File size: 1.46Kb
<?
$mod = $pdo->query(("SELECT COUNT(*) FROM `soo_users` WHERE `id_soo` = '$soo[id]' AND `id_user`='$user[id]' AND `mod` = '1' LIMIT 1"),0)->fetchColumn();
if(isset($user) && $user['id']==$soo['admid'] || $mod)
{
if (isset($_GET['act']) && isset($_GET['ok']) && $_GET['act']=='set' && isset($_POST['name']))
{
$name=esc(stripcslashes(htmlspecialchars($_POST['name'])));
if (utf8_strlen($name)<3)$err='Слишком короткое название';
if (utf8_strlen($name)>32)$err='Слишком днинное название';
$name=htmlspecialchars($name);
if (!isset($err)){
$pdo->query("UPDATE `soo_forums` SET `name` = '$name' WHERE `id` = '$forum[id]' AND `id_soo`='$soo[id]' LIMIT 1");
$razdel=$pdo->query(("SELECT * FROM `soo_forums` WHERE `id` = '$forum[id]' AND `id_soo`='$soo[id]' LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
$_SESSION['message'] = 'Изменения успешно приняты';
header("Location: index.php?id=$soo[id]");
}
}
if (isset($_GET['act']) && isset($_GET['ok']) && $_GET['act']=='delete')
{
$pdo->query("DELETE FROM `soo_forums` WHERE `id` = '$forum[id]' AND `id_soo`='$soo[id]'");
$pdo->query("DELETE FROM `soo_forum_thems` WHERE `id_forum` = '$forum[id]' AND `id_soo`='$soo[id]'");
$pdo->query("DELETE FROM `soo_forum_mess` WHERE `id_forum` = '$forum[id]' AND `id_soo`='$soo[id]'");
$_SESSION['message'] = 'Раздел успешно удален';
header("Location: index.php?id=$soo[id]");
err();
}
}
?>