<?php // include function files for this application require_once 'book_sc_fns.php'; session_start(); do_html_header('Deleting book'); if (check_admin_user()) { if (isset($HTTP_POST_VARS['isbn'])) { $isbn = $HTTP_POST_VARS['isbn']; if (delete_book($isbn)) { echo 'Book ' . $isbn . ' was deleted.<br />'; } else { echo 'Book ' . $isbn . ' could not be deleted.<br />'; } } else { echo 'We need an ISBN to delete a book. Please try again.<br />'; } do_html_url('admin.php', 'Back to administration menu'); } else { echo 'You are not authorised to view this page.'; } do_html_footer();
<?php $method = strtolower($_SERVER['REQUEST_METHOD']); switch ($method) { case 'get': // handle a GET request get_book($request); break; case 'post': // handle a POST request post_book($request); break; case 'put': // handle a PUT request put_book($request); break; case 'delete': // handle a DELETE request delete_book($request); break; default: // unimplemented method http_response_code(405); }
<?php session_start(); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <?php include 'header.php'; if (isset($_POST['addBook'])) { add_book(); } elseif (isset($_POST['deleteBook'])) { delete_book(); } elseif (isset($_POST['addEvent'])) { add_event(); } elseif (isset($_POST['deleteEvent'])) { delete_event(); } elseif (isset($_POST['uploadNewsletter'])) { upload_newsletter(); } elseif (isset($_POST['deleteNewsletter'])) { delete_newsletter(); } elseif (isset($_POST['uploadReport'])) { upload_report(); } elseif (isset($_POST['deleteReport'])) { delete_report(); } else { echo "Error: Please submit changes to the site first."; } // TODO: If logged_user is the admin user, then this page will be available as a link // TODO: Add following forms: // ADD/DELETE Books/Events Form
startSession(); if ($_SERVER['REQUEST_METHOD'] === 'POST') { if (isset($_POST['id'])) { $id = $_POST['id']; /***read book****/ if (isset($_POST['read'])) { db_connect(); $result = retrive_book('generatedbooks', $id, '*'); db_close(); $location = 'storygen.php?title=' . urlencode($result['title']) . '&story=' . urlencode($result['story']) . "&hero=" . urlencode($result['hero']) . '&villain=' . urlencode($result['villain']) . '&lair=' . urlencode($result['lair']) . '&page=0'; header('location: ' . $location); /***edit book***/ } elseif (isset($_POST['edit'])) { $_SESSION['edit'] = $id; header('location: selection.php'); /***delete book***/ } elseif (isset($_POST['delete'])) { delete_book($id); header('location: home.php'); } } } ?>
if ($id > 0) { echo "<br />Successfully created book, ID is {$id}.</p>"; } else { echo "<br />Failure!</p>"; } echo "<p>get_book({$id})"; $book = get_book($id); if ($book->ID == $id) { echo "<br />Successfully fetched book with ID {$id}:<br /><pre>"; var_dump($book); echo "</pre></p>"; } else { echo "<br />Failure!</p>"; } echo "<p>delete_book({$id})"; $del = delete_book($id); if ($wpdb->get_var($wpdb->prepare("SELECT COUNT(*) FROM {$wpdb->posts} WHERE ID = %d", $id)) == 0) { echo "<br />Successfully deleted book with ID {$id}.</p>"; } else { echo "<br />Failure!</p>"; } } else { echo ' <form method="get" action=""> <input type="hidden" name="books" value="1" /> <p><input type="submit" value="Test Books" /></p> </form>'; }
<?php if (!current_user_can('edit_others_posts')) { die; } if (!empty($_POST['id'])) { if ($_POST['action'] == 'edit') { check_admin_referer('nr_edit_' . $book->ID); } if ($_POST['action'] == 'delete') { check_admin_referer('nr_delete_' . $_POST['id']); delete_book($_POST['id']); header('Location: ' . get_bloginfo('siteurl') . '/wp-admin/admin.php?page=manage_books&message=1'); } }