if (isset($_POST['selectevent'])) { $evntid = $_POST['eventname']; $edtevnt = getEventbyid($evntid); } if (isset($_POST['editevent'])) { $modified_by = $_SESSION['admin']; $eventname = htmlentities($_POST['eventname']); $event_category_id = htmlentities($_POST['eventcat']); $about = $san->cleanHTML($_POST['about']); $rules = $san->cleanHTML($_POST['rules']); $contacts = $san->cleanHTML($_POST['contacts']); $evntid = $san->cleanHTML($_POST['evntid']); $clink = $san->cleanHTML($_POST['clink']); $strtdate = date('Y-m-d H:i:s', strtotime(addslashes(htmlentities($_POST['strtdate'])) . ' ' . addslashes(htmlentities($_POST['strttime'])))); $enddate = date('Y-m-d H:i:s', strtotime($_POST['enddate'] . ' ' . $_POST['endtime'])); editEvent($evntid, $eventname, $event_category_id, $about, $rules, $contacts, $clink, $strtdate, $enddate, $modified_by); $editscs = "Event has been successfully updated in the database !"; } if (isset($_POST['deleteevent'])) { $evntid = $_POST['eventname']; $modified_by = $_SESSION['admin']; deleteevent($evntid, $modified_by); $dltdscs = "Event has been successfully deleted !"; } if (isset($_POST['addnews'])) { $content = $_POST['content']; $heading = $_POST['heading']; $link = $_POST['link']; $added_by = $_SESSION['admin']; $eventid = $_POST['event_id_news']; if ($heading && $content) {
<?php //require_once 'functions.php'; if (isset($_POST['addEvent'])) { addEvent($_POST); } elseif (isset($_POST['editEvent'])) { editEvent($_POST); } elseif (isset($_POST['addCoordinator'])) { addCoordinator($_POST); } ?> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <meta name="robots" content="noindex,nofollow"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>ADMIN | Renaissance 16</title> <link href='../assets/css/bootstrap.min.css' rel=stylesheet /> <link href='style.css' rel=stylesheet /> </head> <body> <br> <div class="container"> <!-- Nav tabs --> <ul class="nav nav-tabs" role="tablist"> <li role="presentation" class="active"><a href="#addEvent" aria-controls="addEvent" role="tab" data-toggle="tab">Add Event</a></li> <li role="presentation"><a href="#editEvent" aria-controls="editEvent" role="tab" data-toggle="tab">Edit Event</a></li> </ul>
printError("Failed to connect to database (" . $mysqli->connect_errno . ") " . $mysqli->connect_error); } else { array_push($statusArr, "Successfully connected to database"); } //Switch to handle request if ($requestMethod == "GET") { if (isset($_GET['action'])) { switch ($_GET['action']) { case 'loadEvents': loadEvents($mysqli); break; case 'deleteEvent': deleteEvent($mysqli); break; case 'editEvent': editEvent($mysqli); break; case 'getUserName': getUserName(); break; case 'newEvent': newEvent($mysqli); break; default: printError("Invalid Action Request"); break; } } } function loadEvents($db) {
include_once 'users.php'; $filename = $_FILES["image"]["name"]; if ($_FILES["image"]["type"] == "image/gif" || $_FILES["image"]["type"] == "image/jpeg" || $_FILES["image"]["type"] == "image/png" || $_FILES["image"]["type"] == "image/pjpeg") { if (file_exists($_FILES["image"]["name"])) { echo json_encode('File name exists'); return false; } else { move_uploaded_file($_FILES["image"]["tmp_name"], "../images/events/" . $filename); } } else { echo json_encode('Invalid file'); return false; } $title = $_POST['title']; $date = $_POST['date']; $description = $_POST['description']; $privacy = true; if ($_POST['Privacy'] == "Public") { $privacy = false; } else { $privacy = true; } $img = "images/events/" . $filename; $type = $_POST['Type']; $idUser = $_SESSION['user']; if (!checkAdminByID($idUser)) { echo json_encode('User is not admin'); return false; } editEvent($idUser, $_POST['event'], $title, $date, $description, $img, $type, $privacy); header("Location: ../mainpage.php?event=" . $_POST['event']);
<?php include_once 'events.php'; include_once 'read_edit_event.php'; editEvent($_POST['id'], $_POST['date'], $_POST['description'], $_POST['type'], $_FILES['image'], $_POST['old_image']); header('Location: ' . './show_event.php?id=' . $_POST['id']);
