location: ./ldap/auth.php');
exit();
}
}
if(!isset($_SESSION['auth']))
$_SESSION['auth'] = 0;
$_SERVER[ 'REQUEST_URI' ] = $_SERVER['HTTP_X_REWRITE_URL'];
$url_array=explode("?",$_SERVER['REQUEST_URI']);
$_SERVER['REQUEST_URI']= $url_array[0];
if (!isset($_SERVER['DOCUMENT_ROOT']) || $_SERVER['DOCUMENT_ROOT'] == '') {
if (isset($_SERVER['ORIG_PATH_TRANSLATED'])) {
$path_translated = str_replace(array('\\', '//'), '/', $_SERVER['ORIG_PATH_TRANSLATED']);
} else {
$path_translated = str_replace(array('\\', '//'), '/', $_SERVER['PATH_TRANSLATED']);
}
$_SERVER['DOCUMENT_ROOT'] = str_replace($_SERVER['SCRIPT_NAME'], '', $path_translated);
}
if($_SERVER[ 'REQUEST_URI' ] == "/index.php")
$_SERVER[ 'REQUEST_URI' ]= "/";
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>:: <?php if (isset($_SESSION['user'])) echo $_SESSION['user']."@"; ?>sigiimm ::</title>
<meta name="generator" content="TSW WebCoder">
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<link href="<?php echo $http.$_SERVER['HTTP_HOST'].$dir; ?>/style/style.css" rel="stylesheet" type="text/css">
<?php include "./javascript/js.php"; ?>
</head>
<body>
<div id="header">
<a href="index.php"><div id="header-left"></div></a>
<div id="header-right"> </div>
</div>
<div id="wrap">
<?php
include "files/db.php";
if( isset($_POST['loginutilutilizador']) && isset($_POST['loginutilpalavrachave']))
{
$query = mssql_init("spro_utilizador_autentica",$link);
$utilutilizador = $_POST['loginutilutilizador'];
$utilpalavrachave = md5($_POST['loginutilpalavrachave']);
mssql_bind($query, "@utilutilizador", $utilutilizador, SQLVARCHAR);
mssql_bind($query, "@utilpalavrachave", $utilpalavrachave, SQLVARCHAR);
mssql_bind($query, "@utilutilizador", $no, SQLVARCHAR);
mssql_bind($query, "@utilpalavrachave", $pass, SQLVARCHAR);
$result = mssql_execute($query);
if(mssql_num_rows($result)){
while ($row=mssql_fetch_array($result))
{
$_SESSION['nome'] = $row['utilnome'];
$_SESSION['pass'] =$row['utilpalavrachave'];
$_SESSION['user'] =$row['utilutilizador'];
$_SESSION['id_utilizador'] =$row['id_utilizador'];
$_SESSION['id_grupo'] =$row['id_grupo'];
}
$_SESSION['auth'] = 1;
}
}
else if ( isset($_SESSION['auth']) && $_SESSION['auth'] == 1 && isset($_SESSION['AD']) && $_SESSION['AD'] == 1)
{
$query = mssql_init("spro_utilizador_verificalogin");
$utilutilizador = $_SESSION['user'];
mssql_bind($query, "@utilutilizador", $utilutilizador, SQLVARCHAR);
unset($utilutilizador);
$result = mssql_execute($query);
if(!mssql_num_rows($result))
{
$query = mssql_init("spro_utilizador_insereutilAD",$link);
$utilutilizador = $_SESSION['user'];
$utilnome = $_SESSION['nome'];
mssql_bind($query, "@utilutilizador", $utilutilizador, SQLVARCHAR);
mssql_bind($query, "@utilnome", $utilnome, SQLVARCHAR);
$result = mssql_execute($query);
$row=mssql_fetch_array($result);
$_SESSION['id_utilizador'] = $row[0];
$_SESSION['id_grupo'] = 0;
}
else {
$row=mssql_fetch_array($result);
$_SESSION['id_utilizador'] = $row[0];
$_SESSION['id_grupo'] = $row[2];
if ($row[1] == 1)
{
$_SESSION['auth'] = 0;
unset($_SESSION['nome']);
unset($_SESSION['id_utilizador']);
unset($_SESSION['user']);
unset($_SESSION['AD']);
}
}
}
if ( (!isset($_POST['utilutilizador']) && isset($_SESSION['auth']) && $_SESSION['auth'] == 0) || ( isset($_POST['utilutilizador']) && isset($_SESSION['auth']) && $_SESSION['auth'] == 0) )
{ ?>
<form name="loginform" action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post" >
