コード例 #1
0
<?php

// Code to run the ajax query to show and allow the usert to change a templates notes
//
// Version 1.0 University of Nottingham
require_once "../../../config.php";
include "../url_library.php";
include "../template_status.php";
include "../user_library.php";
include "properties_library.php";
//connect to the database
$database_connect_id = database_connect("notes template database connect success", "notes template database connect failed");
if (is_user_creator(mysql_real_escape_string($_POST['tutorial_id'])) || is_user_admin()) {
    if (template_access_settings(mysql_real_escape_string($_POST['tutorial_id'])) == "Public") {
        rss_display($xerte_toolkits_site, mysql_real_escape_string($_POST['tutorial_id']), false);
    } else {
        rss_display_public();
    }
} else {
    rss_display_fail();
}
コード例 #2
0
require_once "../../../config.php";
include "../template_status.php";
include "../url_library.php";
include "../user_library.php";
include "properties_library.php";
if (is_numeric($_POST['template_id'])) {
    if (is_user_creator($_POST['template_id']) || is_user_admin()) {
        $query_for_rss_status = "select rss from {$xerte_toolkits_site->database_table_prefix}templatesyndication where template_id=?";
        $rows = db_query($query_for_rss_status, array($_POST['template_id']));
        $status = false;
        if (sizeof($rows) == 0) {
            $query_to_change_rss_status = "Insert into {$xerte_toolkits_site->database_table_prefix}templatesyndication (template_id,rss,export,description) VALUES (?,?,?,?)";
            $status = db_query($query_to_change_rss_status, array($_POST['template_id'], $_POST['rss'], $_POST['export'], $_POST['desc']));
        } else {
            $query_to_change_rss_status = "update {$xerte_toolkits_site->database_table_prefix}templatesyndication \n                set rss=?, export=?, description=? WHERE template_id = ?";
            $status = db_query($query_to_change_rss_status, array($_POST['rss'], $_POST['export'], $_POST['desc'], $_POST['template_id']));
        }
        if ($status === false) {
            echo "<p class='error'>Error saving change to template.</p>";
        }
        if (template_access_settings($_POST['template_id']) == "Public") {
            $query_for_name = "select firstname,surname from {$xerte_toolkits_site->database_table_prefix}logindetails where login_id=?";
            $row_name = db_query_one($query_for_name, array($_SESSION['toolkits_logon_id']));
            rss_display($xerte_toolkits_site, $_POST['template_id'], true);
        } else {
            rss_display_public();
        }
    } else {
        rss_display_fail();
    }
}
コード例 #3
0
require_once "../../../config.php";
include "../template_status.php";
include "../url_library.php";
include "../user_library.php";
include "properties_library.php";
if (is_numeric($_POST['template_id'])) {
    if (is_user_creator($_POST['template_id']) || is_user_admin()) {
        $query_for_rss_status = "select rss from {$xerte_toolkits_site->database_table_prefix}templatesyndication where template_id=?";
        $rows = db_query($query_for_rss_status, array($_POST['template_id']));
        $status = false;
        if (sizeof($rows) == 0) {
            $query_to_change_rss_status = "Insert into {$xerte_toolkits_site->database_table_prefix}templatesyndication (template_id,rss,export,description) VALUES (?,?,?,?)";
            $status = db_query($query_to_change_rss_status, array($_POST['template_id'], $_POST['rss'], $_POST['export'], $_POST['desc']));
        } else {
            $query_to_change_rss_status = "update {$xerte_toolkits_site->database_table_prefix}templatesyndication \r\n                set rss=?, export=?, description=? WHERE template_id = ?";
            $status = db_query($query_to_change_rss_status, array($_POST['rss'], $_POST['export'], $_POST['desc'], $_POST['template_id']));
        }
        if (!$status) {
            echo "<p class='error'>Error saving change to template.</p>";
        }
        if (template_access_settings($_POST['template_id']) == "Public") {
            $query_for_name = "select firstname,surname from {$xerte_toolkits_site->database_table_prefix}logindetails where login_id=?";
            $row_name = db_query_one($query_for_name, array($_SESSION['toolkits_logon_id']));
            rss_display($xerte_toolkits_site, mysql_real_escape_string($_POST['template_id']), true);
        } else {
            rss_display_public();
        }
    } else {
        rss_display_fail();
    }
}