1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
| <?
if($_POST['addaresto']>=1)
{
$id_resto_to_add = round(abs($_POST['addaresto']));
mysql_query('INSERT INTO users_restos SET id_user=\''.$_SESSION['config_user']['id_user'].'\', id_resto=\''.$id_resto_to_add.'\', valid=\'n\',`table`=\'resto\',date=NOW()');
echo '<script type="text/javascript">alert(\'Votre restaurant va être ajouté dans notre base de donnée. Notre équipe le validera sous peu, ce qui vous permettra alors de renseigner toutes vos informations : carte, ardoise, photos, vidéo ...\');window.location=\'moncompte.php?menu=ajouter-un-restaurant\';</script>';
$sujet_admin="ALERTE Nouvelle Validation";
$msg_admin='http://youresto.com/admin/?content=valid_restos Un restaurant doit etre validé';
$entete = "MIME-Version: 1.0\r\n";
$entete .= "Content-type: text/html; charset=iso-8859-1\r\n";
$entete .= "From: youResto@".$ip.".com\r\n";
mail($email_validation,$sujet_admin,$msg_admin,$entete); // email envoyé à l'admin
}
if($_GET['del_resto_tmp']>=1)
{
$del_resto_tmp = round(abs($_GET['del_resto_tmp']));
$q=mysql_query('SELECT id_resto FROM users_restos WHERE id_users_restos=\''.$del_resto_tmp.'\' AND valid=\'n\' AND `table`=\'resto_tmp\'');
$r=mysql_fetch_row($q);
if($r[0]>=1)
{
mysql_query('DELETE FROM resto_tmp WHERE id=\''.$r[0].'\'');
}
mysql_query('DELETE FROM users_restos WHERE id_users_restos=\''.$del_resto_tmp.'\'');
echo '<script type="text/javascript">window.location=\'moncompte.php?menu=ajouter-un-restaurant\';</script>';
}
if($_POST['insert_new_resto']=='y')
{
/* Création d'un resto par un membre */
$title = mysql_real_escape_string(trim($_POST['title']));
$id_categ = round(trim($_POST['id_categ']));
$address = mysql_real_escape_string(trim($_POST['address']));
$city = mysql_real_escape_string(trim($_POST['city']));
$website = mysql_real_escape_string(trim($_POST['website']));
$cap = mysql_real_escape_string(trim($_POST['cap']));
$phone = mysql_real_escape_string(trim($_POST['phone']));
$mobile_resa = mysql_real_escape_string(trim($_POST['mobile_resa']));
$email_resa = mysql_real_escape_string(trim($_POST['email_resa']));
$description = mysql_real_escape_string(trim($_POST['description']));
if($title!='' && $address!='' && $city!='' && $cap!='' && $phone!='' && $description!='')
{
mysql_query('INSERT INTO resto SET
title = \''.$title.'\',
address = \''.$address.'\',
id_categ = \''.$id_categ.'\',
city = \''.$city.'\',
website = \''.$website.'\',
cap = \''.$cap.'\',
phone = \''.$phone.'\',
mobile_resa = \''.$mobile_resa.'\',
email_resa = \''.$email_resa.'\',
date = NOW(),
description = \''.$description.'\'');
$id_resto_tmp = mysql_insert_id();
mysql_query('INSERT INTO users_restos SET id_user=\''.$_SESSION['config_user']['id_user'].'\', id_resto=\''.$id_resto_tmp.'\',date=NOW()');
echo '<script type="text/javascript">alert(\'Votre restaurant va être ajouté dans notre base de donnée. Notre équipe le validera sous peu, ce qui vous permettra alors de renseigner toutes vos informations : carte, ardoise, photos, vidéo ...\');window.location=\'moncompte.php?menu=ajouter-un-restaurant\';</script>';
$sujet_admin="ALERTE Nouvelle Validation";
$msg_admin=' http://youresto.com/admin/?content=valid_restos Un restaurant doit etre validé';
$entete = "MIME-Version: 1.0\r\n";
$entete .= "Content-type: text/html; charset=iso-8859-1\r\n";
$entete .= "From: youResto@".$ip.".com\r\n";
mail($email_validation,$sujet_admin,$msg_admin,$entete);
}
else
{
echo '<script type="text/javascript">alert(\'Merci de renseigner tous les champs obligatoires.\');</script>';
}
}
?>
<!-- TinyMCE -->
<script type="text/javascript" src="tiny_mce/tiny_mce.js"></script>
<script type="text/javascript">
tinyMCE.init({
mode : "textareas",
theme : "simple"
});
</script>
<!-- /TinyMCE -->
<div id="moncomptec">
<div id="formulaire">
<?
if($nb_users_restos_non_valides>=1)
{
?>
<h2>Mes restaurants en cours de validation</h2>
<?
