diff options
author | citizenz7 <citizenz7@protonmail.com> | 2017-04-20 18:50:55 +0200 |
---|---|---|
committer | citizenz7 <citizenz7@protonmail.com> | 2017-04-20 18:50:55 +0200 |
commit | 5fd9fa480f302902328b81f912dd67ce378284f8 (patch) | |
tree | 66234843ae2857fda12442e4f7577c527d48977c /Html/admin/edit-licence.php | |
parent | ebe731862c7c741171138b1083906f391fc35aff (diff) | |
download | freetorrent-5fd9fa480f302902328b81f912dd67ce378284f8.tar.xz freetorrent-5fd9fa480f302902328b81f912dd67ce378284f8.zip |
V.1.4.6
Diffstat (limited to 'Html/admin/edit-licence.php')
-rw-r--r-- | Html/admin/edit-licence.php | 125 |
1 files changed, 125 insertions, 0 deletions
diff --git a/Html/admin/edit-licence.php b/Html/admin/edit-licence.php new file mode 100644 index 0000000..bbdb466 --- /dev/null +++ b/Html/admin/edit-licence.php @@ -0,0 +1,125 @@ +<?php +//include config +require_once('../includes/config.php'); + +//Si pas connecté OU si le membre n'est pas admin, pas de connexion à l'espace d'admin --> retour sur la page login +if(!$user->is_logged_in()) { + header('Location: login.php'); +} + +if(isset($_SESSION['userid'])) { + if($_SESSION['userid'] != 1) { + header('Location: '.SITEURL); + } +} + +// titre de la page +$pagetitle= 'Admin : Edition des licences'; +require('../includes/header.php'); +?> + +<body> +<div id="container"> + + <?php + require('../includes/header-logo.php'); + require('../includes/nav.php'); + ?> + + <div id="body"> + <div id="content"> + + <?php include('menu.php');?> + <p><a href="licences.php">Licences Index</a></p> + + <h2>Edition de la licence</h2> + + <?php + + //if form has been submitted process it + if(isset($_POST['submit'])){ + + $_POST = array_map( 'stripslashes', $_POST ); + + //collect form data + extract($_POST); + + //very basic validation + if($licenceID ==''){ + $error[] = 'Ce post possède un ID invalide !.'; + } + + if($licenceTitle ==''){ + $error[] = 'Veuillez entrer un titre.'; + } + + if(!isset($error)){ + + try { + + $licenceSlug = slug($licenceTitle); + + //insert into database + $stmt = $db->prepare('UPDATE blog_licences SET licenceTitle = :licenceTitle, licenceSlug = :licenceSlug WHERE licenceID = :licenceID') ; + $stmt->execute(array( + ':licenceTitle' => $licenceTitle, + ':licenceSlug' => $licenceSlug, + ':licenceID' => $licenceID + )); + + //redirect to index page + header('Location: licences.php?action=updated'); + exit; + + } catch(PDOException $e) { + echo $e->getMessage(); + } + + } + + } + ?> + + <?php + //check for any errors + if(isset($error)){ + foreach($error as $error){ + echo $error.'<br />'; + } + } + + try { + + $stmt = $db->prepare('SELECT licenceID, licenceTitle FROM blog_licences WHERE licenceID = :licenceID') ; + $stmt->execute(array(':licenceID' => $_GET['id'])); + $row = $stmt->fetch(); + + } catch(PDOException $e) { + echo $e->getMessage(); + } + + ?> + + <form action='' method='post'> + <input type='hidden' name='licenceID' value='<?php echo $row['licenceID'];?>'> + + <p><label>Titre</label><br /> + <input type='text' name='licenceTitle' value='<?php echo $row['licenceTitle'];?>'></p> + + <p><input type='submit' class="searchsubmit formbutton" name='submit' value='Mettre à jour'></p> + + </form> + </div> + + <?php require('../sidebar.php'); ?> + + <div class="clear"></div> + </div> +</div> + +<div id="footer"> + <?php require('../includes/footer.php'); ?> +</div> + +</body> +</html> |