} ?> ><a href="articles.php">Articles</a></li> <li <?php if ($page == 'blog') { echo 'class="active"'; } ?> ><a href="blog.php">Categories et Tags</a></li> </ul> </li> <?php } ?> <?php if (haveRole('admin')) { ?> <li> <p><i class="fa fa-files-o"></i> <span class="nav-label">CMS</span></p> <ul class="nav nav-second-level collapse in"> <li <?php if ($page == 'carousel') { echo 'class="active"'; } ?> ><a href="carousel.php">Accueil</a></li> <li <?php if ($page == 'hardware') { echo 'class="active"'; } ?>
?> <tr> <td><?php echo $article['title']; ?> </td> <td><?php echo date('d/m/Y', $article['timestamp']); ?> </td> <td><?php echo $article['category']; ?> </td> <td><?php echo haveRole('moderator') ? '<a href="articles.php?comments=' . $article['id'] . '">' . $article['nb_comments'] . '</a>' : $article['nb_comments']; ?> </td> <td> <a href="articles.php?edit=<?php echo $article['id']; ?> " title="Editer l'article" data-toggle="modal" class="btn btn-warning"><span class="fa fa-edit"></span></a> <a href="articles.php?delete=<?php echo $article['id']; ?> " title="Supprimer l'article" class="btn btn-danger"><span class="fa fa-trash-o"></span></a> </td> </tr> <?php }
<?php require 'init.php'; if (!isLogged() || !haveRole('admin')) { header('Location: login.php'); } // File upload failed $error = false; if (getVar('badfile') || getVar('upfail')) { $id = getVar('badfile') + getVar('upfail'); $deleteUserQuery = $dbh->prepare("DELETE FROM name WHERE id = :id"); $deleteUserQuery->execute(array(':id' => $id)); $deleteUserQuery->closeCursor(); if (getVar('badfile')) { $error = 'Mauvais fichier!'; } else { $error = 'Erreur d\'upload'; } } if (getVar('add')) { $addUserQuery = $dbh->prepare("INSERT INTO tools (name, smalldesc, description) VALUES (:name, :smalldesc, :description)"); $addUserQuery->execute(array(':name' => getVar('name'), ':smalldesc' => getVar('smalldesc'), ':description' => getVar('description'))); $addUserQuery->closeCursor(); $elementId = $dbh->lastInsertId(); $newname = $_SERVER["DOCUMENT_ROOT"] . '/fablab/img/tools/' . $elementId . '.jpg'; //debug($_FILES); if (!empty($_FILES['picture']) && $_FILES['picture']['error'] == 0) { $filename = basename($_FILES['picture']['name']); $ext = substr($filename, strrpos($filename, '.') + 1); if (getimagesize($_FILES['picture']['tmp_name']) && $_FILES["picture"]["size"] < 4000000) { if (!file_exists($newname) && move_uploaded_file($_FILES['picture']['tmp_name'], $newname)) {
$articleQuery = $dbh->prepare("SELECT title, description, category_id, content FROM blog_articles WHERE id = :id"); $articleQuery->execute(array(':id' => getVar('edit'))); $article = $articleQuery->fetch(); $articleQuery->closeCursor(); $articleTagsQuery = $dbh->prepare("SELECT tag_id FROM blog_articles_tags WHERE article_id = :article_id"); $articleTagsQuery->execute(array(':article_id' => getVar('edit'))); $articleTagsRaw = $articleTagsQuery->fetchAll(); $articleTagsQuery->closeCursor(); $articleTags = array(); foreach ($articleTagsRaw as $articleTag) { $articleTags[$i++] = $articleTag['tag_id']; } render('editor', array('action' => 'edit', 'categories' => $categories, 'tags' => $tags, 'article' => $article, 'articleTags' => $articleTags)); } if (getVar('comments')) { if (!haveRole('moderator')) { header('Location: articles.php'); } // Delete the comment if (getVar('delete')) { $deleteArticleQuery = $dbh->prepare("DELETE FROM blog_comments WHERE id = :id"); $deleteArticleQuery->execute(array(':id' => getVar('delete'))); $deleteArticleQuery->closeCursor(); header('Location: articles.php?comments=' . getVar('comments')); } // Else, render the list $commentsQuery = $dbh->prepare("SELECT id, nickname, email, content FROM blog_comments WHERE article_id = :article_id ORDER BY id DESC"); $commentsQuery->execute(array(':article_id' => getVar('comments'))); $comments = $commentsQuery->fetchAll(); $commentsQuery->closeCursor(); render('comments', array('comments' => $comments));