public function actionEventshead() { global $urlRequestRoot, $sourceFolder, $templateFolder, $cmsFolder, $moduleFolder; $moduleComponentId = $this->moduleComponentId; $userId = $this->userId; require_once "{$sourceFolder}/{$moduleFolder}/events/events_common.php"; require_once "{$sourceFolder}/{$moduleFolder}/events/events_forms.php"; if (isset($_POST['type'])) { if ($_POST['type'] == 'add') { validateAddEventData($moduleComponentId); } else { if ($_POST['type'] == 'edit') { validateEditEventData($moduleComponentId); } else { if ($_POST['type'] == "notif") { $query = "INSERT INTO `events_notifications` VALUES (NULL, '{$_POST['content']}', CURRENT_TIMESTAMP);"; //echo NOW(); mysql_query($query); // header('Location: ./+eventsHead'); // } } } exit; } if (isset($_GET['subaction'])) { if ($_GET['subaction'] == "addEvent") { return addNewEvent(); } if ($_GET['subaction'] == "deleteEvent") { return deleteEvent($_POST['eventId'], $moduleComponentId); exit; } if ($_GET['subaction'] == "editEvent") { return editEvent($_GET['eventId'], $moduleComponentId); } if ($_GET['subaction'] == "notif") { //return ":LL"; return getEventsForm(); } } else { return selectEventsHeadSubaction($moduleComponentId); } }
if (password_verify($_POST["admin-password"], $admin["password"])) { if ($_POST["action"] == "delete") { $registrations = deleteEvent($event["event_id"]); foreach ($registrations as $registration) { // refund the charge if (!empty($registration["stripe_charge_id"])) { $refund = \Stripe\Refund::create(array("charge" => $registration["stripe_charge_id"])); } // unregister the user unregisterUser($registration["event_id"], $registration["user_id"]); } deleteEvent($event["event_id"], true); $_SESSION["deleted"] = $event["name"]; header("Location:/admin/events/"); } elseif ($_POST["action"] == "edit") { $edit = editEvent($event["event_id"], $_POST["name"], str_replace(array("\r\n", "\r", "\n"), "<br>", $_POST["description"]), $_POST["date"], $_POST["start-time"], $_POST["end-time"], $_POST["member-price"], $_POST["nonmember-price"], $_POST["max"]); var_dump($edit); $_SESSION["event-edited"] = true; header("Location:/admin/events/edit/" . $event["event_id"] . "/"); } } else { $_SESSION["incorrect-password"] = true; header("Location:/admin/events/edit/" . $event["event_id"] . "/"); } } else { ?> <html> <?php include ROOT_PATH . "inc/head.php"; ?> <body>
<?php include_once 'database/events.php'; include_once "database/upload.php"; if (isset($_POST['confirm_btn'])) { $priv = 0; if ($_POST['privacy'] == 'Private') { $priv = 1; } $image_path = uploadImage($_FILES['image'], 'resources/images/uploaded/'); if ($image_path == 'no_file') { editEventNoImage($_POST['id'], $_POST['date'], $_POST['desc'], $_POST['type'], $priv); } else { if ($image_path != 'error') { echo '<p> Final path: ' . $image_path; editEvent($_POST['id'], $_POST['date'], $_POST['desc'], $_POST['type'], $image_path, $priv); } } } header('Location: ' . $_COOKIE['redirect']);
<?php if (session_status() == PHP_SESSION_NONE) { session_start(); } include_once $_SERVER['DOCUMENT_ROOT'] . '/common-code/db.php'; if (isset($_POST['type']) && $_POST['type'] == 'add') { addEvent(); } if (isset($_POST['type']) && $_POST['type'] == 'delete') { deleteEvent(); } if (isset($_POST['type']) && $_POST['type'] == 'edit') { editEvent(); } function addEvent() { $conn = dbConnect(); $filePath = ''; $eventTime = ''; $event_name = ''; $category = ''; $about = ''; $desc = ''; $prize1 = ''; $prize2 = ''; $contact1 = ''; $contact2 = ''; $link = ''; $rules = array(); if (isset($_POST['event_name'])) {
