<?php spl_autoload_register(function ($class) { require_once "../../lib/classes/" . $class . ".class.php"; }); if (!isset($_SESSION)) { session_start(); } if (isset($_POST["userID"])) { $db = new Database(); $db->beginTransaction(); $db->query("UPDATE users SET role_id=4 WHERE id = :id LIMIT 1"); $db->bind(':id', $_POST["userID"]); $update_user = $db->execute(); $db->query("UPDATE products SET status_id=4 WHERE user_id = :id "); $db->bind(':id', $_POST["userID"]); $update_products = $db->execute(); $db->endTransaction(); $db->insertAdminLog($_SESSION["employee"], "Deleted user " . $_POST["userID"] . " and all user advertisements", $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id()); if ($update_products && $update_user) { echo 'success'; } else { echo 'Deleting user was not successful. Please try again.'; } }
<?php spl_autoload_register(function ($class) { require_once "../../lib/classes/" . $class . ".class.php"; }); if (!isset($_SESSION)) { session_start(); } if (isset($_POST["name"]) && isset($_SESSION["employee"])) { $db = new Database(); $db->query("INSERT INTO categories_sub ( name, main_cat_id, 10_day_price_nok, 20_day_price_nok, 30_day_price_nok, top_add_price_nok, video_price_nok, bold_view_price_nok, top_search_price_nok) \n\t\t\t\t\t\t\t\t\tVALUES (:name,:main_cat_id,:10_day_price_nok,:20_day_price_nok,:30_day_price_nok,:top_add_price_nok,:video_price_nok,:bold_view_price_nok,:top_search_price_nok)"); $db->bind(':name', $_POST["name"]); $db->bind(':main_cat_id', $_POST["main_cat_id"]); $db->bind(':10_day_price_nok', $_POST["10_day_price_nok"]); $db->bind(':20_day_price_nok', $_POST["20_day_price_nok"]); $db->bind(':30_day_price_nok', $_POST["30_day_price_nok"]); $db->bind(':top_add_price_nok', $_POST["top_add_price_nok"]); $db->bind(':video_price_nok', $_POST["video_price_nok"]); $db->bind(':bold_view_price_nok', $_POST["bold_view_price_nok"]); $db->bind(':top_search_price_nok', $_POST["top_search_price_nok"]); $db->insertAdminLog($_SESSION["employee"], "Added subcategory " . $_POST["name"], $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id()); if ($db->execute()) { echo 'success'; } else { echo 'Adding new category failed. Please try again.'; } }
<?php spl_autoload_register(function ($class) { require_once "../../lib/classes/" . $class . ".class.php"; }); if (!isset($_SESSION)) { session_start(); } if (isset($_POST["id"]) && isset($_SESSION["employee"])) { $db = new Database(); $db->query("UPDATE attributes SET \n\t\t\t\tname = :name ,\n\t\t\t\tname_nor = :name_nor ,\n\t\t\t\tslug = :slug ,\n\t\t\t\tcount = :count\n\t\t\t \tWHERE id = :id "); $db->bind(':name', $_POST["name"]); $db->bind(':name_nor', $_POST["name_nor"]); $db->bind(':slug', Product::slugify($_POST["name"])); $db->bind(':count', $_POST["count"]); $db->bind(':id', $_POST["id"]); $update = $db->execute(); $message = "Changed attribute " . $_POST["id"] . " information to:"; $message .= "name = " . $_POST["name"]; $message .= "name_nor = " . $_POST["name_nor"]; $message .= ", count = " . $_POST["count"]; $insert = $db->insertAdminLog($_SESSION["employee"], $message, $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id()); if ($update && $insert) { echo 'success'; } else { echo 'Change Failed. Please try again.'; } }
<?php spl_autoload_register(function ($class) { require_once "../../lib/classes/" . $class . ".class.php"; }); if (!isset($_SESSION)) { session_start(); } if (isset($_POST["user_id"]) && isset($_SESSION["employee"])) { $db = new Database(); $db->query('UPDATE users SET can_login = :can_login WHERE id = :user_id AND role_id != 1'); $db->bind(':user_id', $_POST["user_id"]); $db->bind(':can_login', $_POST["can_login"]); $permission = $_POST["can_login"] ? "Yes" : "No"; $db->insertAdminLog($_SESSION["employee"], "Changed user " . $_POST["user_id"] . " login permission to " . $permission, $_SERVER['HTTP_USER_AGENT'], $_SERVER['REMOTE_ADDR'], session_id()); if ($db->execute()) { echo 'success'; } else { echo 'Login Permission Change Failed. Please try again.'; } }