}
if (ACCESS < ACCESS_HOST) {
redirect(BASEDIR);
}
switch ($_GET["action"]) {
case "fetchfile":
fetchFile($_GET["which"]);
break;
case "delfile":
deleteFile($_GET["which"]);
break;
case "fetchpack":
fetchPack($_GET["which"]);
break;
case "delpack":
deletePack($_GET["which"]);
break;
}
function processUpload()
{
global $mysqli;
$compo = intval($_POST["compo"]);
if (isset($_POST["token"]) && $_POST["token"] > 0) {
// Remove upload token
$stmt = $mysqli->prepare('DELETE FROM `uploading` WHERE
`idupload` = ? AND
`author` = ? AND
`idcompo` = ?
') or die('query failed');
$stmt->bind_param('isi', intval($_POST["token"]), $_POST["author"], $compo);
$stmt->execute() or die('query failed');
function deleteCompo($compo, $doRedirect = TRUE)
{
global $mysqli;
$compo = intval($compo);
$result = $mysqli->query("SELECT * FROM `compos` WHERE `idcompo` = {$compo}") or die('query failed');
$row = $result->fetch_assoc();
$result->free();
if (!canDeleteCompo($row)) {
redirect(BASEDIR);
}
require_once 'php/file.php';
deletePack($compo, FALSE);
$mysqli->query("DELETE FROM `compos` WHERE `idcompo` = {$compo}") or die('query failed');
if ($doRedirect) {
redirect(BASEDIR . "admin/compo");
}
}
