case "prj_delete": if (hasPermissions('projects') && $_SESSION["rand"] == $_POST["u_token_key"]) { $prj_id = (int) trim(__paramInit('int', 'prjid', 'prjid')); require_once $_SERVER['DOCUMENT_ROOT'] . "/classes/projects.php"; $prj = new projects(); $prj->DeletePublicProject($prj_id, get_uid(), 1); } break; case "change_bn": if (!hasPermissions('users')) { break; } $emp = new employer(); $emp->boss_note = __paramInit('string', NULL, 'boss_note', ''); $emp->boss_rate = __paramInit('int', NULL, 'boss_rate', 0); $emp->update($user->uid, $res); unset($emp); header("Location: /users/{$user->login}" . ($page ? "/{$page}/" : '')); exit; break; case "prj_trash": $location = __paramInit('string', null, 'location', '/'); $prj_id = __paramInit('int', null, 'project_id'); $do_remove = __paramInit('bool', null, 'do_remove'); $projects = new projects(); if ($prj_id) { $error .= $projects->switchTrashProject(get_uid(false), $prj_id, $do_remove); } header("Location: " . str_replace($GLOBALS['host'], '', $location)); //перекидываем на текущую страницу, чтобы нельзя было повторить POST по F5 exit;