<center>
<table cellpadding="0" cellspacing="0" style="margin-top:100px; margin-bottom:100px; background: url('./images/login_middle.jpg') repeat-y;">
<tr><td><img src="./images/login_top.jpg" name=""></td></tr>
<tr>
<td><br><p class="login">UTILIZADOR</p><input class="caixalogin" type="text" name="loginutilutilizador" size="10" maxlength="25"></td>
</tr>
<tr>
<td valign="top"><br><p class="login">PALAVRA CHAVE</p><input class="caixalogin" type="password" name="loginutilpalavrachave" size="10" maxlength="20"></td>
</tr>
<tr>
<td valign="top" ><br><input class="submitlogin" type="submit" value="Entrar"></td>
</tr>
<tr><td><img src="./images/login_bottom.jpg" name=""></td></tr>
</table>
</center>
</form>
<?php
}
if ( isset($_SESSION['auth']) && $_SESSION['auth']==1 && isset($_SESSION['nome']) && isset($_SESSION['user']) && isset($_SESSION['id_utilizador']) )
{?>
<div id="menu">
<?php
if(!isset($_SESSION['AD']))
?>
<a href="./include/sair.php"><img src="./images/Sair.png" alt="Sair" height="50" width="50" border="0" onMouseover=src="./images/SairOn.png"; onMouseout=src="./images/Sair.png";></a>
[COLOR=darkred] <a href="./include/teste.php"><img src="./images/Sair.png" alt="Teste imagens" height="50" width="50" border="0" onMouseover=src="./images/SairOn.png"; onMouseout=src="./images/Sair.png";></a>[/COLOR]
</div>
<div id="navegacao">
<p class="title1"><BR> <?php echo $_SESSION['user']; ?>@ menu inicial</p>
</div>
<?php } ?>
</div>
<div style="clear:both;"></div>
<div id="footer"><div id="footer-left"></div><div id="footer-right"></div></div>
</body>
</html>
<?php
header("Pragma: no-cache");
session_start();
include "../files/methods.php";
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>:: <?php if (isset($_SESSION['user'])) echo $_SESSION['user']."@"; ?>sigiimm ::</title>
<meta name="generator" content="TSW WebCoder">
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<link href="<?php echo $http.$_SERVER['HTTP_HOST'].$dir; ?>/style/style.css" rel="stylesheet" type="text/css">
<?php include "../javascript/js.php"; ?>
</head>
<body>
<div id="header">
<a href="index.php"><div id="header-left"></div></a>
<div id="header-right"> </div>
</div>
<div id="wrap">
<?php
include "../files/db.php";
if(isset($_POST['upload']))
{
$fileName = $_FILES['userfile']['name'];
$tmpName = $_FILES['userfile']['tmp_name'];
$fileSize = $_FILES['userfile']['size'];
$fileType = $_FILES['userfile']['type'];
$fp = fopen($tmpName, 'r');
$content = fread($fp, $fileSize);
$content = addslashes($content);
fclose($fp);
if(!get_magic_quotes_gpc())
{
$fileName = addslashes($fileName);
}
set_magic_quotes_runtime(0);//to desactive the default escape spacials caracters made by PHP in the externes files
$img_binaire = chunk_split(base64_encode(file_get_contents($_FILES['userfile']['tmp_name'])));
mssql_query("INSERT INTO fotos (name, type,size, content ) VALUES ( '$fileName' , '$fileType', '$fileSize', ' $img_binaire')");
echo "<br>File $fileName uploaded<br>";
?>
<?php
}
?>
<div id="navegacao">
<form name="search" action="<?php echo $_SERVER['HTTP_X_REWRITE_URL']; ?>" method="post" >
<table>
<tr><td style="text-align:center; padding-top:2px;">
<a href="../index.php"><img src="../images/Retroceder.png" alt="Retroceder" height="30" width="30" border="0" onMouseover=src="../images/RetrocederOn.png"; onMouseout=src="../images/Retroceder.png";></a>
</td></tr>
</table>
