$ads = new AdTable(); if (isset($_POST["delete"]) && isset($_SESSION["user"]) && isset($_GET["ad"])) { $ads->user = $_SESSION["user"]; $ads->deleteAd($_GET["ad"]); header("Location: http://adlister.dev"); exit; } if (isset($_POST["title"]) && isset($_SESSION["user"]) && isset($_GET["ad"])) { $ads->user = $_SESSION["user"]; $ads->editAd($_POST, $_GET["ad"]); header("Location: http://adlister.dev/ads.show.php?ad={$_GET["ad"]}"); } if (isset($_GET["ad"])) { if (isset($_SESSION["user"])) { try { $ad = $ads->loadAd($_GET["ad"]); } catch (Exception $e) { echo "Invalid Ad id."; exit; } if ($_SESSION["user"] != $ad["owner"]) { echo "this is not your ad, you do not have permission to edit it."; exit; } else { extract($ad); } } else { echo "Please log in."; exit; } } else {
<?php session_start(); require_once "../models/AdTable.php"; if (isset($_GET["ad"])) { $ad = new AdTable(); $data = $ad->loadAd($_GET["ad"]); if (!isset($data["images"][0])) { $data["images"][0] = "img/no_image_available.png"; } } ?> <!DOCTYPE html> <head> <script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js"></script> <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.5/css/bootstrap.min.css"> <link rel="stylesheet" href="../css/home.css"> <title>Krieger's List</title> <?php include '../views/partials/navbar.php'; ?> </head> <style type="text/css"> .carousel-inner{ width:100%; max-height: 500px !important; min-height: 500px; } </style> <html>