<?php require_once 'includes/common.php'; use libAllure\Sanitizer; try { $id = Sanitizer::getInstance()->filterUint('id'); $f = new FormEventUpdate($id); } catch (Exception $e) { $tpl->error('Event not found.'); } if ($f->validate()) { $f->process(); logAndRedirect('listEvents.php', 'Event updated: ' . $f->getElementValue('name')); } require_once 'includes/widgets/header.php'; require_once 'includes/widgets/sidebar.php'; $tpl->displayForm($f); require_once 'includes/widgets/footer.php';
logAndRedirect('news.php', 'News item updated: ' . $f->getElementValue('id')); } require_once 'includes/widgets/header.php'; require_once 'includes/widgets/sidebar.php'; $tpl->displayForm($f); break; case 'delete': if (!Session::hasPriv('NEWS_DELETE')) { throw new PermissionException(); } $id = intval($_REQUEST['id']); $sql = 'DELETE FROM news WHERE id = :id '; $stmt = $db->prepare($sql); $stmt->bindValue(':id', $id); $stmt->execute(); logAndRedirect('news.php', 'News deleted: ' . $id); break; default: require_once 'includes/widgets/header.php'; require_once 'includes/widgets/sidebar.php'; $news = new News(); $news->setCount(10); while ($article = $news->getNext()) { startBox(); echo '<p><span class = "subtle">Posted on ' . formatDt(new DateTime($article['date'])) . ' by <a href = "profile.php?id=' . $article['author'] . '">' . $article['username'] . '</a>.</span></p>'; echo htmlify($article['content']); if (Session::hasPriv('NEWS_DELETE')) { echo '<dl class = "subtle">'; echo '<dt><a href = "news.php?action=delete&id=' . $article['id'] . '">Delete</a></dt>'; echo '<dt><a href = "news.php?action=edit&id=' . $article['id'] . '">Edit</a></dt>'; echo '</dl>';
require_once 'includes/widgets/header.php'; echo '<div class = "box">'; echo getContent('bacs'); echo '</div>'; echo '<div class = "box">When you have done this, please <a href = "checkout.php?action=bacsComplete">click here to Confirm BACS payment</a></div>'; require_once 'includes/widgets/footer.php'; break; case 'bacsComplete': foreach (Basket::getContents() as $ticket) { Events::setSignupStatus(Session::getUser()->getId(), $ticket['eventId'], 'BACS_WAITING'); } Basket::clear(); redirect('account.php', 'Thanks, you will be marked as PAID by an admin when they receive the transfer.'); break; case 'paypalFail': logAndRedirect('account.php', 'Paypal transaction failed.'); break; case 'paypalComplete': logActivity('Started processing PayPal payment notification'); foreach (Basket::getContents() as $ticket) { logActivity('PayPal transaction processing - setting status to PAID for event. Ticket owner _u_, event _e_', $ticket['userId'], array('event' => $ticket['eventId'], 'user' => Session::getUser()->getId())); Events::setSignupStatus($ticket['userId'], $ticket['eventId'], 'PAID'); } logActivity('Finished processing PayPal payment notification.'); Basket::clear(); redirect('account.php', 'Thanks, payment complete!'); break; default: require_once 'includes/widgets/header.php'; require_once 'includes/widgets/sidebar.php'; startBox();