</div>'; break; /** EDIT REVIEW */ /** EDIT REVIEW */ case 'edit': if (!ab_to(array('reviews' => 'edit'))) { die; } $csrf = \site\utils::str_random(10); echo '<div class="title"> <h2>' . $LANG['reviews_edit_title'] . '</h2> <div style="float:right; margin: 0 2px 0 0;">'; if (isset($_GET['id']) && ($review_exists = \query\main::review_exists($_GET['id']))) { $info = \query\main::review_infos($_GET['id']); $ab_edt = ab_to(array('pages' => 'edit')); $ab_del = ab_to(array('pages' => 'delete')); if ($ab_edt || $ab_del) { echo '<div class="options"> <a href="#" class="btn">' . $LANG['options'] . '</a> <ul>'; if ($ab_del) { echo '<li><a href="?route=reviews.php&action=delete&id=' . $_GET['id'] . '&token=' . $csrf . '" data-delete-msg="' . $LANG['delete_msg'] . '">' . $LANG['delete'] . '</a></li>'; } if ($info->valid) { if ($ab_edt) { echo '<li><a href="?route=reviews.php&action=list&type=unpublish&id=' . $_GET['id'] . '&token=' . $csrf . '">' . $LANG['unpublish'] . '</a></li>'; } } else {