public function _home() { global $config, $user, $cache; $submit2 = _button('submit2'); if (_button() || $submit2) { $news_id = request_var('news_id', 0); $sql = 'SELECT * FROM _news WHERE news_id = ?'; if (!$news_data = sql_fieldrow(sql_filter($sql, $news_id))) { fatal_error(); } if ($submit2) { $post_subject = request_var('post_subject', ''); $post_desc = request_var('post_desc', '', true); $post_message = request_var('post_text', '', true); if (empty($post_desc) || empty($post_message)) { _pre('Campos requeridos.', true); } $comments = new _comments(); $post_message = $comments->prepare($post_message); $post_desc = $comments->prepare($post_desc); // $sql = 'UPDATE _news SET post_subject = ?, post_desc = ?, post_text = ? WHERE news_id = ?'; sql_query(sql_filter($sql, $post_subject, $post_desc, $post_message, $news_id)); $cache->delete('news'); redirect(s_link('news', $news_id)); } if (_button()) { _style('edit', array( 'ID' => $news_data['news_id'], 'SUBJECT' => $news_data['post_subject'], 'DESC' => $news_data['post_desc'], 'TEXT' => $news_data['post_text']) ); } } if (!_button()) { _style('field'); } return; }