<?php session_start(); ob_start(); include "./common.php"; $error = ''; $action_name = 'add'; $action_value = _('Add'); Admin::checkAuth(); Admin::checkAccess(AdminAccess::ACCESS_VIEW); foreach (@$_POST as $key => $value) { $_POST[$key] = trim($value); } $id = @intval($_GET['id']); $playlist = new Playlist(); $item = $playlist->getById($_GET['playlist_id']); if (empty($item)) { echo 'wtf?'; exit; } $time = 0; if (!empty($_POST)) { $time = intval($_POST['hh']) * 60 + intval($_POST['mm']); } if (@$_POST['add']) { Admin::checkAccess(AdminAccess::ACCESS_CREATE); $playlist->addRecord(array('time' => $time, 'video_id' => $_POST['video_id'], 'playlist_id' => $_GET['playlist_id'])); header("Location: playlist.php?playlist_id=" . @$_GET['playlist_id']); exit; } if (!empty($id)) {
$id = @intval($_GET['id']); if (!empty($id)) { if (@$_POST['edit']) { Admin::checkAccess(AdminAccess::ACCESS_EDIT); $playlist->set(array('name' => $_POST['name'], 'group_id' => $_POST['group_id']), $_GET['id']); header("Location: playlists.php"); } elseif (@$_GET['del']) { Admin::checkAccess(AdminAccess::ACCESS_DELETE); $playlist->del($id); header("Location: playlists.php"); } } if (@$_GET['edit'] && !empty($id)) { $action_name = 'edit'; $action_value = _('Save'); $edit_playlist = $playlist->getById($id); } $playlists = $playlist->getAll(); $debug = '<!--' . ob_get_contents() . '-->'; ob_clean(); echo $debug; ?> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <style type="text/css"> body { font-family: Arial, Helvetica, sans-serif; font-weight: bold; }