$ads = new AdTable();
if (isset($_POST["delete"]) && isset($_SESSION["user"]) && isset($_GET["ad"])) {
$ads->user = $_SESSION["user"];
$ads->deleteAd($_GET["ad"]);
header("Location: http://adlister.dev");
exit;
}
if (isset($_POST["title"]) && isset($_SESSION["user"]) && isset($_GET["ad"])) {
$ads->user = $_SESSION["user"];
$ads->editAd($_POST, $_GET["ad"]);
header("Location: http://adlister.dev/ads.show.php?ad={$_GET["ad"]}");
}
if (isset($_GET["ad"])) {
if (isset($_SESSION["user"])) {
try {
$ad = $ads->loadAd($_GET["ad"]);
} catch (Exception $e) {
echo "Invalid Ad id.";
exit;
}
if ($_SESSION["user"] != $ad["owner"]) {
echo "this is not your ad, you do not have permission to edit it.";
exit;
} else {
extract($ad);
}
} else {
echo "Please log in.";
exit;
}
} else {
<?php
session_start();
require_once "../models/AdTable.php";
if (isset($_GET["ad"])) {
$ad = new AdTable();
$data = $ad->loadAd($_GET["ad"]);
if (!isset($data["images"][0])) {
$data["images"][0] = "img/no_image_available.png";
}
}
?>
<!DOCTYPE html>
<head>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js"></script>
<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.5/css/bootstrap.min.css">
<link rel="stylesheet" href="../css/home.css">
<title>Krieger's List</title>
<?php
include '../views/partials/navbar.php';
?>
</head>
<style type="text/css">
.carousel-inner{
width:100%;
max-height: 500px !important;
min-height: 500px;
}
</style>
<html>
