function editReview() { global $db; $sections = FetchSections('Obsedb_reviews_sections'); $review = $db->Execute("SELECT * FROM `Obsedb_reviews` WHERE `id` = '{$_REQUEST['id']}';"); do_form_header('reviews.php'); do_table_header('Post New Review'); do_text_row('Title', 'title', clean($review->fields['title'])); do_select_row('Section', 'section', $sections, $review->fields['section']); $this->do_Mod_select_row($review->fields['Modid']); do_text_row("Modplay", "Modplay", clean($review->fields['Modplay'])); do_text_row("Graphics", "graphics", clean($review->fields['graphics'])); do_text_row("Sound", "sound", clean($review->fields['sound'])); do_text_row("Value", "value", clean($review->fields['value'])); do_text_row("Tilt", "tilt", clean($review->fields['tilt'])); do_textarea_row('Introduction', 'intro', stripslashes($review->fields['intro'])); do_textarea_row('Full Text', 'text', stripslashes($review->fields['text'])); do_submit_row(); echo '<input type="hidden" name="do" value="edit_review_confirm">'; echo '<input type="hidden" name="id" value="' . $review->fields['id'] . '">'; do_table_footer(); echo '</form>'; }
function editAnnouncementForm() { global $db; $result = $db->Execute("SELECT * FROM `Obsedb_announcements` WHERE `id` = '{$_REQUEST['id']}'"); do_form_header('index2.php'); do_table_header('Edit Announcement'); do_text_row($this->phrase['username'], 'user', $result->fields['user']); do_text_row($this->phrase['title'], 'title', stripslashes($result->fields['title'])); do_textarea_row($this->phrase['message'], 'text', stripslashes($result->fields['text'])); do_submit_row('Save Changes'); do_table_footer(); echo '<input type="hidden" name="do" value="edit_confirm">'; echo '<input type="hidden" name="id" value="' . $_REQUEST[id] . '">'; echo '</form>'; }
function GenerateForm($target, $title, $do, $fieldarray, $hiddendata = '', $upload = 'false') { // ============================== // Generate a form from an array // ============================== if ($upload == 'false') { do_form_header($target); } else { print '<form method="post" action="' . $target . '" enctype="multipart/form-data">'; } do_table_header($title); foreach ($fieldarray as $key => $value) { switch ($value["type"]) { case 'text': do_text_row($value["title"], $value["name"], $value["value"]); break; case 'submit': do_submit_row($value["title"]); break; case 'textarea': do_table_footer(); do_table_header($value["title"]); do_textarea_row('', $value["name"], $value["value"]); break; case 'select': do_select_row($value["title"], $value["name"], $value["value"], $value["selected"]); break; case 'spacer': do_table_footer(); do_table_header($value["title"]); break; case 'file': print "<tr><td class=\"formlabel\" align=\"right\"><b>" . $value["title"] . "</b></td>"; print "<td class=\"formlabel\"><input type=\"file\" name=\"" . $value["name"] . "\"></td></tr>"; break; case 'blank': do_blank_row($value["title"]); break; } } do_table_footer(); echo '<input type="hidden" name="do" value="' . $do . '">'; if (!empty($hiddendata)) { foreach ($hiddendata as $key => $value) { echo "<input type=\"hidden\" name=\"{$key}\" value=\"{$value}\">"; } } }