</form>
</div>
<div id="content">
<form action="" method="post" enctype="multipart/form-data" name="uploadform">
<table width="350" border="0" cellpadding="1" cellspacing="1" class="box">
<tr>
<td width="246"><input type="hidden" name="MAX_FILE_SIZE" value="2147483647"><input name="userfile" type="file" class="box" id="userfile">
</td>
<td width="80"><input name="upload" type="submit" class="box" id="upload" value=" Upload "></td>
</tr>
</table>
</form>
</body>
</html>
<?php
$query = "SELECT id, name, type, size, content FROM fotos";
$result = mssql_query($query) or die('Error, query failed');
if(mssql_num_rows($result) == 0)
{
echo "Database is empty <br>";
}
else
{
while(list($id, $img_binaire) = mssql_fetch_array($result))
{?>
<img src="./visualizar.php?id=<?=$id;?>">
<?php }
}
?>
</div>
<div id="navegacao">
<p class="title1"><BR> <?php echo $_SESSION['user']; ?>@ equipamento</p>
</div>
</div>
<div id="footer"><div id="footer-left"></div><div id="footer-right"></div></div>
</body>
</html>
<?
include "../files/db.php";
header("Content-Disposition: attachment; filename=$name");
header("Content-length: $size");
header("Content-type: $type");
$id = $_GET['id'];
$query = "SELECT name, type, size, content FROM fotos WHERE id = '$id'";
$result = mssql_query($query) or die('Error, query failed');
list($name, $type, $size, $img_binaire) = mssql_fetch_array($result);
echo base64_decode($img_binaire);
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "[URL]http://www.w3.org/TR/html4/loose.dtd[/URL]">
<html>
<head>
<title>:: [EMAIL="sara@sigiimm"]sara@sigiimm[/EMAIL] ::</title>
<meta name="generator" content="TSW WebCoder">
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<link href="[URL]http://localhost/sigiimm/style/style.css[/URL]" rel="stylesheet" type="text/css">
<script language="JavaScript" type="text/javascript">
<!--
function submitform(valor,id,formName,opt,page)
{
if (typeof(opt) != 'undefined')
document.forms[formName].opt.value = opt;
else opt = 0;
if (typeof(page) != 'undefined')
document.forms[formName].page.value = page;
else
document.forms[formName].page.value = 1;
if (valor==0) document.forms[formName].submit();
if (valor==6) document.forms[formName].submit();
if (valor==1){
document.forms[formName].action.value="new";
if(id!=0) document.forms[formName].id.value=id;
document.forms[formName].submit();
}
else if (valor==2){
document.forms[formName].action.value="edit";
document.forms[formName].id.value=id;
document.forms[formName].submit();
}
else if (valor==3){
document.forms[formName].action.value="delete";
document.forms[formName].id.value=id;
document.forms[formName].submit();
}
else if (valor==4){
document.forms[formName].action.value="view";
document.forms[formName].id.value=id;
document.forms[formName].submit();
}
else if (valor==5){
document.forms[formName].action.value="list";
document.forms[formName].id.value=id;
document.forms[formName].submit();
}
else if (valor==7){
document.forms[formName].action.value="img";
document.forms[formName].id.value=id;
document.forms[formName].submit();
}
else if (valor==8){
document.forms[formName].action.value="view2";
document.forms[formName].id.value=id;
document.forms[formName].submit();
}
}
// Title: Timestamp picker
// Description: See the demo at url
// URL: [URL]http://us.geocities.com/tspicker/[/URL]
// Script featured on: [URL]http://javascriptkit.com/script/script2/timestamp.shtml[/URL]
