function edit($id, $name, $kuerzel, $head, $foot) { $this->DBG->enter_method(); if (empty($this->conn)) { error(0); } $name = clean_in($name); if (strlen($name) < $this->min_name_len) { $this->error_msg = "Name zu kurz"; if (is_object($this->DBG)) { $this->DBG->leave_method($this->error_msg); } return false; // normal exit, name too short } // check if kuerzel exists $kuerzel = clean_in($kuerzel); if ($this->kuerzel_exists($kuerzel, $id) == true) { return false; } if ($this->getty("name", $id) == false) { $this->error_msg = "ID existiert nicht und kann nicht ge?ndert werden."; $this->DBG->leave_method($this->error_msg); return false; // normal exit, name too short } // update $sql = "UPDATE " . $this->prefix . "press_sites SET name='" . clean_in($name) . "', kuerzel='" . clean_in($kuerzel) . "'" . ", head='" . clean_in($head) . "', foot='" . clean_in($foot) . "'" . " WHERE id={$id}"; if (is_object($this->DBG)) { $this->DBG->sql($sql); } $ret = $this->conn->update($sql); if (is_object($this->DBG)) { $this->DBG->watch_var("ret", $ret); } if (is_object($this->DBG)) { $this->DBG->leave_method($ret); } return $ret; }
$send = init("send", "r", FALSE); $fulltext = init("fulltext", "r", FALSE); $range = init("range", "r", "after"); $date = init("date", "r", strftime("%d.%m.%Y", time() - 3600 * 24 * 7)); $sites = init("sites", "r", FALSE); // init $join = ""; $where = ""; // sollte man mal umstrukturieren.. if ($send) { // Volltext if (!empty($fulltext)) { if (!empty($where)) { $where .= " AND "; } $where .= " (e.title LIKE '%" . clean_in($fulltext) . "%' OR k.keyword LIKE '%" . clean_in($fulltext) . "%') "; $join .= " LEFT JOIN press_ke_rel AS kerel ON kerel.eid=e.id " . "LEFT JOIN press_keywords AS k ON kerel.kid=k.id "; } // Datumsfunktion $d = set_date($date); switch ($range) { default: case 'all': break; case 'before': if (!empty($where)) { $where .= " AND "; } $where .= " (date <= '" . $d . "')"; break; case 'after':
function check_session($id, $session) { $this->DBG->enter_method(); $sql = "SELECT id,session FROM " . $this->_prefix . "press_user WHERE id='" . clean_in($id) . "'"; $ret = $this->SQL->select($sql); $ret = $ret[0]; $this->DBG->watch_var($sql, $ret); if ($ret['session'] == $session) { $ret = true; } else { $ret = false; } $this->DBG->leave_method($ret); return $ret; }