public function __construct($route) { if (!isset($_SESSION)) { session_start(); } if (!isset($_SESSION['ok'])) { $_SESSION['ok'] = false; } if ($_SESSION['ok']) { //accedemos con user y pass correcto a la plicación //echo '<h2>Bienvenido <mark>' . $_SESSION['user'] . '</mark> a Mexflix te has autenticado</h2>'; $this->route = isset($_GET['r']) ? $_GET['r'] : 'home'; $controller = new ViewController(); switch ($this->route) { case 'home': $controller->load_view('home'); break; case 'movieseries': case 'movieseries': if (!isset($_POST['r'])) { $controller->load_view('movieseries'); } else { if ($_POST['r'] == 'movieserie-add') { $controller->load_view('movieserie-add'); } else { if ($_POST['r'] == 'movieserie-edit') { $controller->load_view('movieserie-edit'); } else { if ($_POST['r'] == 'movieserie-delete') { $controller->load_view('movieserie-delete'); } else { if ($_POST['r'] == 'movieserie-show') { $controller->load_view('movieserie-show'); } } } } } break; case 'usuarios': if (!isset($_POST['r'])) { $controller->load_view('users'); } else { if ($_POST['r'] == 'user-add') { $controller->load_view('user-add'); } else { if ($_POST['r'] == 'user-edit') { $controller->load_view('user-edit'); } else { if ($_POST['r'] == 'user-delete') { $controller->load_view('user-delete'); } } } } break; case 'status': if (!isset($_POST['r'])) { $controller->load_view('status'); } else { if ($_POST['r'] == 'status-add') { $controller->load_view('status-add'); } else { if ($_POST['r'] == 'status-edit') { $controller->load_view('status-edit'); } else { if ($_POST['r'] == 'status-delete') { $controller->load_view('status-delete'); } } } } break; case 'salir': $user_session = new SessionController(); $user_session->logout(); break; default: $controller->load_view('error404'); break; } } else { //la aplicación nos muestra un form de login if (!isset($_POST['user']) && !isset($_POST['pass'])) { //echo 'Tengo que mostrar un login form'; $login_form = new ViewController(); $login_form->load_view('login'); } else { //echo 'Validar los datos que el usuario envía'; $user_session = new SessionController(); $session = $user_session->login($_POST['user'], $_POST['pass']); if (empty($session)) { //echo 'El usuario y el password son incorrectos'; $login_form = new ViewController(); $login_form->load_view('login'); header('Location: ./?error=El usuario ' . $_POST['user'] . ' y el password proporcionado no coinciden'); } else { //echo 'El usuario y el password son correctos'; //var_dump($session); $_SESSION['ok'] = true; foreach ($session as $row) { $_SESSION['user'] = $row['user']; $_SESSION['email'] = $row['email']; $_SESSION['name'] = $row['name']; $_SESSION['birthday'] = $row['birthday']; $_SESSION['pass'] = $row['pass']; $_SESSION['role'] = $row['role']; } header('Location: ./'); } } } }
<input type="radio" name="category" id="movie" value="Movie" required><label for="movie">Movie</label> <input type="radio" name="category" id="serie" value="Serie" required><label for="serie">Serie</label> </div> <div class="p_25"> <input class="button add" type="submit" value="Agregar"> <input type="hidden" name="r" value="movieserie-add"> <input type="hidden" name="crud" value="set"> </div> </form> ', $status_select); } else { if ($_POST['r'] == 'movieserie-add' && $_SESSION['role'] == 'Admin' && $_POST['crud'] == 'set') { $ms_controller = new MovieSeriesController(); $new_ms = array('imdb_id' => $_POST['imdb_id'], 'title' => $_POST['title'], 'plot' => $_POST['plot'], 'author' => $_POST['author'], 'actors' => $_POST['actors'], 'country' => $_POST['country'], 'premiere' => $_POST['premiere'], 'poster' => $_POST['poster'], 'trailer' => $_POST['trailer'], 'rating' => $_POST['rating'], 'genres' => $_POST['genres'], 'status' => $_POST['status'], 'category' => $_POST['category']); $ms = $ms_controller->set($new_ms); $template = ' <div class="container"> <p class="item add">MovieSerie <b>%s</b> salvada</p> </div> <script> window.onload = function () { reloadPage("movieseries") } </script> '; printf($template, $_POST['title']); } else { $controller = new ViewController(); $controller->load_view('error401'); } }
public function __construct($route) { $this->route = isset($_GET['r']) ? $_GET['r'] : 'home'; $controller = new ViewController(); switch ($this->route) { case 'home': $controller->load_view('home'); break; case 'movieseries': if (!isset($_POST['r'])) { $controller->load_view('movieseries'); } else { if ($_POST['r'] == 'movieserie-add') { $controller->load_view('movieserie-add'); } else { if ($_POST['r'] == 'movieserie-edit') { $controller->load_view('movieserie-edit'); } else { if ($_POST['r'] == 'movieserie-delete') { $controller->load_view('movieserie-delete'); } else { if ($_POST['r'] == 'movieserie-show') { $controller->load_view('movieserie-show'); } } } } } break; case 'status': if (!isset($_POST['r'])) { $controller->load_view('status'); } else { if ($_POST['r'] == 'status-add') { $controller->load_view('status-add'); } else { if ($_POST['r'] == 'status-edit') { $controller->load_view('status-edit'); } else { if ($_POST['r'] == 'status-delete') { $controller->load_view('status-delete'); } } } } break; case 'acerca': $controller->load_view('acerca'); break; case 'contacto': $controller->load_view('contacto'); break; default: $controller->load_view('error404'); break; } }