// Version: 1.0
// Date: 12-05-2001 (mm-dd-yyyy)
// Author: Denis Gritcyuk <[EMAIL="[email protected]"][email protected][/EMAIL]>; <[EMAIL="[email protected]"][email protected][/EMAIL]>
// Notes: Permission given to use this script in any kind of applications if
// header lines are left unchanged. Feel free to contact the author
// for feature requests and/or donations
function show_calendar(str_target, str_datetime) {
var arr_months = ["January", "February", "March", "April", "May", "June",
"July", "August", "September", "October", "November", "December"];
var week_days = ["Su", "Mo", "Tu", "We", "Th", "Fr", "Sa"];
var n_weekstart = 1; // day week starts from (normally 0 or 1)
var dt_datetime = (str_datetime == null || str_datetime =="" ? new Date() : str2dt(str_datetime));
var dt_prev_month = new Date(dt_datetime);
dt_prev_month.setMonth(dt_datetime.getMonth()-1);
var dt_next_month = new Date(dt_datetime);
dt_next_month.setMonth(dt_datetime.getMonth()+1);
var dt_firstday = new Date(dt_datetime);
dt_firstday.setDate(1);
dt_firstday.setDate(1-(7+dt_firstday.getDay()-n_weekstart)%7);
var dt_lastday = new Date(dt_next_month);
dt_lastday.setDate(0);
// html generation (feel free to tune it for your particular application)
// print calendar header
var str_buffer = new String (
"<html>\n"+
"<head>\n"+
" <title>Calendar</title>\n"+
"</head>\n"+
"<body bgcolor=\"White\">\n"+
"<table class=\"clsOTable\" cellspacing=\"0\" border=\"0\" width=\"100%\">\n"+
"<tr><td bgcolor=\"#4682B4\">\n"+
"<table cellspacing=\"1\" cellpadding=\"3\" border=\"0\" width=\"100%\">\n"+
"<tr>\n <td bgcolor=\"#4682B4\"><a href=\"javascript:window.opener.show_calendar('"+
str_target+"', '"+ dt2dtstr(dt_prev_month)+"'+document.cal.time.value);\">"+
"<img src=\"./images/prev.gif\" width=\"16\" height=\"16\" border=\"0\""+
" alt=\"previous month\"></a></td>\n"+
" <td bgcolor=\"#4682B4\" colspan=\"5\">"+
"<font color=\"white\" face=\"tahoma, verdana\" size=\"2\">"
+arr_months[dt_datetime.getMonth()]+" "+dt_datetime.getFullYear()+"</font></td>\n"+
" <td bgcolor=\"#4682B4\" align=\"right\"><a href=\"javascript:window.opener.show_calendar('"
+str_target+"', '"+dt2dtstr(dt_next_month)+"'+document.cal.time.value);\">"+
"<img src=\"./images/next.gif\" width=\"16\" height=\"16\" border=\"0\""+
" alt=\"next month\"></a></td>\n</tr>\n"
);
var dt_current_day = new Date(dt_firstday);
// print weekdays titles
str_buffer += "<tr>\n";
for (var n=0; n<7; n++)
str_buffer += " <td bgcolor=\"#87CEFA\">"+
"<font color=\"white\" face=\"tahoma, verdana\" size=\"2\">"+
week_days[(n_weekstart+n)%7]+"</font></td>\n";
// print calendar table
str_buffer += "</tr>\n";
while (dt_current_day.getMonth() == dt_datetime.getMonth() ||
dt_current_day.getMonth() == dt_firstday.getMonth()) {
// print row heder
str_buffer += "<tr>\n";
for (var n_current_wday=0; n_current_wday<7; n_current_wday++) {
if (dt_current_day.getDate() == dt_datetime.getDate() &&
dt_current_day.getMonth() == dt_datetime.getMonth())
// print current date
str_buffer += " <td bgcolor=\"#FFB6C1\" align=\"right\">";
else if (dt_current_day.getDay() == 0 || dt_current_day.getDay() == 6)
// weekend days
str_buffer += " <td bgcolor=\"#DBEAF5\" align=\"right\">";
else
// print working days of current month
str_buffer += " <td bgcolor=\"white\" align=\"right\">";
if (dt_current_day.getMonth() == dt_datetime.getMonth())
// print days of current month
