bug fix in read.php, bump version in footer, NEW: bulk delete

giandonato.inverso@edempg.it · giandonato.inverso@edempg.it · commit 096c239715f6 · 2024-04-18T20:33:20.000+02:00
diff --git a/src/bulk_action.php b/src/bulk_action.php
@@ -6,52 +6,96 @@
     $db = getDbInstance();
     $json = json_decode(file_get_contents('php://input'), true);
 
-    $params = $json['params'];
-    $files = [];
+    if($json["action"] == "download") {
+        $params = $json['params'];
+        $files = [];
+
+        if (isset($json['type'])) {
+            $type = filter_var($json['type'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
+        } else {
+            echo json_encode([
+                'data' => 'Type action field in the request.',
+                'status' => 400
+            ]);
+            exit();
+        }
+
+        if (count($params) == 0) {
+            echo json_encode([
+                'data' => 'No qrcodes were selected.',
+                'status' => 400
+            ]);
+            exit();
+        }
+
+        foreach ($params as $param) {
+            $row = $db->where('id', $param);
+            $row = $db->getOne("{$type}_qrcodes");
+            @$files[] = SAVED_QRCODE_FOLDER . $row['qrcode'];
+        }
+
+        $zip = new ZipArchive();
+        $uniqid = uniqid();
+        $relative_dir = SAVED_QRCODE_FOLDER . 'zip/qrcodes_' . $uniqid . '.zip';
+        @unlink($relative_dir);
+        $url_path = SAVED_QRCODE_URL . 'zip/qrcodes_' . $uniqid . '.zip';
+        $zip->open($relative_dir, ZipArchive::CREATE);
+
+        foreach ($files as $file) {
+            $download_file = @file_get_contents($file, true);
+            $zip->addFromString(basename($file), $download_file);
+        }
+
+        $zip->close();
 
-    if (isset($json['type'])) {
-        $type = filter_var($json['type'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
-    } else {
         echo json_encode([
-            'data' => 'Type action field in the request.',
-            'status' => 400
+            'data' => $url_path,
+            'status' => 200
         ]);
         exit();
-    }
+    } else if($json["action"] == "delete") {
+        $params = $json['params'];
+        $files = [];
+
+        if (isset($json['type'])) {
+            $type = filter_var($json['type'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
+        } else {
+            echo json_encode([
+                'data' => 'Type action field in the request.',
+                'status' => 400
+            ]);
+            exit();
+        }
+
+        if (count($params) == 0) {
+            echo json_encode([
+                'data' => 'No qrcodes were selected.',
+                'status' => 400
+            ]);
+            exit();
+        }
+
+        if($type == "dynamic")
+            $instance = new DynamicQrcode();
+        else if($type == "static")
+            $instance = new StaticQrcode();
+        else
+            die("Type not allowed");
+
+        foreach ($params as $param) {
+            $a = 0;
+            $instance->deleteQrcode($param, true);
+        }
 
-    if (count($params) == 0) {
         echo json_encode([
-            'data' => 'No qrcodes were selected.',
-            'status' => 400
+            'action' => "delete",
+            'data' => "Qrcode deleted",
+            'status' => 200
         ]);
         exit();
-    }
-
-    foreach ($params as $param) {
-        $row = $db->where('id', $param);
-        $row = $db->getOne("{$type}_qrcodes");
-        @$files[] = SAVED_QRCODE_FOLDER . $row['qrcode'];
-    }
-
-    $zip = new ZipArchive();
-    $uniqid = uniqid();
-    $relative_dir = SAVED_QRCODE_FOLDER. 'zip/qrcodes_'. $uniqid .'.zip';
-    @unlink($relative_dir);
-    $url_path = SAVED_QRCODE_URL . 'zip/qrcodes_'. $uniqid .'.zip';
-    $zip->open($relative_dir, ZipArchive::CREATE);
-
-    foreach ($files as $file) {
-        $download_file = @file_get_contents($file, true);
-        $zip->addFromString(basename($file), $download_file);
-    }
-
-    $zip->close();
-    
-    echo json_encode([
-        'data' => $url_path,
-        'status' => 200
-    ]);
-    exit();
+
+    } else
+        exit("Action not allowed");
 } else {
     exit('Direct access to this script not allowed.');
 }
diff --git a/src/dist/js/custom.js b/src/dist/js/custom.js
@@ -459,7 +459,7 @@
     });
 
