File size: 5.88Kb
<?
include_once '../../sys/inc/start.php';
include_once '../../sys/inc/compress.php';
include_once '../../sys/inc/sess.php';
include_once '../../sys/inc/home.php';
include_once '../../sys/inc/settings.php';
include_once '../../sys/inc/db_connect.php';
include_once '../../sys/inc/ipua.php';
include_once '../../sys/inc/fnc.php';
include_once '../../sys/inc/user.php';
$set['title'] = 'Управление';
include_once '../../sys/inc/thead.php';
title();
aut();
err();
echo "<div class='foot'><b>Вы находитесь в режиме управления</b></div>";
if (user_access('adm_mysql'))
{
if (isset($_GET['act']) && ($_GET['act'] == 'edit' || $_GET['act'] == 'delete')) {
$ID = (isset($_GET['id_service']) ? (int) $_GET['id_service'] : 0);
$serv = mysql_fetch_assoc(mysql_query("SELECT * FROM `services` WHERE `id` = '$ID' LIMIT 1"));
}
if (isset($_GET['act']) && $_GET['act'] == 'delete' && isset($_SESSION['sid']) && isset($_GET['sid']) && $_SESSION['sid'] == $_GET['sid'] && isset($serv['id'])) {
mysql_query("DELETE FROM `user_services` WHERE `id_service` = '$ID'");
mysql_query("DELETE FROM `services` WHERE `id` = '$ID' LIMIT 1");
$_SESSION['message'] = 'Приложение успешно удалено';
header('Location: admin.php');
exit;
}
if (isset($_POST['name']) && isset($_POST['url']) && isset($_GET['act'])){
$name = htmlspecialchars($_POST['name']);
$opis = htmlspecialchars($_POST['opis']);
$url = htmlspecialchars($_POST['url']);
$ic_small = htmlspecialchars($_POST['icon_small']);
$ic_big = htmlspecialchars($_POST['icon_big']);
if (strlen2($name) > 128) { $err[] = 'Название слишком длинное'; }
elseif (strlen2($name) < 2) { $err[] = 'Короткое название'; }
if (strlen2($opis) > 512) { $err[] = 'Описание слишком длинное'; }
elseif (strlen2($opis) < 2) { $err[] = 'Короткое описание'; }
if (strlen2($url) > 128) { $err[] = 'Ссылка слишком длинная'; }
elseif (strlen2($url) < 2) { $err[] = 'Короткая ссылка'; }
if (!isset($err)){
if ($_GET['act'] == 'add'){
mysql_query("INSERT INTO `services` (`name`, `opis`, `url`, `time`, `icon_small`, `icon_big`) values('$name', '$opis', '$url', '$time', '$ic_small', '$ic_big')");
$_SESSION['message'] = 'Новое приложение успешно добавлено';
} elseif (isset($serv['id']) && $_GET['act'] == 'edit') {
mysql_query("UPDATE `services` SET `name` = '$name', `opis` = '$opis', `url` = '$url', `icon_small` = '$ic_small', `icon_big` = '$ic_big' WHERE `id` = '$ID' LIMIT 1");
$_SESSION['message'] = 'Изменения успешно приняты';
}
header('Location: admin.php');
exit;
}
}
if (isset($_GET['act'])) {
if ($_GET['act'] == 'edit') {
?>
<div class="nav2">
<b><?= text($serv['name'])?></b><br />
<?= ($serv['icon_big'] ? '<img src="' . text($serv['icon_big']) . '" style="max-width: 200px;" /><br />' : '')?>
<?= output_text($serv['opis'])?>
<form name="message" action="admin.php?act=edit&sid=<?= $_SESSION['sid']?>&id_service=<?= $ID?>" method="post">
<br>Название<br />
<input class="form-control" name="name" type="text" value="<?= text($serv['name'])?>" /><br />
URL<br />
<input class="form-control" name="url" type="text" value="<?= text($serv['url'])?>" /><br />
Описание<br />
<textarea class="form-control" name="opis" placeholder="<?= __('Опишите основной смысл..')?>"><?= text($serv['opis'])?></textarea><br />
URL маленькой иконки<br />
<input class="form-control" name="icon_small" type="text" value="<?= text($serv['icon_small'])?>"/><br />
URL большой иконки<br />
<input class="form-control" name="icon_big" type="text" value="<?= text($serv['icon_big'])?>" /><br />
<input class="knopka" type="submit" value="Сохранить" />
</form>
</div>
<?
} elseif ($_GET['act'] == 'add') {
?>
<div class="nav2">
<form name="message" action="admin.php?act=add&sid=<?= $_SESSION['sid']?>" method="post">
<br>Название<br />
<input name="name" type="text" value="" /><br />
URL<br />
<input name="url" type="text" value="" /><br />
Описание<br />
<textarea name="opis" placeholder="Опишите основной смысл.."></textarea><br />
URL маленькой иконки<br />
<input name="icon_small" type="text" value=""/><br />
URL большой иконки<br />
<input name="icon_big" type="text" value="" /><br />
<input class="submit" type="submit" value="Добавить" />
</form>
</div>
<?
}
} else {
if ($user['level'] >= 3)
{
?>
<div class="foot"><a href="admin.php?act=add"><img src="/style/icons/edit.gif"> Добавить приложение</a></div>
<?
}
$k_post = mysql_result(mysql_query("SELECT COUNT(id) FROM `services`"), 0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = ($set['p_str'] * $page) - $set['p_str'];
if ($k_post == 0)
{
?>
<div class="main">Нет результатов</div>
<?
}
$q = mysql_query("SELECT * FROM `services` ORDER BY `count` DESC LIMIT $start, $set[p_str]");
while ($service = mysql_fetch_assoc($q)) {
/*-----------зебра-----------*/
if ($num==0)
{echo " <div class='nav1'>\n";
$num=1;
}elseif ($num==1)
{echo " <div class='nav2'>\n";
$num=0;}
/*---------------------------*/
?>
<a href="admin.php?id_service=<?= $service['id']?>&act=edit"><?= ($service['icon_small'] ? '<img src="' . text($service['icon_small']) . '" />' : '')?> <?= text($service['name'])?></a> <span style="float: right;"><a href="admin.php?id_service=<?= $service['id']?>&sid=<?= $_SESSION['sid']?>&act=delete"><img src="/style/icons/delete.png"></a></span>
</div>
<?
}
if ($k_page > 1) {
str('?', $k_page, $page);
}
}
}
include_once '../../sys/inc/tfoot.php';
?>
<?