function getRequestList($status) { //THIS FUNCTION IS FOR PENDING, ACTIVE, CLOSED, OR ARCHIVED PRAYER REQUESTS global $wpdb; switch ($status) { case "pending": $querycond = "WHERE active=0 AND closed=0"; break; case "active": $querycond = "WHERE active=1"; break; case "closed": $querycond = "WHERE active=2"; break; case "archived": $querycond = "WHERE active=3"; break; } $requests = $wpdb->get_results("SELECT id,first_name,last_name,email,title,body,ip_address,submitted FROM " . $wpdb->prefix . "pb_requests {$querycond} ORDER BY submitted DESC"); // return "SELECT id,first_name,last_name,email,title,body,ip_address,submitted FROM ".$wpdb->prefix."pb_requests $querycond ORDER BY submitted DESC"; // print_r($requests); $output = ""; /* foreach($requests as $req){ $output.="<p>".$req->id."</p>"; } return $output; exit; */ if ($requests) { foreach ($requests as $req) { $req_id = $req->id; $first_name = stripslashes($req->first_name); $last_name = stripslashes($req->last_name); $email = $req->email; $title = stripslashes($req->title); $body = prePgphOutput($req->body); $ip = $req->ip_address; $submitted = date("m-d-y", $req->submitted); $num_prayers = howManyPrayers($req_id); $output .= "<tr><td>{$req_id}</td><td>{$first_name} {$last_name}<br />{$email}</td><td><strong>{$title}</strong><br />{$body}</td><td>{$ip}</td><td>{$submitted}</td><td>{$num_prayers}</td><td>"; switch ($status) { case "pending": $output .= "<form method='post'><input type='hidden' name='action' value='approve_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_APPROVE . "' /></form>"; $output .= "<form method='post'><input type='hidden' name='action' value='edit_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_EDIT . "' /></form>"; $output .= "<form method='post'><input type='hidden' name='action' value='remove_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_DELETE . "' /></form>"; $output .= "<form method='post'><input type='hidden' name='action' value='remove_ban' /><input type='hidden' name='pb_ip_address' value='{$ip}' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_BAN . "' /></form>"; break; case "active": $output .= "<form method='post'><input type='hidden' name='action' value='remove_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_REMOVE . "' /></form>"; $output .= "<form method='post'><input type='hidden' name='action' value='close_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_CLOSE . "' /></form>"; $output .= "<form method='post'><input type='hidden' name='action' value='remove_ban' /><input type='hidden' name='pb_ip_address' value='{$ip}' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_BAN . "' /></form>"; break; case "closed": $output .= "<form method='post'><input type='hidden' name='action' value='remove_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_REMOVE . "' /></form>"; $output .= "<form method='post'><input type='hidden' name='action' value='reopen_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='" . PB_ADMIN_REOPEN . "' /></form>"; break; } $output .= "</td></tr>"; } } else { $output = "<tr><td colspan='7'>" . PB_ADMIN_CURRENTLY . " {$status} " . PB_ADMIN_PRAYER_REQ . ".</td></tr>"; } return $output; }
function pb_request_list_flagged_page() { global $wpdb; ?> <div class="wrap"> <h2 class="logo-title">PrayBox Flagged Prayer Requests</h2> <div id="pbx-wrap"> <?php if (isset($_POST['action']) && $_POST['action'] == "remove_request") { $req_id = $_POST['pb_request_id']; $wpdb->query("DELETE FROM " . $wpdb->prefix . "pb_requests WHERE id='{$req_id}'"); $wpdb->query("DELETE FROM " . $wpdb->prefix . "pb_flags WHERE request_id='{$req_id}'"); ?> <p><strong><?php _e('Request Removed.', 'menu-test'); ?> </strong></p> <?php } ?> <?php if (isset($_POST['action']) && $_POST['action'] == "clear_flags") { $req_id = $_POST['pb_request_id']; $wpdb->query("DELETE FROM " . $wpdb->prefix . "pb_flags WHERE request_id='{$req_id}'"); ?> <p><strong><?php _e('Flags Cleared.', 'menu-test'); ?> </strong></p> <?php } ?> <?php if (isset($_POST['action']) && $_POST['action'] == "remove_ban") { $req_id = $_POST['pb_request_id']; $ip = $_POST['pb_ip_address']; $time_now = time(); $wpdb->query("DELETE FROM " . $wpdb->prefix . "pb_requests WHERE id='{$req_id}'"); $wpdb->query("DELETE FROM " . $wpdb->prefix . "pb_flags WHERE request_id='{$req_id}'"); $wpdb->insert($wpdb->prefix . 'pb_banned_ips', array('ip_address' => $ip, 'banned_date' => $time_now, 'reason' => 'request flagged as inappropriate')); ?> <p><strong><?php _e('Request Removed and IP Address Banned.', 'menu-test'); ?> </strong></p> <?php } ?