function handlePostRequest($type, $eventid) { $data = json_decode(file_get_contents('php://input')); $write = array(); if (lockDatabase() !== FALSE) { if ($type != 'addroute') { $loggedIn = logIn($data); } else { // don't need to log in to add a route $loggedIn = TRUE; } if ($loggedIn) { //rg2log($type); switch ($type) { case 'addroute': $write = addNewRoute($eventid, $data); @unlink(CACHE_DIRECTORY . "results_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "tracks_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "stats.json"); break; case 'addmap': $write = addNewMap($data); break; case 'createevent': $write = addNewEvent($data); @unlink(CACHE_DIRECTORY . "events.json"); @unlink(CACHE_DIRECTORY . "stats.json"); break; case 'editevent': $write = editEvent($eventid, $data); @unlink(CACHE_DIRECTORY . "events.json"); @unlink(CACHE_DIRECTORY . "stats.json"); break; case 'deleteevent': $write = deleteEvent($eventid); @unlink(CACHE_DIRECTORY . "events.json"); @unlink(CACHE_DIRECTORY . "results_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "courses_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "tracks_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "stats.json"); break; case 'deleteroute': $write = deleteRoute($eventid); @unlink(CACHE_DIRECTORY . "results_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "tracks_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "stats.json"); break; case 'deletecourse': $write = deleteCourse($eventid); @unlink(CACHE_DIRECTORY . "results_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "courses_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "tracks_" . $eventid . ".json"); @unlink(CACHE_DIRECTORY . "stats.json"); break; case 'login': // handled by default before we got here $write["ok"] = TRUE; $write["status_msg"] = "Login successful"; break; default: rg2log("Post request not recognised: " . $type); $write["status_msg"] = "Request not recognised: " . $type; $write["ok"] = FALSE; break; } } else { $write["ok"] = FALSE; $write["status_msg"] = "Incorrect user name or password"; } unlockDatabase(); } else { $write["status_msg"] = "File lock error"; $write["ok"] = FALSE; } $keksi = generateNewKeksi(); $write["keksi"] = $keksi; header("Content-type: application/json"); $write["version"] = RG2VERSION; echo json_encode($write); }
<? include_once('../database/eventFunc.php'); $antigoNome = $_POST['antigoNome']; $name = $_POST['name']; $date = $_POST['date']; $timeH = $_POST['timeH']; $type = $_POST['type']; $local = $_POST['local']; $description = $_POST['description']; $privateEvent = $_POST['privateEvent']; $image = $_POST['image']; $idEvent = getEventId($antigoNome); try { $event = editEvent($idEvent,$name, $date, $timeH, $type, $description, $local, $privateEvent, $image); if ($event === false){ echo "fail"; } else if ($event === true){ echo "success"; } } catch (PDOException $e) { die($e->getMessage()); } ?>
<?php require_once 'conn.php'; function editEvent($dbh, $eventArr) { $sql = "UPDATE `events` SET " . "title=:title, " . "description=:description, " . "pub_date=:pub_date, " . "event_date=:event_date " . "WHERE id=:id"; try { $sth = $dbh->prepare($sql); $sth->execute($eventArr); echo "event updated!"; } catch (PDOException $e) { echo "<p> update failed: " . $e->getMessage() . "</p>"; } $dbh = null; } $pData = $_POST['data']; $pArr = array(); foreach ($pData as $k => $v) { $pArr[':' . $k] = $v; } echo editEvent($dbh, $pArr);
$monthName = $dateObj->format('F'); // March $required = array("name", "month", "day", "year", "hour", "minute", "period", "location", "description"); if (!checkdate($month, $day, $year)) { array_push($errors, $monthName . " " . $day . ", " . $year . " is an invalid date."); } foreach ($required as $require) { $value = trim($_POST[$require]); if (!has_value($value)) { $errors[$require] = ucfirst($require) . " can't be blank."; } } $max_lengths = array("name" => 40, "location" => 50); max_length($max_lengths); if (empty($errors)) { $uploadEvent = editEvent($savedId, $name, $month, $day, $year, $hour, $minute, $AMPM, $imagesrc, $location, $desc); $message = $uploadEvent; } } ?> <!doctype html> <html> <head> <meta charset="UTF-8"> <title>EDFC | Admin - Edit an Event</title> <link rel="stylesheet" href="../../css/normalize.css"/> <link rel="stylesheet" href="../../css/foundation.css" /> <link href='https://fonts.googleapis.com/css?family=Montserrat:400,700' rel='stylesheet' type='text/css'> <link rel="stylesheet" href="../css/main.css"/> </head> <body>