$record = array('title' => $_REQUEST['title']); $sql = $db->GetUpdateSQL($rs, $record); $db->Execute($sql); echo '<center>Changes have been saved, <a href="previews.php">click here to continue</a>.</center>'; } if ($_REQUEST['do'] == 'add_section_confirm') { $db->Execute("INSERT INTO `Obsedb_previews_sections` (title) VALUES ('{$_REQUEST['title']}');"); echo '<center>Section has been successfully created, <a href="previews.php">click here to continue</a>.</center>'; } if ($_REQUEST['do'] == 'add_news') { do_form_header('previews.php'); do_table_header('Post New Preview'); do_text_row('Title', 'title'); do_sections_row(); do_textarea_row('Introduction', 'intro'); do_textarea_row('Full Text', 'text'); do_submit_row(); echo '<input type="hidden" name="do" value="add_news_confirm">'; do_table_footer(); echo '</form>'; } if ($_REQUEST['do'] == 'add_news_confirm') { $rs = $db->Execute("SELECT * FROM `Obsedb_previews` WHERE `id` = '-1'"); $record = array('title' => $_REQUEST['title'], 'section' => $_REQUEST['section'], 'intro' => $_REQUEST['intro'], 'text' => $_REQUEST['text']); $sql = $db->GetInsertSQL($rs, $record); $db->Execute($sql); echo '<center>Preview has been successfully added, <a href="previews.php">click here to continue</a>.</center>'; } if ($_REQUEST['do'] == 'manage_sections') { do_form_header('previews.php'); do_table_header('Sections');
do_table_footer(); do_table_header('Page Content'); do_textarea_row('', 'content'); do_submit_row("Continue"); do_table_footer(); echo '<input type="hidden" name="do" value="add_page_confirm">'; echo '</form>'; } if ($_REQUEST['do'] == 'Edit Page') { $menuitem = $db->Execute("SELECT * FROM `Obsedb_pages` WHERE `id` = '{$_REQUEST['id']}'"); do_form_header('pages.php'); do_table_header('Edit Page'); do_text_row('Page Title', 'title', clean($menuitem->fields['title'])); do_table_footer(); do_table_header('Page Content'); do_textarea_row('', 'content', stripslashes($menuitem->fields['content'])); do_submit_row('Continue'); do_table_footer(); echo '<input type="hidden" name="id" value="' . $menuitem->fields['id'] . '">'; echo '<input type="hidden" name="do" value="edit_page_confirm">'; echo '</form>'; } if ($_REQUEST['do'] == 'add_page_confirm') { $rs = $db->Execute("SELECT * FROM `Obsedb_pages` WHERE `id` = '-1'"); $record = array('title' => $_REQUEST['title'], 'content' => $_REQUEST['content']); $sql = $db->GetInsertSQL($rs, $record); $db->Execute($sql); echo '<center>Page has been successfully added, <a href="pages.php">click here to continue</a>.</center>'; } if ($_REQUEST['do'] == 'edit_page_confirm') { $rs = $db->Execute("SELECT * FROM `Obsedb_pages` WHERE `id` = '{$_REQUEST['id']}'");
do_table_footer(); echo '</form>'; } if ($_REQUEST['do'] == 'edit_mailbag_confirm') { $rs = $db->Execute("SELECT * FROM `Obsedb_mailbag` WHERE `id` = '{$_REQUEST['id']}'"); $record = array('title' => $_REQUEST['title'], 'message' => $_REQUEST['message'], 'reply' => $_REQUEST['reply']); $sql = $db->GetUpdateSQL($rs, $record); $db->Execute($sql); SPMessage("Success | Changes have been saved.", "mailbag.php"); } if ($_REQUEST['do'] == 'add_mailbag') { do_form_header('mailbag.php'); do_table_header('Add Letter'); do_text_row('Title', 'title'); do_textarea_row('Message', 'message'); do_textarea_row('Reply', 'reply'); do_submit_row(); echo '<input type="hidden" name="do" value="add_mailbag_confirm">'; do_table_footer(); echo '</form>'; } if ($_REQUEST['do'] == 'add_mailbag_confirm') { $record = array('title' => $_REQUEST['title'], 'message' => $_REQUEST['message'], 'reply' => $_REQUEST['reply']); $db->AutoExecute('Obsedb_mailbag', $record, 'INSERT'); SPMessage("Success | Letter has been added.", "mailbag.php"); } if ($_REQUEST['do'] == 'Delete Letter') { $db->Execute("DELETE FROM `Obsedb_mailbag` WHERE `id` = '{$_REQUEST['id']}'"); SPMessage("Success | Letter has been deleted.", "mailbag.php"); } $cp->footer();