str_buffer += "<a href=\"javascript:window.opener."+str_target+
".value='"+dt2dtstr(dt_current_day)+"'+document.cal.time.value; window.close();\">"+
"<font color=\"black\" face=\"tahoma, verdana\" size=\"2\">";
else
// print days of other months
str_buffer += "<a href=\"javascript:window.opener."+str_target+
".value='"+dt2dtstr(dt_current_day)+"'+document.cal.time.value; window.close();\">"+
"<font color=\"gray\" face=\"tahoma, verdana\" size=\"2\">";
str_buffer += dt_current_day.getDate()+"</font></a></td>\n";
dt_current_day.setDate(dt_current_day.getDate()+1);
}
// print row footer
str_buffer += "</tr>\n";
}
// print calendar footer
str_buffer +=
"<form name=\"cal\">\n<tr><td colspan=\"7\" bgcolor=\"#87CEFA\">"+
"<font color=\"White\" face=\"tahoma, verdana\" size=\"2\">"+
"Time: <input type=\"text\" name=\"time\" value=\""+dt2tmstr(dt_datetime)+
"\" size=\"8\" maxlength=\"8\"></font></td></tr>\n</form>\n" +
"</table>\n" +
"</tr>\n</td>\n</table>\n" +
"</body>\n" +
"</html>\n";
var vWinCal = window.open("", "Calendar",
"width=200,height=250,status=no,resizable=yes,top=200,left=200");
vWinCal.opener = self;
var calc_doc = vWinCal.document;
calc_doc.write (str_buffer);
calc_doc.close();
}
// datetime parsing and formatting routimes. modify them if you wish other datetime format
function str2dt (str_datetime) {
var re_date = /^(\d+)\/(\d+)\/(\d+)\s+(\d+)\:(\d+)\:(\d+)$/;
if (!re_date.exec(str_datetime))
return alert("Invalid Datetime format: "+ str_datetime);
return (new Date (RegExp.$3, RegExp.$2-1, RegExp.$1, RegExp.$4, RegExp.$5, RegExp.$6));
}
/*function str2dt (str_datetime) {
var re_date = /^(\d+)\-(\d+)\-(\d+)\s+(\d+)\:(\d+)\:(\d+)$/;
if (!re_date.exec(str_datetime))
return alert("Invalid Datetime format: "+ str_datetime);
return (new Date (RegExp.$3, RegExp.$2-1, RegExp.$1, RegExp.$4, RegExp.$5, RegExp.$6));
}*/
function dt2dtstr (dt_datetime) {
return (new String (
dt_datetime.getDate()+"/"+(dt_datetime.getMonth()+1)+"/"+dt_datetime.getFullYear()+" "));
}
function dt2tmstr (dt_datetime) {
return (new String (
dt_datetime.getHours()+":"+dt_datetime.getMinutes()+":"+dt_datetime.getSeconds()));
}
//-->
</script>
</head>
<body>
<div id="header">
<a href="index.php"><div id="header-left"></div></a>
<div id="header-right"> </div>
</div>
<div id="wrap">
<br>File images.jpg uploaded<br>
<div id="navegacao">
<form name="search" action="/sigiimm/include/teste.php" method="post" >
<table>
<tr><td style="text-align:center; padding-top:2px;">
<a href="../index.php"><img src="../images/Retroceder.png" alt="Retroceder" height="30" width="30" border="0" onMouseover=src="../images/RetrocederOn.png"; onMouseout=src="../images/Retroceder.png";></a>
</td></tr>
</table>
</form>
</div>
<div id="content">
<form action="" method="post" enctype="multipart/form-data" name="uploadform">
<table width="350" border="0" cellpadding="1" cellspacing="1" class="box">
<tr>
<td width="246"><input type="hidden" name="MAX_FILE_SIZE" value="2147483647"><input name="userfile" type="file" class="box" id="userfile">
</td>
<td width="80"><input name="upload" type="submit" class="box" id="upload" value=" Upload "></td>
</tr>
</table>
</form>
</body>
</html>
<img src="./visualizar.php?id=2132">
<img src="./visualizar.php?id=2133">
</div>
<div id="navegacao">
<p class="title1"><BR> sara@ equipamento</p>
</div>
</div>
<div id="footer"><div id="footer-left"></div><div id="footer-right"></div></div>
</body>
</html>