function editReview()
 {
     global $db;
     $sections = FetchSections('Obsedb_reviews_sections');
     $review = $db->Execute("SELECT * FROM `Obsedb_reviews` WHERE `id` = '{$_REQUEST['id']}';");
     do_form_header('reviews.php');
     do_table_header('Post New Review');
     do_text_row('Title', 'title', clean($review->fields['title']));
     do_select_row('Section', 'section', $sections, $review->fields['section']);
     $this->do_Mod_select_row($review->fields['Modid']);
     do_text_row("Modplay", "Modplay", clean($review->fields['Modplay']));
     do_text_row("Graphics", "graphics", clean($review->fields['graphics']));
     do_text_row("Sound", "sound", clean($review->fields['sound']));
     do_text_row("Value", "value", clean($review->fields['value']));
     do_text_row("Tilt", "tilt", clean($review->fields['tilt']));
     do_textarea_row('Introduction', 'intro', stripslashes($review->fields['intro']));
     do_textarea_row('Full Text', 'text', stripslashes($review->fields['text']));
     do_submit_row();
     echo '<input type="hidden" name="do" value="edit_review_confirm">';
     echo '<input type="hidden" name="id" value="' . $review->fields['id'] . '">';
     do_table_footer();
     echo '</form>';
 }
 function editAnnouncementForm()
 {
     global $db;
     $result = $db->Execute("SELECT * FROM `Obsedb_announcements` WHERE `id` = '{$_REQUEST['id']}'");
     do_form_header('index2.php');
     do_table_header('Edit Announcement');
     do_text_row($this->phrase['username'], 'user', $result->fields['user']);
     do_text_row($this->phrase['title'], 'title', stripslashes($result->fields['title']));
     do_textarea_row($this->phrase['message'], 'text', stripslashes($result->fields['text']));
     do_submit_row('Save Changes');
     do_table_footer();
     echo '<input type="hidden" name="do" value="edit_confirm">';
     echo '<input type="hidden" name="id" value="' . $_REQUEST[id] . '">';
     echo '</form>';
 }
function GenerateForm($target, $title, $do, $fieldarray, $hiddendata = '', $upload = 'false')
{
    // ==============================
    // Generate a form from an array
    // ==============================
    if ($upload == 'false') {
        do_form_header($target);
    } else {
        print '<form method="post" action="' . $target . '" enctype="multipart/form-data">';
    }
    do_table_header($title);
    foreach ($fieldarray as $key => $value) {
        switch ($value["type"]) {
            case 'text':
                do_text_row($value["title"], $value["name"], $value["value"]);
                break;
            case 'submit':
                do_submit_row($value["title"]);
                break;
            case 'textarea':
                do_table_footer();
                do_table_header($value["title"]);
                do_textarea_row('', $value["name"], $value["value"]);
                break;
            case 'select':
                do_select_row($value["title"], $value["name"], $value["value"], $value["selected"]);
                break;
            case 'spacer':
                do_table_footer();
                do_table_header($value["title"]);
                break;
            case 'file':
                print "<tr><td class=\"formlabel\" align=\"right\"><b>" . $value["title"] . "</b></td>";
                print "<td class=\"formlabel\"><input type=\"file\" name=\"" . $value["name"] . "\"></td></tr>";
                break;
            case 'blank':
                do_blank_row($value["title"]);
                break;
        }
    }
    do_table_footer();
    echo '<input type="hidden" name="do" value="' . $do . '">';
    if (!empty($hiddendata)) {
        foreach ($hiddendata as $key => $value) {
            echo "<input type=\"hidden\" name=\"{$key}\" value=\"{$value}\">";
        }
    }
}
Beispiel #4
0
    $record = array('title' => $_REQUEST['title']);
    $sql = $db->GetUpdateSQL($rs, $record);
    $db->Execute($sql);
    echo '<center>Changes have been saved, <a href="previews.php">click here to continue</a>.</center>';
