Ejemplo n.º 1
0
<?php

session_start();
require_once '../../inc/model/sessions.php';
require_once '../../inc/model/classes.php';
require_once '../../inc/model/functions.php';
require_once '../../inc/model/validation_func.php';
main\confirm_login();
main\find_selected_page();
if (isset($_POST["submit"])) {
    $username = main\mysql_prep($_POST["username"]);
    $password = main\password_encrypt($_POST["password"]);
    validation\no_null($username);
    $query = "INSERT INTO admins\n              (username, hashed_password)\n              VALUES\n              ( '{$username}', '{$password}' )\n             ";
    $result = $db->query($query);
    if ($result) {
        ?>
<p class="alert alert-success"><?php 
        $_SESSION["message"] = "Success!";
        ?>
</p><?php 
        main\redirect_to("../manage_content.php");
    } else {
        $_SESSION["message"] = "Fail!";
        main\redirect_to("new_admin.php");
    }
} else {
}
include '../../inc/views/layouts/header.php';
main\menu($selected_subject_id, $selected_page_id);
//include('../../inc/views/layouts/admin_header.php');
Ejemplo n.º 2
0
}
?>

<?php 
if (isset($_POST['submit'])) {
    // validations
    $required_fields = array("menu_name", "position", "visible");
    validation\validate_presences($required_fields);
    $fields_with_max_lengths = array("menu_name" => 30);
    validation\validate_max_lengths($fields_with_max_lengths);
    if ($_POST["menu_name"] == "") {
        $_SESSION["message"] = "You must enter a menu name";
        main\redirect_to("../../index.php");
    }
    $id = $current_subject["id"];
    $menu_name = main\mysql_prep($_POST["menu_name"]);
    $position = (int) $_POST["position"];
    $visible = (int) $_POST["visible"];
    $query = "UPDATE subjects SET \n                   menu_name = '{$menu_name}', \n                   position = {$position}, \n                   visible = {$visible} \n                   WHERE id = {$id} \n                   LIMIT 1";
    $result = $db->query($query);
    if ($result && mysqli_affected_rows($db) == 1) {
        // Success
        $_SESSION["message"] = "Subject updated.";
        main\redirect_to("../manage_content.php");
    } else {
        // Failure
        $message = "Subject update failed.";
    }
} else {
    // This is probably a GET request
}
Ejemplo n.º 3
0
<?php

session_start();
require_once '../../inc/model/sessions.php';
require_once '../../inc/model/classes.php';
require_once '../../inc/model/functions.php';
require_once '../../inc/model/validation_func.php';
main\confirm_login();
main\find_selected_page();
if (isset($_POST["submit"])) {
    $username = main\mysql_prep($_POST["username"]);
    $password = main\mysql_prep($_POST["password"]);
    $hash = main\find_all_admins();
    validation\no_null($username);
    $query = "DELETE FROM admins\n              WHERE username = '******'\n              LIMIT 1";
    $result = $db->query($query);
    if ($result) {
        $_SESSION["message"] = "Success!";
        main\redirect_to("../manage_content.php");
    } else {
        $_SESSION["message"] = "Fail!";
        main\redirect_to("delete_admin.php");
    }
} else {
}
include '../../inc/views/layouts/header.php';
main\menu($selected_subject_id, $selected_page_id);
//include('../../inc/views/layouts/admin_header.php');
?>
<div class="wrapper">
    <section class="content">
Ejemplo n.º 4
0
$errors = array();
if (!$current_page) {
    main\redirect_to('../manage_content.php');
}
?>

<?php 
if (isset($_POST['submit'])) {
    // validations
    $required_fields = array("menu_name", "position", "visible", "content");
    validation\validate_presences($required_fields);
    $fields_with_max_lengths = array("menu_name" => 30);
    validation\validate_max_lengths($fields_with_max_lengths);
    $id = $current_page["id"];
    $menu_name = main\mysql_prep($_POST["menu_name"]);
    $content = main\mysql_prep($_POST["content"]);
    $position = (int) $_POST["position"];
    $visible = (int) $_POST["visible"];
    $query = "UPDATE pages SET \n                   menu_name = '{$menu_name}',\n                   content = '{$content}',\n                   position = {$position}, \n                   visible = {$visible} \n                   WHERE id = {$id} \n                   LIMIT 1";
    $result = $db->query($query);
    if ($result && mysqli_affected_rows($db) == 1) {
        // Success
        $_SESSION["message"] = "Page updated.";
        main\redirect_to("../manage_content.php");
    } else {
        // Failure
        $message = "Page update failed.";
    }
} else {
    // This is probably a GET request
}