include_once '../classes/permissions.php'; $id = mysql_real_escape_string($_GET['id']); if (!empty($_POST)) { $id = mysql_real_escape_string($_POST['id']); } // check if uid is in the requesting url if ($id == "") { ErrorDisplay1($config["invalid_request"]); die; } //check permissions again ///////////////////////// $usercheck = new LoadPermissions('', $id, 'image_album'); //($user_id, $content_id, $content_type); $usercheck->CheckPermissions(); $usercheck->ActionsCheck('edit'); //Can be ( edit, delete, both ) this returns error and dies if user does not have permissions // Some basic presets $show_notification = 0; /////////////////////// //update mysql database /////////////////////// if ($_POST["submitted"] == "yes") { //get form post (no mysql_real_escapE) so that it can be checked for full completion $title = $_POST["title"]; $description = $_POST["description"]; $tags = $_POST["tags"]; //check if form filled in fully //////////////////////////////// if ($title == "" || $description == "" || $tags == "") { //error notification
managegroups($contentid,'delete'); break; */ //group comments case 18: $usercheck = new LoadPermissions('', $contentid, 'group_comments'); $usercheck->CheckPermissions(); $usercheck->ActionsCheck('delete'); manage_flagged_comments($contentid, 'delete', 'group_comments'); break; //Video comments //Video comments case 19: $usercheck = new LoadPermissions('', $contentid, 'video_comments'); $usercheck->CheckPermissions(); $usercheck->ActionsCheck('delete'); manage_flagged_comments($contentid, 'delete', 'videocomments'); break; } //display notification if (@mysql_error()) { $show_notification = 1; $message = $config["error_26"]; //error } else { $show_notification = 1; $message = $config["error_25"]; //success } } ////////////////////////////////