<?php
require_once '../includes/initialize.php';
?>
<?php
confirm_logged_in();
if (is_chauffeur()) {
redirect_to('admin.php');
}
?>
<?php
$admin_set = find_all_admins();
?>
<?php
$layout_context = "admin";
$active_menu = "admin";
$stylesheets = "custom_form";
$javascript = "form_admin";
include "../includes/layouts/header_2.php";
include "../includes/layouts/nav.php";
?>
<div class="row">
<?php
echo message();
?>
<?php
include "index.php";
confirm_logged_in();
?>
<link rel="stylesheet" type="text/css" href="stylesheets/logon.css">
<?php
// CUSTOMIZE THIS
if (isset($_POST['submit'])) {
// User has submitted a form.
$admins = find_all_admins();
$required_fields = array("username", "password");
validate_presences($required_fields);
if (empty($errors)) {
$username = mysql_prep($_POST["username"]);
$hashed_password = password_encrypt($_POST["password"]);
$query = "INSERT INTO admins (";
$query .= " username, hashed_password";
$query .= ") VALUES (";
$query .= " '{$username}', '{$hashed_password}'";
$query .= ")";
$result = mysqli_query($connection, $query);
if ($result) {
// Success
$_SESSION["message"] = "Admin created.";
redirect_to("events.php");
} else {
// Failure
$_SESSION["message"] = "Admin failed to create.";
redirect_to("events.php");
function list_admins()
{
$output = "<table><tr><th>Username</th><th>Actions</th></tr>";
$admin_set = find_all_admins();
while ($admin = mysqli_fetch_assoc($admin_set)) {
$output .= "<tr>";
$output .= "<td>";
$output .= "{$admin["username"]}";
$output .= "</td>";
$output .= "<td>";
$output .= "<a href=\"edit_admin.php?admin_id={$admin["id"]}\">Edit</a> ";
$output .= "<a href=\"delete_admin.php?admin_id={$admin["id"]}\">Delete</a>";
$output .= "</td>";
$output .= "</tr>";
}
$output .= "</table >";
mysqli_free_result($admin_set);
return $output;
}
