<?php
// include function files for this application
require_once 'book_sc_fns.php';
session_start();
do_html_header('Deleting book');
if (check_admin_user()) {
if (isset($HTTP_POST_VARS['isbn'])) {
$isbn = $HTTP_POST_VARS['isbn'];
if (delete_book($isbn)) {
echo 'Book ' . $isbn . ' was deleted.<br />';
} else {
echo 'Book ' . $isbn . ' could not be deleted.<br />';
}
} else {
echo 'We need an ISBN to delete a book. Please try again.<br />';
}
do_html_url('admin.php', 'Back to administration menu');
} else {
echo 'You are not authorised to view this page.';
}
do_html_footer();
<?php
$method = strtolower($_SERVER['REQUEST_METHOD']);
switch ($method) {
case 'get':
// handle a GET request
get_book($request);
break;
case 'post':
// handle a POST request
post_book($request);
break;
case 'put':
// handle a PUT request
put_book($request);
break;
case 'delete':
// handle a DELETE request
delete_book($request);
break;
default:
// unimplemented method
http_response_code(405);
}
<?php
session_start();
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<?php
include 'header.php';
if (isset($_POST['addBook'])) {
add_book();
} elseif (isset($_POST['deleteBook'])) {
delete_book();
} elseif (isset($_POST['addEvent'])) {
add_event();
} elseif (isset($_POST['deleteEvent'])) {
delete_event();
} elseif (isset($_POST['uploadNewsletter'])) {
upload_newsletter();
} elseif (isset($_POST['deleteNewsletter'])) {
delete_newsletter();
} elseif (isset($_POST['uploadReport'])) {
upload_report();
} elseif (isset($_POST['deleteReport'])) {
delete_report();
} else {
echo "Error: Please submit changes to the site first.";
}
// TODO: If logged_user is the admin user, then this page will be available as a link
// TODO: Add following forms:
// ADD/DELETE Books/Events Form
startSession();
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
if (isset($_POST['id'])) {
$id = $_POST['id'];
/***read book****/
if (isset($_POST['read'])) {
db_connect();
$result = retrive_book('generatedbooks', $id, '*');
db_close();
$location = 'storygen.php?title=' . urlencode($result['title']) . '&story=' . urlencode($result['story']) . "&hero=" . urlencode($result['hero']) . '&villain=' . urlencode($result['villain']) . '&lair=' . urlencode($result['lair']) . '&page=0';
header('location: ' . $location);
/***edit book***/
} elseif (isset($_POST['edit'])) {
$_SESSION['edit'] = $id;
header('location: selection.php');
/***delete book***/
} elseif (isset($_POST['delete'])) {
delete_book($id);
header('location: home.php');
}
}
}
?>
if ($id > 0) {
echo "<br />Successfully created book, ID is {$id}.</p>";
} else {
echo "<br />Failure!</p>";
}
echo "<p>get_book({$id})";
$book = get_book($id);
if ($book->ID == $id) {
echo "<br />Successfully fetched book with ID {$id}:<br /><pre>";
var_dump($book);
echo "</pre></p>";
} else {
echo "<br />Failure!</p>";
}
echo "<p>delete_book({$id})";
$del = delete_book($id);
if ($wpdb->get_var($wpdb->prepare("SELECT COUNT(*) FROM {$wpdb->posts} WHERE ID = %d", $id)) == 0) {
echo "<br />Successfully deleted book with ID {$id}.</p>";
} else {
echo "<br />Failure!</p>";
}
} else {
echo '
<form method="get" action="">
<input type="hidden" name="books" value="1" />
<p><input type="submit" value="Test Books" /></p>
</form>';
}
<?php
if (!current_user_can('edit_others_posts')) {
die;
}
if (!empty($_POST['id'])) {
if ($_POST['action'] == 'edit') {
check_admin_referer('nr_edit_' . $book->ID);
}
if ($_POST['action'] == 'delete') {
check_admin_referer('nr_delete_' . $_POST['id']);
delete_book($_POST['id']);
header('Location: ' . get_bloginfo('siteurl') . '/wp-admin/admin.php?page=manage_books&message=1');
}
}