     const data = {
-      action: 'download',
+      action: $('select[name=action]').val(),
       params: params,
       type: $('input[name=type]').val()
     }
@@ -472,8 +472,12 @@
       contentType: 'application/json',
       success: (res) => {
         if (res.status == 200) {
-          window.location.href = res.data;
-          $('#err-msg').css('display', 'none');
+          if(data["action"] === "download") {
+            window.location.href = res.data;
+            $('#err-msg').css('display', 'none');
+          } else if(data["action"] === "delete") {
+            location.reload();
+          }
         }
 
         if (res.status == 400) {
diff --git a/src/forms/table_dynamic.php b/src/forms/table_dynamic.php
@@ -3,8 +3,20 @@
         <div id="err-msg"></div>
         <div class="bulk-action-wrapper">
             <form id="bulk-action" action="bulk_action.php" method="POST">
-                <button type="submit" class="btn btn-primary">Download selected</button>
-                <input type="hidden" name="type" value="dynamic">
+                <div class="col-sm-12 mb-2" style="margin-left: 10px">
+                    <div class="row">
+                        <div class="col-5 col-md-2">
+                            <div class="input-group">
+                                <select name="action" class="form-control">
+                                    <option value="download" selected >Download</option>
+                                    <option value="delete">Delete</option>
+                                </select>
+                                <input type="hidden" name="type" value="dynamic">
+                                <button type="submit" class="btn btn-primary">Apply</button>
+                            </div>
+                        </div>
+                    </div>
+                </div>
             </form>
         </div>
     </div>
diff --git a/src/forms/table_static.php b/src/forms/table_static.php
@@ -3,8 +3,20 @@
         <div id="err-msg"></div>
         <div class="bulk-action-wrapper">
             <form id="bulk-action" action="bulk_action.php" method="POST">
-                <button type="submit" class="btn btn-primary">Download selected</button>
-                <input type="hidden" name="type" value="dynamic">
+                <div class="col-sm-12 mb-2" style="margin-left: 10px">
+                    <div class="row">
+                        <div class="col-5 col-md-2">
+                            <div class="input-group">
+                                <select name="action" class="form-control">
+                                    <option value="download" selected >Download</option>
+                                    <option value="delete">Delete</option>
+                                </select>
+                                <input type="hidden" name="type" value="static">
+                                <button type="submit" class="btn btn-primary">Apply</button>
+                            </div>
+                        </div>
+                    </div>
+                </div>
             </form>
         </div>
     </div>
diff --git a/src/includes/footer.php b/src/includes/footer.php
@@ -6,10 +6,9 @@
 
   <!-- Main Footer -->
   <footer class="main-footer text-sm">
-    <strong>Copyright &copy; <?php echo date("Y");?> <a href="#">PHP Qrcode Generator</a> - </strong>
-    All rights reserved by Giandonato Inverso.
+    <strong><a href="https://github.com/giandonatoinverso/PHP-Dynamic-Qr-code" target="_blank">PHP Qrcode Generator</a> by </strong> Giandonato Inverso
     <div class="float-right d-none d-sm-inline-block">
-      <b>Version</b> 2.2.1
+      <b>Version</b> 2.2.4
     </div>
   </footer>
 </div>
@@ -23,7 +22,7 @@
 <!-- AdminLTE App -->
 <script src="dist/js/adminlte.js"></script>
 <!-- AdminLTE Custom-->
-<script src="dist/js/custom.js"></script>
+<script src="dist/js/custom.js?nocache=<?php print rand();?>"></script>
 <!-- Color picker -->
 <script src="plugins/bootstrap-colorpicker/js/bootstrap-colorpicker.min.js"></script>
 <!-- date-range-picker -->
diff --git a/src/lib/DynamicQrcode/DynamicQrcode.php b/src/lib/DynamicQrcode/DynamicQrcode.php
@@ -89,9 +89,9 @@ public function editQrcode($input_data) {
      * Delete qr code
      * 
      */
-    public function deleteQrcode($id) {
+    public function deleteQrcode($id, $async = false) {
         if($_SESSION['type'] === "super") {
-            $this->qrcode_instance->deleteQrcode($id);
+            $this->qrcode_instance->deleteQrcode($id, $async);
         } else if ($_SESSION['type'] === "admin") {
             $qrcode = $this->getQrcode($id);
 
