| Server IP : 213.186.33.4 / Your IP :
216.73.216.146 [
Web Server : Apache System : Linux webm002.cluster103.gra.hosting.ovh.net 5.15.206-ovh-vps-grsec-zfs-classid #1 SMP Fri May 15 02:41:25 UTC 2026 x86_64 User : dealkatnwc ( 662330) PHP Version : 7.0.33 Disable Function : _dyuweyrj4,_dyuweyrj4r,dl Domains : 2 Domains MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/dealkatnwc/www/GDEAL/coupon/ |
Upload File : |
<?php
// session_start();
require_once '../pages/config.php';
require_once '../pages/class/coupon.class.php';
include '../pages/class/utilisateur.class.php';
// var_dump($_SESSION);die;
if(!((isset($_SESSION['GDEAL']['user']['id']) or isset($_GET['key'])) AND (isset ($_GET['id_coup'])) ))
{
// echo "<script>window.close();</script>";exit();
}
$db = new PDO('mysql:host='.$host.';dbname='.$dbname.'', $user, $passwd);
$db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_WARNING);
setlocale (LC_TIME, 'fr_FR','fra');
$managerCou = new CouponManager($db);
if ($managerCou->existe((int) $_GET['id_coup']) == 'non')
{echo "<script>window.close();</script>";exit();}
else
{
$deal = $managerCou->getOneDeal((int) $_GET['id_coup']);
if (isset($_GET['key'])){if($_GET['key']!= sha1($deal['dealer_email'])){echo "<script>window.close();</script>";exit();}}
/////////////vider le dossier out
$files = glob('../out/{,.}*', GLOB_BRACE); // get all file names
foreach($files as $file){ // iterate files
if(is_file($file))
unlink($file); // delete file
}
/////////// debut du Bon de commande WORD
require_once '../pages/class/Office/PHPWord.php';
$PHPWord = new PHPWord();
$document = $PHPWord -> loadTemplate('../template_word/Bon-de-commande-template.docx');
$document -> setValue('${le_nom}', utf8_decode($deal['dealer_nom'])." ".utf8_decode($deal['dealer_prenom']));
$document -> setValue('${tel}', $deal['dealer_tel']);
$dealer_addr = $deal['dealer_gouv'];
$prix = $deal['prix_promo'];
if ($deal['addr']) $dealer_addr = $deal['addr'].", ".$deal['dealer_gouv'];
if (strlen($deal['dealer_email']) > 5){$clt = $managerCou->getInfoClt($deal['dealer_email']);$dealer_addr = strip_tags($clt['adr']).", ".$deal['dealer_gouv'];}
if ($deal['pv']) $prix = $deal['pv'];
$document -> setValue('${adresse}', $dealer_addr);
$document -> setValue('${cmd}', $deal['code_cmd']);
$document -> setValue('${deal}', utf8_decode($deal['titre']));
$document -> setValue('${totale}', $prix."Dt.");
$document -> setValue('${av}', $deal['av']."Dt.");
$document -> setValue('${rst}', $deal['rst']."Dt.");
$new_file = "../out/Bon-de-commande-".utf8_decode($deal['dealer_nom']).'-'.utf8_decode($deal['dealer_prenom']).".docx";
$new_file = str_replace(' ', '_', $new_file);
$document -> save($new_file);
$filename = "Bon-de-commande-".utf8_decode($deal['dealer_nom']).'-'.utf8_decode($deal['dealer_prenom']).".docx";
$filename = str_replace(' ', '_', $filename);
header('Content-Description: File Transfer');
// header('Content-Type: application/msword');
header('Content-Type: application/octet-stream');
header("Content-Disposition: attachment; filename=\"".$filename."\"");
header('Content-Transfer-Encoding: binary');
header('Expires: 0');
header('Cache-Control: must-revalidate');
header('Pragma: public');
header('Content-Length: ' . filesize($new_file));
ob_clean();
flush();
readfile($new_file);
}
?>