}
if ($_REQUEST['do'] == 'add_section_confirm') {
    $db->Execute("INSERT INTO `Obsedb_previews_sections` (title) VALUES ('{$_REQUEST['title']}');");
    echo '<center>Section has been successfully created, <a href="previews.php">click here to continue</a>.</center>';
}
if ($_REQUEST['do'] == 'add_news') {
    do_form_header('previews.php');
    do_table_header('Post New Preview');
    do_text_row('Title', 'title');
    do_sections_row();
    do_textarea_row('Introduction', 'intro');
    do_textarea_row('Full Text', 'text');
    do_submit_row();
    echo '<input type="hidden" name="do" value="add_news_confirm">';
    do_table_footer();
    echo '</form>';
}
if ($_REQUEST['do'] == 'add_news_confirm') {
    $rs = $db->Execute("SELECT * FROM `Obsedb_previews` WHERE `id` = '-1'");
    $record = array('title' => $_REQUEST['title'], 'section' => $_REQUEST['section'], 'intro' => $_REQUEST['intro'], 'text' => $_REQUEST['text']);
    $sql = $db->GetInsertSQL($rs, $record);
    $db->Execute($sql);
    echo '<center>Preview has been successfully added, <a href="previews.php">click here to continue</a>.</center>';
}
if ($_REQUEST['do'] == 'manage_sections') {
    do_form_header('previews.php');
    do_table_header('Sections');
Beispiel #5
0
    do_table_footer();
    do_table_header('Page Content');
    do_textarea_row('', 'content');
    do_submit_row("Continue");
    do_table_footer();
    echo '<input type="hidden" name="do" value="add_page_confirm">';
    echo '</form>';
}
if ($_REQUEST['do'] == 'Edit Page') {
    $menuitem = $db->Execute("SELECT * FROM `Obsedb_pages` WHERE `id` = '{$_REQUEST['id']}'");
    do_form_header('pages.php');
    do_table_header('Edit Page');
    do_text_row('Page Title', 'title', clean($menuitem->fields['title']));
    do_table_footer();
    do_table_header('Page Content');
    do_textarea_row('', 'content', stripslashes($menuitem->fields['content']));
    do_submit_row('Continue');
    do_table_footer();
    echo '<input type="hidden" name="id" value="' . $menuitem->fields['id'] . '">';
    echo '<input type="hidden" name="do" value="edit_page_confirm">';
    echo '</form>';
}
if ($_REQUEST['do'] == 'add_page_confirm') {
    $rs = $db->Execute("SELECT * FROM `Obsedb_pages` WHERE `id` = '-1'");
    $record = array('title' => $_REQUEST['title'], 'content' => $_REQUEST['content']);
    $sql = $db->GetInsertSQL($rs, $record);
    $db->Execute($sql);
    echo '<center>Page has been successfully added, <a href="pages.php">click here to continue</a>.</center>';
}
if ($_REQUEST['do'] == 'edit_page_confirm') {
    $rs = $db->Execute("SELECT * FROM `Obsedb_pages` WHERE `id` = '{$_REQUEST['id']}'");
Beispiel #6
0
    do_table_footer();
    echo '</form>';
}
if ($_REQUEST['do'] == 'edit_mailbag_confirm') {
    $rs = $db->Execute("SELECT * FROM `Obsedb_mailbag` WHERE `id` = '{$_REQUEST['id']}'");
    $record = array('title' => $_REQUEST['title'], 'message' => $_REQUEST['message'], 'reply' => $_REQUEST['reply']);
    $sql = $db->GetUpdateSQL($rs, $record);
    $db->Execute($sql);
    SPMessage("Success | Changes have been saved.", "mailbag.php");
}
if ($_REQUEST['do'] == 'add_mailbag') {
    do_form_header('mailbag.php');
    do_table_header('Add Letter');
    do_text_row('Title', 'title');
    do_textarea_row('Message', 'message');
    do_textarea_row('Reply', 'reply');
    do_submit_row();
    echo '<input type="hidden" name="do" value="add_mailbag_confirm">';
    do_table_footer();
    echo '</form>';
}
if ($_REQUEST['do'] == 'add_mailbag_confirm') {
    $record = array('title' => $_REQUEST['title'], 'message' => $_REQUEST['message'], 'reply' => $_REQUEST['reply']);
    $db->AutoExecute('Obsedb_mailbag', $record, 'INSERT');
    SPMessage("Success | Letter has been added.", "mailbag.php");
}
if ($_REQUEST['do'] == 'Delete Letter') {
    $db->Execute("DELETE FROM `Obsedb_mailbag` WHERE `id` = '{$_REQUEST['id']}'");
    SPMessage("Success | Letter has been deleted.", "mailbag.php");
}
$cp->footer();