<?php
spl_autoload_register(function ($class) {
require_once "../../lib/classes/" . $class . ".class.php";
});
if (!isset($_SESSION)) {
session_start();
}
if (isset($_POST["userID"])) {
$db = new Database();
$db->beginTransaction();
$db->query("UPDATE users SET role_id=4 WHERE id = :id LIMIT 1");
$db->bind(':id', $_POST["userID"]);
$update_user = $db->execute();
$db->query("UPDATE products SET status_id=4 WHERE user_id = :id ");
$db->bind(':id', $_POST["userID"]);
$update_products = $db->execute();
$db->endTransaction();
$db->insertAdminLog($_SESSION["employee"], "Deleted user " . $_POST["userID"] . " and all user advertisements", $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id());
if ($update_products && $update_user) {
echo 'success';
} else {
echo 'Deleting user was not successful. Please try again.';
}
}
<?php
spl_autoload_register(function ($class) {
require_once "../../lib/classes/" . $class . ".class.php";
});
if (!isset($_SESSION)) {
session_start();
}
if (isset($_POST["name"]) && isset($_SESSION["employee"])) {
$db = new Database();
$db->query("INSERT INTO categories_sub ( name, main_cat_id, 10_day_price_nok, 20_day_price_nok, 30_day_price_nok, top_add_price_nok, video_price_nok, bold_view_price_nok, top_search_price_nok) \n\t\t\t\t\t\t\t\t\tVALUES (:name,:main_cat_id,:10_day_price_nok,:20_day_price_nok,:30_day_price_nok,:top_add_price_nok,:video_price_nok,:bold_view_price_nok,:top_search_price_nok)");
$db->bind(':name', $_POST["name"]);
$db->bind(':main_cat_id', $_POST["main_cat_id"]);
$db->bind(':10_day_price_nok', $_POST["10_day_price_nok"]);
$db->bind(':20_day_price_nok', $_POST["20_day_price_nok"]);
$db->bind(':30_day_price_nok', $_POST["30_day_price_nok"]);
$db->bind(':top_add_price_nok', $_POST["top_add_price_nok"]);
$db->bind(':video_price_nok', $_POST["video_price_nok"]);
$db->bind(':bold_view_price_nok', $_POST["bold_view_price_nok"]);
$db->bind(':top_search_price_nok', $_POST["top_search_price_nok"]);
$db->insertAdminLog($_SESSION["employee"], "Added subcategory " . $_POST["name"], $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id());
if ($db->execute()) {
echo 'success';
} else {
echo 'Adding new category failed. Please try again.';
}
}
<?php
spl_autoload_register(function ($class) {
require_once "../../lib/classes/" . $class . ".class.php";
});
if (!isset($_SESSION)) {
session_start();
}
if (isset($_POST["id"]) && isset($_SESSION["employee"])) {
$db = new Database();
$db->query("UPDATE attributes SET \n\t\t\t\tname = :name ,\n\t\t\t\tname_nor = :name_nor ,\n\t\t\t\tslug = :slug ,\n\t\t\t\tcount = :count\n\t\t\t \tWHERE id = :id ");
$db->bind(':name', $_POST["name"]);
$db->bind(':name_nor', $_POST["name_nor"]);
$db->bind(':slug', Product::slugify($_POST["name"]));
$db->bind(':count', $_POST["count"]);
$db->bind(':id', $_POST["id"]);
$update = $db->execute();
$message = "Changed attribute " . $_POST["id"] . " information to:";
$message .= "name = " . $_POST["name"];
$message .= "name_nor = " . $_POST["name_nor"];
$message .= ", count = " . $_POST["count"];
$insert = $db->insertAdminLog($_SESSION["employee"], $message, $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id());
if ($update && $insert) {
echo 'success';
} else {
echo 'Change Failed. Please try again.';
}
}
<?php
spl_autoload_register(function ($class) {
require_once "../../lib/classes/" . $class . ".class.php";
});
if (!isset($_SESSION)) {
session_start();
}
if (isset($_POST["user_id"]) && isset($_SESSION["employee"])) {
$db = new Database();
$db->query('UPDATE users SET can_login = :can_login WHERE id = :user_id AND role_id != 1');
$db->bind(':user_id', $_POST["user_id"]);
$db->bind(':can_login', $_POST["can_login"]);
$permission = $_POST["can_login"] ? "Yes" : "No";
$db->insertAdminLog($_SESSION["employee"], "Changed user " . $_POST["user_id"] . " login permission to " . $permission, $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id());
if ($db->execute()) {
echo 'success';
} else {
echo 'Login Permission Change Failed. Please try again.';
}
}