$qr=mysql_query('SELECT resto_tmp.title,users_restos.id_users_restos FROM users_restos,resto_tmp WHERE users_restos.id_user=\''.$_SESSION['config_user']['id_user'].'\' AND resto_tmp.id=users_restos.id_resto AND users_restos.valid=\'n\' AND users_restos.table=\'resto_tmp\' ORDER BY users_restos.id_users_restos ASC');
while($rr=mysql_fetch_assoc($qr))
{
echo ' <b>#'.$rr['id_users_restos'].'</b> - '.$rr['title'].' - <i>Pas encore validé</i> - <a href="moncompte.php?menu=ajouter-un-restaurant&del_resto_tmp='.$rr['id_users_restos'].'" onclick="if(window.confirm(\'Supprimer ce restaurant ?\')){return true;}else{return false;}">Supprimer</a><br />';
}
$qr=mysql_query('SELECT resto.title,users_restos.id_users_restos FROM users_restos,resto WHERE users_restos.id_user=\''.$_SESSION['config_user']['id_user'].'\' AND resto.id=users_restos.id_resto AND users_restos.valid=\'n\' AND users_restos.table=\'resto\' ORDER BY users_restos.id_users_restos ASC');
while($rr=mysql_fetch_assoc($qr))
{
echo ' <b>#'.$rr['id_users_restos'].'</b> - '.$rr['title'].' - <i>Pas encore validé</i> - <a href="moncompte.php?menu=ajouter-un-restaurant&del_resto_tmp='.$rr['id_users_restos'].'" onclick="if(window.confirm(\'Supprimer ce restaurant ?\')){return true;}else{return false;}">Supprimer</a><br />';
}
}
?>
<form name="form_resto" action="#" method="post" style="margin:0px;">
<h2 class="button">Mon restaurant est déjà sur le site</h2>
<p ><i>Si votre restaurant a déjà une fiche, et que vous souhaitez pouvoir en modifier les informations, séléctionnez votre restaurant ci-dessous.</i></p>
<p >
<?
echo '<select name="addaresto"><option value="0">Choisir dans la liste</option>';
$q=mysql_query('SELECT id,title,cap FROM resto,users_restos WHERE resto.id NOT IN (SELECT id_resto FROM users_restos WHERE id_user=\''.$_SESSION['config_user']['id_user'].'\') GROUP BY resto.id ORDER BY title ASC');
while($r=mysql_fetch_assoc($q))
{
echo '<option value="'.$r['id'].'">'.$r['title'].' ('.$r['cap'].')</option>';
}
echo '</select>';
?>
<input type="submit" name="add_selected_resto" value="Ajouter" style="width:70px;" />
</p>
</form>
<br><br><br>
<form name="form_resto" action="#" method="post" style="margin:0px;">
<h2 class="button">Mon restaurant n'est pas sur le site</h2>
<p ><i>Si votre restaurant n'est pas encore enregistré sur le site, vous pouvez en renseigner les informations ci-dessous.</i></p>
<h3><strong>Nom du restaurant <span>*</span> :</strong></h3>
<p ><input type="text" name="title" style="width:450px;border-radius: 4px;" value="<?=htmlentities(stripslashes($_POST['title']));?>" /></p>
<h3><strong>Catégorie du restaurant <span>*</span> :</strong></h3>
<p >
<select name="id_categ">
<option value="0">Non définie</option>
<?
$qcateg = mysql_query('SELECT * FROM resto_categs ORDER BY categ ASC');
while($rcateg = mysql_fetch_assoc($qcateg))
{
if($array_resto["id_categ"]==$rcateg['id_categ']){$sel='selected="selected"';}else{$sel='';}
echo '<option value="'.$rcateg['id_categ'].'" '.$sel.'>'.$rcateg['categ'].'</option>';
}
?>
</select>
</p>
<h3><b>Adresse <span>*</span> :</b></h3>
<p ><input type="text" name="address" value="<?=htmlentities(stripslashes($_POST["address"]));?>" /></p>
<h3><b>Ville <span>*</span> :</b></h3>
<p ><input type="text" name="city" value="<?=htmlentities(stripslashes($_POST["city"]));?>" /></p>
<h3><b>Code postal <span>*</span> :</b></h3>
<p ><input type="text" name="cap" style="width:200px;" value="<?=htmlentities(stripslashes($_POST["cap"]));?>" /></p>
<h3><b>Téléphone <span>*</span> :</b></h3>
<p ><input type="text" name="phone" style="width:200px;" value="<?=htmlentities(stripslashes($_POST["phone"]));?>" /></p>
<h3><b>Mobile pour réservations par SMS :</b><h5><em>Utilisé seulement pour vous transmettre les réservations par SMS sur votre mobile</em></h5></h3>
<p ><input type="text" name="mobile_resa" style="width:200px;" value="<?=htmlentities(stripslashes($_POST["mobile_resa"]));?>" /></p>
<h3><b>Email pour réservations :</b></h3>
<p ><input type="text" name="email_resa" style="width:200px;" value="<?=htmlentities(stripslashes($_POST["email_resa"]));?>" /></p>
<h3><b>Site Internet :</b></h3>
<p ><input type="text" name="website" value="<?=htmlentities(stripslashes($_POST["website"]));?>" /></p>
<h3><b>Description <span>*</span> :</b></h3>
<p ><textarea name="description" id="description"><?=htmlentities(stripslashes($_POST["description"]));?></textarea></p>
<p style="margin-top:15px;"><input type="submit" name="insert_new_resto" value="Ajouter votre restaurant" /><input type="hidden" name="insert_new_resto" value="y" /></p>
<br /><br />
</form>
</div>
</div> |
requete/entrée doublée ..?
Répondre avec citation
Partager