File size: 3.93Kb
<?php
require( '../../sys/inc/core.php' );
$set['title'] = 'Редактирование';
include_once '../../sys/inc/thead.php';
$post['name_url'] = null;
$post['url'] = null;
$post['title'] = null;
$post['msg'] = null;
if ( isset( $user ) && $user['level'] < 3 )
header( "Location: /" );
title();
aut();
if ( isset( $_GET['act'] ) && $_GET['act'] == 'edit' ) {
if ( isset( $_GET['id'] ) && db::count("SELECT COUNT(*) FROM `rules_p` WHERE `id` = '" . intval( $_GET['id'] ) . "'") == 1 ) {
$post = db::fetch("SELECT * FROM `rules_p` WHERE `id` = '" . intval( $_GET['id'] ) . "' LIMIT 1", ARRAY_A);
$ank = db::fetch("SELECT * FROM `user` WHERE `id` = $post[id_user] LIMIT 1", ARRAY_A);
if ( isset( $_POST['change'] ) && isset( $_GET['id'] ) && isset( $_POST['name'] ) && $_POST['name'] != NULL ) {
$id = intval( $_GET['id'] );
$msg = my_esc( $_POST['name'] );
db::query("UPDATE `rules_p` SET `msg` = '$msg' WHERE `id` = '$id' LIMIT 1");
$_SESSION['message'] = 'Пункт меню успешно изменен';
header( "Location: post.php?id=$post[id_news]" );
exit;
}
}
if ( isset( $_GET['id'] ) && isset( $_GET['act'] ) && $_GET['act'] == 'edit' ) {
echo '<form action="?id=' . $post['id'] . '&act=edit" method="post">';
echo 'Редактирование поста:<br />';
echo '<textarea name="name">' . text( $post['msg'] ) . '</textarea><br />';
echo '<input class="submit" name="change" type="submit" value="Изменить" /><br />';
echo '</form>';
}
}
if ( isset( $_GET['act'] ) && $_GET['act'] == 'edits' ) {
if ( isset( $_GET['id'] ) && db::count("SELECT COUNT(*) FROM `rules` WHERE `id` = '" . intval( $_GET['id'] ) . "'") == 1 ) {
$post = db::fetch("SELECT * FROM `rules` WHERE `id` = '" . intval( $_GET['id'] ) . "' LIMIT 1", ARRAY_A);
$ank = db::fetch("SELECT * FROM `user` WHERE `id` = $post[id_user] LIMIT 1", ARRAY_A);
if ( isset( $_POST['change'] ) && isset( $_GET['id'] ) ) {
$id = intval( $_GET['id'] );
$name = my_esc( $_POST['msg'] );
$url = esc( $_POST['url'], 1 );
$name_url = esc( $_POST['name_url'], 1 );
$title = esc( $_POST['title'], 1 );
db::query("UPDATE `rules` SET `msg` = '$name' WHERE `id` = '$id' LIMIT 1");
db::query("UPDATE `rules` SET `title` = '$title' WHERE `id` = '$id' LIMIT 1");
db::query("UPDATE `rules` SET `url` = '$url' WHERE `id` = '$id' LIMIT 1");
db::query("UPDATE `rules` SET `name_url` = '$name_url' WHERE `id` = '$id' LIMIT 1");
$_SESSION['message'] = 'Пункт меню успешно изменен';
header( "Location: index.php" );
exit;
}
}
if ( isset( $_GET['id'] ) && $_GET['id'] == $post['id'] && isset( $_GET['act'] ) && $_GET['act'] == 'edits' ) {
echo '<form action="?id=' . $post['id'] . '&act=edits" method="post">';
echo 'Название ссылки:<br /><input name="name_url" size="16" value="' . text( $post['name_url'] ) . '" type="text" /><br />';
echo 'Адрес ссылки:<br /><input name="url" size="16" value="' . text( $post['url'] ) . '" type="text" /><br />';
echo 'Название пункта:<br /><input name="title" size="16" value="' . text( $post['title'] ) . '" type="text" /><br />';
echo 'Редактирование текста:<br />';
echo '<textarea name="msg">' . text( $post['msg'] ) . '</textarea><br />';
echo '<input class="submit" name="change" type="submit" value="Изменить" /><br />';
echo '</form>';
}
}
echo '<div class="foot"><img src="/style/icons/str2.gif" alt="*"/> <a href="index.php">Информация</a></div>';
include_once '../../sys/inc/tfoot.php';
?>