@@ -103,7 +103,7 @@ public function deleteQrcode($id) {
             $user = $users->getUser($_SESSION['user_id']);
 
             if($user["id"] === $qrcode["id_owner"])
-                $this->qrcode_instance->deleteQrcode($id);
+                $this->qrcode_instance->deleteQrcode($id, $async);
             else
                 $this->failure("You cannot delete this qrcode because it's of another user");
         }
diff --git a/src/lib/Qrcode/Qrcode.php b/src/lib/Qrcode/Qrcode.php
@@ -155,7 +155,7 @@ public function editQrcode($input_data, $data_to_db) {
      * Delete qr code
      * 
      */
-    public function deleteQrcode($id) {
+    public function deleteQrcode($id, $async = false) {
         $db = getDbInstance();
 
         $qrcode = $this->getQrcode($id);
@@ -171,7 +171,8 @@ public function deleteQrcode($id) {
         }
 
         if ($status)
-            $this->info('Qr code deleted successfully!');
+            if (!$async)
+                $this->info('Qr code deleted successfully!');
         else
             $this->failure('Unable to delete qr code');
     }
diff --git a/src/lib/StaticQrcode/StaticQrcode.php b/src/lib/StaticQrcode/StaticQrcode.php
@@ -390,9 +390,9 @@ public function editQrcode($input_data) {
      * Delete qr code
      * 
      */
-    public function deleteQrcode($id) {
+    public function deleteQrcode($id, $async = false) {
         if($_SESSION['type'] === "super") {
-            $this->qrcode_instance->deleteQrcode($id);
+            $this->qrcode_instance->deleteQrcode($id, $async);
         } else if ($_SESSION['type'] === "admin") {
             $qrcode = $this->getQrcode($id);
 
@@ -404,7 +404,7 @@ public function deleteQrcode($id) {
             $user = $users->getUser($_SESSION['user_id']);
 
             if($user["id"] === $qrcode["id_owner"])
-                $this->qrcode_instance->deleteQrcode($id);
+                $this->qrcode_instance->deleteQrcode($id, $async);
             else
                 $this->failure("You cannot delete this qrcode because it's of another user");
         }
diff --git a/src/read.php b/src/read.php
@@ -13,7 +13,7 @@
     'scan' => $db->inc(1)
 );
 $db->where("identifier", $_GET['id']);
-$db->update (DATABASE_PREFIX.'dynamic_qrcodes', $data);
+$db->update ('dynamic_qrcodes', $data);
     
     if($qrcode['state'] == 'enable'){
         echo '<meta http-equiv="refresh" content="0; URL='.$qrcode['link'].'" />';

Original file line number	Diff line number	Diff line change
`@@ -155,7 +155,7 @@ public function editQrcode($input_data, $data_to_db) {`
`155`	`155`	`* Delete qr code`
`156`	`156`	`*`
`157`	`157`	`*/`
`158`		`- public function deleteQrcode($id) {`
	`158`	`+ public function deleteQrcode($id, $async = false) {`
`159`	`159`	`$db = getDbInstance();`
`160`	`160`
`161`	`161`	`$qrcode = $this->getQrcode($id);`
`@@ -171,7 +171,8 @@ public function deleteQrcode($id) {`
`171`	`171`	`}`
`172`	`172`
`173`	`173`	`if ($status)`
`174`		`- $this->info('Qr code deleted successfully!');`
	`174`	`+ if (!$async)`
	`175`	`+ $this->info('Qr code deleted successfully!');`
`175`	`176`	`else`
`176`	`177`	`$this->failure('Unable to delete qr code');`
`177`	`178`	`}`