public function news_Add_sql($header, $text) { $query = 'INSERT INTO articles (header, article_text) VALUES ("' . $header . '", "' . $text . '")'; news_update($query); }
require_api('lang_api.php'); require_api('news_api.php'); require_api('print_api.php'); news_ensure_enabled(); form_security_validate('news_update'); $f_news_id = gpc_get_int('news_id'); $f_project_id = gpc_get_int('project_id'); $f_view_state = gpc_get_int('view_state'); $f_headline = gpc_get_string('headline'); $f_announcement = gpc_get_string('announcement', ''); $f_body = gpc_get_string('body', ''); $row = news_get_row($f_news_id); # Check both the old project and the new project access_ensure_project_level(config_get('manage_news_threshold'), $row['project_id']); access_ensure_project_level(config_get('manage_news_threshold'), $f_project_id); news_update($f_news_id, $f_project_id, $f_view_state, $f_announcement, $f_headline, $f_body); form_security_purge('news_update'); html_page_top(); echo '<div class="success-msg">'; echo lang_get('operation_successful'); ?> <br /> print_bracket_link( "news_edit_page.php?news_id=$f_news_id&action=edit", lang_get( 'edit_link' ) ); print_bracket_link( 'news_menu_page.php', lang_get( 'proceed' ) ); echo '<br /><br />'; print_news_entry( $f_headline, $f_body, $row['poster_id'], $f_view_state, $f_announcement, $row['date_posted'] ); echo '</div>';
//Sinon, on affiche le formulaire d'édition global $secteur, $page, $newsAmodifier; if ($page == 'news_edit') { if (isset($_SESSION['admin']) && $_SESSION['admin'] === true) { ?> <form action="" method="POST"> Auteur : <strong><?php echo $news[$newsAmodifier]['auteur']; ?> </strong><br /> <label for="titre">Titre de la news :</label> <input type="text" name="titre" id="titre" value="<?php echo $news[$newsAmodifier]['titre']; ?> " ><br /> <label for="contenu">Contenu de la news : </label><br /> <textarea name="contenu" id="contenu" rows="20" cols="60"><?php echo $news[$newsAmodifier]['contenu']; ?> </textarea><br /> <input type="submit" value="Appliquer les modifications" /> </form> <?php } } } if ($page == 'news_add') { news_create(); } if ($page == 'news_edit') { news_update(); }