require_once '../../inc/model/validation_func.php'; main\confirm_login(); main\find_selected_page(); if (isset($_POST["submit"])) { $username = main\mysql_prep($_POST["username"]); $password = main\mysql_prep($_POST["password"]); $hash = main\find_all_admins(); validation\no_null($username); $query = "DELETE FROM admins\n WHERE username = '******'\n LIMIT 1"; $result = $db->query($query); if ($result) { $_SESSION["message"] = "Success!"; main\redirect_to("../manage_content.php"); } else { $_SESSION["message"] = "Fail!"; main\redirect_to("delete_admin.php"); } } else { } include '../../inc/views/layouts/header.php'; main\menu($selected_subject_id, $selected_page_id); //include('../../inc/views/layouts/admin_header.php'); ?> <div class="wrapper"> <section class="content"> <form action="delete_admin.php" method="post"> <p>Admin Name: <select name="username"> <?php $admin_items = main\find_all_admins(); while ($row = mysqli_fetch_assoc($admin_items)) { ?>
if (isset($_POST["submit"])) { $username = main\mysql_prep($_POST["username"]); $password = main\password_encrypt($_POST["password"]); validation\no_null($username); $query = "INSERT INTO admins\n (username, hashed_password)\n VALUES\n ( '{$username}', '{$password}' )\n "; $result = $db->query($query); if ($result) { ?> <p class="alert alert-success"><?php $_SESSION["message"] = "Success!"; ?> </p><?php main\redirect_to("../manage_content.php"); } else { $_SESSION["message"] = "Fail!"; main\redirect_to("new_admin.php"); } } else { } include '../../inc/views/layouts/header.php'; main\menu($selected_subject_id, $selected_page_id); //include('../../inc/views/layouts/admin_header.php'); ?> <div class="wrapper"> <section class="content"> <form action="new_admin.php" method="post"> <p>Admin Name: <input type="text" name="username" value=""> </p> <p>Password: <input type="password" name="password" value=""> </p> <input class="btn btn-success" type="submit" name="submit" value="Create Admin"> </form>
$fields_with_max_lengths = array("menu_name" => 30); validation\validate_max_lengths($fields_with_max_lengths); if ($_POST["menu_name"] == "") { $_SESSION["message"] = "You must enter a menu name"; main\redirect_to("../../index.php"); } $id = $current_subject["id"]; $menu_name = main\mysql_prep($_POST["menu_name"]); $position = (int) $_POST["position"]; $visible = (int) $_POST["visible"]; $query = "UPDATE subjects SET \n menu_name = '{$menu_name}', \n position = {$position}, \n visible = {$visible} \n WHERE id = {$id} \n LIMIT 1"; $result = $db->query($query); if ($result && mysqli_affected_rows($db) == 1) { // Success $_SESSION["message"] = "Subject updated."; main\redirect_to("../manage_content.php"); } else { // Failure $message = "Subject update failed."; } } else { // This is probably a GET request } // end: if (isset($_POST['submit'])) $user = "******"; include '../../inc/views/layouts/header.php'; ?> <?php main\menu($selected_subject_id, $selected_page_id); ?>
// Process the form // validations $required_fields = array("username", "password"); validation\validate_presences($required_fields); if (empty($errors)) { // Attempt Login $username = $_POST["username"]; $password = $_POST["password"]; $found_admin = main\attempt_login($username, $password); if ($found_admin) { // Success // Mark user as logged in $_SESSION["message"] = "Welcome to the Admin area "; $_SESSION["admin_id"] = $found_admin["id"]; $_SESSION["username"] = $found_admin["username"]; main\redirect_to("../../admin.php"); } else { // Failure $_SESSION["message"] = "Username/password not found."; } } } else { // This is probably a GET request } // end: if (isset($_POST['submit'])) ?> <?php $user = "******"; include '../../inc/views/layouts/header.php'; main\public_menu($selected_subject_id, $selected_page_id);
require_once '../../inc/model/classes.php'; require_once '../../inc/model/functions.php'; require_once '../../inc/model/validation_func.php'; main\confirm_login(); main\find_selected_page(); if (isset($_POST["submit"])) { $menu_name = main\mysql_prep($_POST["menu_name"]); validation\no_null($menu_name); $query = "DELETE FROM subjects\n WHERE menu_name = '{$menu_name}'\n LIMIT 1"; $result = $db->query($query); if ($result) { $_SESSION["message"] = "Success!"; main\redirect_to("delete_menu_items.php"); } else { $_SESSION["message"] = "Fail!"; main\redirect_to("delete_menu_items.php"); } } else { } include '../../inc/views/layouts/header.php'; main\menu($selected_subject_id, $selected_page_id); ?> <div class="wrapper"> <section class="content"> <form action="delete_menu_items.php" method="post"> <p>Menu Name: <select name="menu_name"> <?php $menu_items = main\find_all_subjects(false); while ($row = mysqli_fetch_assoc($menu_items)) { ?>
require_once '../../inc/model/validation_func.php'; main\confirm_login(); main\find_selected_page(); if (isset($_POST["submit"])) { $menu_name = main\mysql_prep($_POST["menu_name"]); $position = (int) $_POST["position"]; $visible = (int) $_POST["visible"]; validation\no_null($menu_name); $query = "INSERT INTO subjects\n (menu_name, position, visible)\n VALUES\n ( '{$menu_name}', {$position}, {$visible} )\n "; $result = $db->query($query); if ($result) { $_SESSION["message"] = "Success!"; main\redirect_to("../manage_content.php"); } else { $_SESSION["message"] = "Fail!"; main\redirect_to("../actions/new_subject.php"); } } else { } include '../../inc/views/layouts/header.php'; main\menu($selected_subject_id, $selected_page_id); ?> <div class="wrapper"> <section class="content"> <form action="new_subject.php" method="post"> <p>Menu Name: <input type="text" name="menu_name" value=""> </p> <p>Position: <select name="position"> <?php $subject_result = main\find_all_subjects();
<?php session_start(); require_once "../inc/model/sessions.php"; require_once '../inc/model/db_connect.php'; require_once '../inc/model/functions.php'; main\confirm_login(); $current_subject = main\find_subject_by_id($_GET["subject"]); if (!$current_subject) { main\redirect_to("../views/manage_content.php"); } $id = $current_subject["id"]; $query = "DELETE FROM subjects WHERE id = {$id} LIMIT 1"; $result = mysqli_query($db, $query); if ($result && mysqli_affected_rows($db) == 1) { //SUCESS $_SESSION["message"] = "Subject Deleted"; main\redirect_to("../views/manage_content.php"); } else { $_SESSION["message"] = "Subject delete failed."; main\redirect_to("../views/manage_content.php?subject={$id}"); }