<?php
ob_start();
?>
<?php
session_start();
if($_SESSION['user']){
$link=mysql_pconnect("localhost","root","");
mysql_select_db("a",$link);
$result=mysql_query("select * from `f` where `id`='".intval($_GET['id'])."'")or die(mysql_error());
if(mysql_num_rows($result)>0 ){
$row=mysql_fetch_assoc($result);
$file=$row['name'];
$file="upload/".$file;
header('Content-Type: application/octet-stream');
header('Content-Disposition: attachment; filename='.basename($file));
header('Content-Length: ' . filesize($file));
ob_clean();
flush();
readfile($file);
}
// echo "فایل موجود نمیباشد";
}
?>
<?php
ob_end_flush();
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" ;Dir:rtl />
<title>Untitled Document</title>
</head>
<center><body background="">
<table width="953" height="886" border="0">
<tr>
<td height="129" class="header" > </td>
</tr>
<tr>
<td height="10"><ul id="sddm" >
<li><a href="download.php">دانلود</a></li>
</ul></td>
</tr>
<tr>
<td align="left" valign="top">
<?php
if(isset($_POST['user']))
{
$con = mysql_connect("localhost","root","");
if(!$con)
{
die('could not connect');
}
mysql_select_db("a",$con);
$user=mysql_real_escape_string($_POST['user']);
$pass=md5(mysql_real_escape_string($_POST['pass']));
if(!empty($username) && !empty($password) ){
$result = mysql_query("SELECT COUNT(*) FROM `st` WHERE `username`='$user' AND `pass`='$pass';")or die(mysql_error());;
$row = mysql_fetch_row($result);
if($row[0] > 0)
{
$_SESSION['user'] = $user;
$_SESSION['pass'] = $pass;
echo $_SESSION['user']." خوش آمدی";
print('<form action="logout.php" method="post" class=" dir">
<br/>
<div align ="center"> <input type="submit" value="خروج" class="textbox" /></div>'); // exit;
}
elseif(!preg_match('/^([a-z0-9_\.\-]{6,35})$/i',$user) || empty($pass))
{
$error= ('<div class=" bg-text1" >نام کاربری یا کلمه عبور اشتباه می باشد</div>'); } }
else
{
$name='<div class=" bg-text1" >لطفا نام کاربری را وارد کنید</div>';
$pass='<div class=" bg-text1" >لطفا گذر واژه را وارد کنید</div>';
}
}
?>
<br/>
</div>
<div class="content-pagetitle dircss ">دانلود جزوات </div>
<center>
<?php
if($_SESSION['user']){
?>
<table border="" style="border-collapse: collapse; direction:ltr" width="52%" bordercolor="#FF00FF">
<tr>
</tr>
<?php
$con = mysql_connect("localhost","root","");
if (!$con)
{
die('Could not connect: ' . mysql_error());
}
mysql_select_db("a", $con);
$result = mysql_query("SELECT * FROM f");
while($row = mysql_fetch_array($result))
{?>
<tr onMouseOut="this.style.backgroundColor = ''" onMouseOver="this.style.backgroundColor = '#e4e4e4'">
<td align="center" width="9%"><b>
</td>
<td align="center" width="44%">
<a href="download.php?id=<?php echo $row['id']; ?>" >
<img src="images/yes.png" border="0">دانلود</a>
</td>
<td align="center" width="24%">
<?php echo $row['size']; ?></td>
<td align="center" width="54%">
<?php echo $row['n']; ?></td>
<td align="center" width="54%">
<?php echo $row['name']; ?></td>
<td align="center" width="44%">
<?php echo $row['id']; ?></td>
</tr>
<?php
}
}
else
{print('
<br/>
<div align="center" class=" bg-text1" > شما ابتدا باید وارد بخش کاربری شوید </div>
<br/>
');
?>
<form action="<?php $_SERVER['PHP_SELF'] ?>" method="post" >
<?php
echo'
<div align="center" >نام کاربری:<input type="text" name="username" size="20" class="textbox" />';?><?php echo $name;?> <?php echo'</div>
<br/> <div align="center" > گذر واژه: <input type="password" name="password" size="20" class="textbox" />';?><?php echo $pass;?>
<?php echo'</div>
<br/> <div align="center"> <input type="submit" value="ورود" class="button" />';?> <?php echo $error;?> <?php echo'</div>
</form>
';
}
?>
</div>
</tr>
</table>
</body></center>
</html>
