<?php
require_once 'includes/common.php';
use libAllure\Sanitizer;
try {
$id = Sanitizer::getInstance()->filterUint('id');
$f = new FormEventUpdate($id);
} catch (Exception $e) {
$tpl->error('Event not found.');
}
if ($f->validate()) {
$f->process();
logAndRedirect('listEvents.php', 'Event updated: ' . $f->getElementValue('name'));
}
require_once 'includes/widgets/header.php';
require_once 'includes/widgets/sidebar.php';
$tpl->displayForm($f);
require_once 'includes/widgets/footer.php';
logAndRedirect('news.php', 'News item updated: ' . $f->getElementValue('id'));
}
require_once 'includes/widgets/header.php';
require_once 'includes/widgets/sidebar.php';
$tpl->displayForm($f);
break;
case 'delete':
if (!Session::hasPriv('NEWS_DELETE')) {
throw new PermissionException();
}
$id = intval($_REQUEST['id']);
$sql = 'DELETE FROM news WHERE id = :id ';
$stmt = $db->prepare($sql);
$stmt->bindValue(':id', $id);
$stmt->execute();
logAndRedirect('news.php', 'News deleted: ' . $id);
break;
default:
require_once 'includes/widgets/header.php';
require_once 'includes/widgets/sidebar.php';
$news = new News();
$news->setCount(10);
while ($article = $news->getNext()) {
startBox();
echo '<p><span class = "subtle">Posted on ' . formatDt(new DateTime($article['date'])) . ' by <a href = "profile.php?id=' . $article['author'] . '">' . $article['username'] . '</a>.</span></p>';
echo htmlify($article['content']);
if (Session::hasPriv('NEWS_DELETE')) {
echo '<dl class = "subtle">';
echo '<dt><a href = "news.php?action=delete&id=' . $article['id'] . '">Delete</a></dt>';
echo '<dt><a href = "news.php?action=edit&id=' . $article['id'] . '">Edit</a></dt>';
echo '</dl>';
require_once 'includes/widgets/header.php';
echo '<div class = "box">';
echo getContent('bacs');
echo '</div>';
echo '<div class = "box">When you have done this, please <a href = "checkout.php?action=bacsComplete">click here to Confirm BACS payment</a></div>';
require_once 'includes/widgets/footer.php';
break;
case 'bacsComplete':
foreach (Basket::getContents() as $ticket) {
Events::setSignupStatus(Session::getUser()->getId(), $ticket['eventId'], 'BACS_WAITING');
}
Basket::clear();
redirect('account.php', 'Thanks, you will be marked as PAID by an admin when they receive the transfer.');
break;
case 'paypalFail':
logAndRedirect('account.php', 'Paypal transaction failed.');
break;
case 'paypalComplete':
logActivity('Started processing PayPal payment notification');
foreach (Basket::getContents() as $ticket) {
logActivity('PayPal transaction processing - setting status to PAID for event. Ticket owner _u_, event _e_', $ticket['userId'], array('event' => $ticket['eventId'], 'user' => Session::getUser()->getId()));
Events::setSignupStatus($ticket['userId'], $ticket['eventId'], 'PAID');
}
logActivity('Finished processing PayPal payment notification.');
Basket::clear();
redirect('account.php', 'Thanks, payment complete!');
break;
default:
require_once 'includes/widgets/header.php';
require_once 'includes/widgets/sidebar.php';
startBox();