> <table class="pbx-data"> <tr><th>ID</th><th>First/Last/Email</th><th>Title</th><th width="300">Body</th><th>IP Address</th><th>Date Posted</th><th># Times Flagged</th><th> </th></tr> <?php $flags = $wpdb->get_results("SELECT request_id FROM " . $wpdb->prefix . "pb_flags GROUP BY request_id"); if ($flags) { foreach ($flags as $flag) { $req_id = $flag->request_id; $num_flags = howManyFlags($req_id); $request = $wpdb->get_row("SELECT first_name,last_name,email,title,body,ip_address,submitted FROM " . $wpdb->prefix . "pb_requests WHERE id='{$req_id}'"); $first_name = $request->first_name; $last_name = $request->last_name; $email = $request->email; $title = stripslashes($request->title); $body = prePgphOutput($request->body); $ip = $request->ip_address; $submitted = date("m-d-y", $request->submitted); echo "<tr><td>{$req_id}</td><td>{$first_name} {$last_name}<br />{$email}</td><td>{$title}</td><td>{$body}</td><td>{$ip}</td><td>{$submitted}</td><td>{$num_flags}</td><td align='center'>"; echo "<form method='post'><input type='hidden' name='action' value='remove_request' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='Remove' /></form>"; echo "<form method='post'><input type='hidden' name='action' value='clear_flags' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='submit' class='button-secondary' value='Clear Flags' /></form>"; echo "<form method='post'><input type='hidden' name='action' value='remove_ban' /><input type='hidden' name='pb_request_id' value='{$req_id}' /><input type='hidden' name='pb_ip_address' value='{$ip}' /><input type='submit' class='button-secondary' value='Remove/Ban' /></form>"; echo "</td></tr>"; } } else { echo "<tr><td colspan='8'>There are currently no flagged prayer requests.</td></tr>"; } ?> </table> </div> </div> <?php }
function display_pb_requests($atts) { global $wpdb; global $post; $page_id = $post->ID; $permalink = get_permalink($page_id); if (isset($_GET['req']) && is_numeric($_GET['req'])) { //VIEW DETAILS OUTPUT $req_id = $_GET['req']; $prayer_request = $wpdb->get_row("SELECT first_name,last_name,anon,title,body FROM " . $wpdb->prefix . "pb_requests WHERE id='{$req_id}'"); $first_name = stripslashes($prayer_request->first_name); $last_name = stripslashes($prayer_request->last_name); $anon = $prayer_request->anon; if ($prayer_request->title != "") { $title = stripslashes($prayer_request->title); } else { $title = "<em>" . PB_REQ_UNTITLED . "</em>"; } $body = prePgphOutput($prayer_request->body); if ($anon != 1) { $display_name = $first_name . " " . $last_name; } else { $display_name = "<em>" . PB_REQ_ANONYMOUS . "</em>"; } $view_details_output = "<div class='praybox_wrapper' rel='{$req_id}'>" . "<div class='pbx-link'><a href='{$permalink}'><< " . PB_LINK_BACK . "</a></div>" . "<h2 class='pbx-title'>{$title}</h2>" . "<div class='pbx-formfield'><label>" . PB_REQ_SUBMITTED_BY . ":</label> {$display_name}</div>" . "<div class='pbx-formfield'><label>" . PB_REQ_REQUEST . ":</label> {$body}</div>" . "<div class='pbx-formfield pbx-formfield-footer'>" . "<button type='button' class='flag-btn flag-abuse'>" . PB_FLAG_ABUSE . "</button>" . "<button type='button' class='flag-btn flag-prayed'>" . PB_FLAG_PRAYED . "</button>" . "</div>"; /* $view_details_output.="<div class='pbx-formfield'><form class='pbx-flag' method='post' action='$permalink'><input type='hidden' name='action' value='flag_this_request' /><input type='hidden' name='pb_request_id' value='$req_id' /><input type='submit' value='".PB_FLAG_ABUSE."' /></form>"; $view_details_output.="<form class='pbx-prayed' method='post' action='$permalink'><input type='hidden' name='action' value='prayed_for' /><input type='hidden' name='pb_request_id' value='$req_id' /><input type='submit' value='".PB_FLAG_PRAYED."' /></form></div>"; */ $view_details_output .= "</div>"; return $view_details_output; } elseif (isset($_POST['action']) && $_POST['action'] == "flag_this_request") { /* NOW IN AJAX //PRAYED FOR INSERT SCRIPT AND CONTENT $req_id=$_POST['pb_request_id']; $time_now=time(); $ip_address=$_SERVER['REMOTE_ADDR']; $wpdb->insert($wpdb->prefix.'pb_flags',array('request_id'=>$req_id,'flagged_date'=>$time_now,'ip_address'=>$ip_address)); $flag_msg=(isIPBanned($ip_address)=="pass")? PB_THANK_YOU_FLAGGER : PB_ILLEGAL_FLAGGER; $flag_action_output="<div id='praybox_wrapper'>"; $flag_action_output.="<div class='pbx-link'><a href='$permalink'><< ".PB_LINK_BACK."</a></div>"; $flag_action_output.="<p class='pbx-text'>$flag_msg</p>"; $flag_action_output.="</div>"; return $flag_action_output; */ } elseif (isset($_POST['action']) && $_POST['action'] == "prayed_for") { /* NOW IN AJAX //PRAYED FOR INSERT SCRIPT AND CONTENT $req_id=$_POST['pb_request_id']; $time_now=time(); $ip_address=$_SERVER['REMOTE_ADDR']; $wpdb->insert($wpdb->prefix.'pb_prayedfor',array('request_id'=>$req_id,'prayedfor_date'=>$time_now,'ip_address'=>$ip_address)); $view_details_output="<div id='praybox_wrapper'>"; $view_details_output.="<div class='pbx-link'><a href='$permalink'><< ".PB_LINK_BACK."</a></div>"; $view_details_output.="<p class='pbx-text'>".PB_THANK_YOU_PRAYER."</p>"; $view_details_output.="</div>"; return $view_details_output; */ } else { //REQUEST LIST OUTPUT CONTENT if (isset($_GET['page'])) { $page = $_GET['page']; } else { $page = 1; } return displayRequests($page, $permalink); } }