/** * edit admin from form, display result * @param string @admin_id */ public static function update_admin($admin_id) { global $dbo; if (self::validate_admin()) { // process form $id = $admin_id; $username = $dbo->mysql_prep($_POST["username"]); $password = utility::password_encrypt($_POST["password"]); // perform database query $query = "UPDATE admins SET "; $query .= "username = '******', "; $query .= "hashed_password = '******' "; $query .= "WHERE id = {$id}"; $query .= " LIMIT 1"; $result = $dbo->query($query); $dbo->confirm_query($result); } if (isset($result) && $dbo->affected_rows($result) >= 0) { // success $_SESSION["message"] = "Admin updated."; utility::redirect_to("manage_admins.php"); } else { // failure $_SESSION["message"] = "Admin update failed."; } }