Project

General

Profile

« Previous | Next » 

Revision 1289

Added by kweitzel almost 15 years ago

Branch 2.8.1 merged back into Trunk

View differences:

save_comment.php
1
<?php
2

  
3
// $Id$
4

  
5
/*
6

  
7
 Website Baker Project <http://www.websitebaker.org/>
8
 Copyright (C) 2004-2009, Ryan Djurovich
9

  
10
 Website Baker is free software; you can redistribute it and/or modify
11
 it under the terms of the GNU General Public License as published by
12
 the Free Software Foundation; either version 2 of the License, or
13
 (at your option) any later version.
14

  
15
 Website Baker is distributed in the hope that it will be useful,
16
 but WITHOUT ANY WARRANTY; without even the implied warranty of
17
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18
 GNU General Public License for more details.
19

  
20
 You should have received a copy of the GNU General Public License
21
 along with Website Baker; if not, write to the Free Software
22
 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
23

  
24
*/
25

  
26
require('../../config.php');
27

  
28
// Get id
29
if(!isset($_POST['comment_id']) OR !is_numeric($_POST['comment_id']) OR !isset($_POST['post_id']) OR !is_numeric($_POST['post_id'])) {
30
	header("Location: ".ADMIN_URL."/pages/index.php");
31
	exit(0);
32
} else {
33
	$comment_id = $_POST['comment_id'];
34
}
35

  
36
// Include WB admin wrapper script
37
$update_when_modified = true; // Tells script to update when this page was last updated
38
require(WB_PATH.'/modules/admin.php');
39

  
40
// Validate all fields
41
if($admin->get_post('title') == '' AND $admin->get_post('comment') == '') {
42
	$admin->print_error($MESSAGE['GENERIC']['FILL_IN_ALL'], WB_URL.'/modules/news/modify_comment.php?page_id='.$page_id.'&section_id='.$section_id.'comment_id='.$id);
43
} else {
44
	$title = strip_tags($admin->get_post_escaped('title'));
45
	$comment = strip_tags($admin->get_post_escaped('comment'));
46
	$post_id = $admin->get_post('post_id');
47
}
48

  
49
// Update row
50
$database->query("UPDATE ".TABLE_PREFIX."mod_news_comments SET title = '$title', comment = '$comment' WHERE comment_id = '$comment_id'");
51

  
52
// Check if there is a db error, otherwise say successful
53
if($database->is_error()) {
54
	$admin->print_error($database->get_error(), WB_URL.'/modules/news/modify_comment.php?page_id='.$page_id.'&section_id='.$section_id.'&comment_id='.$id);
55
} else {
56
	$admin->print_success($TEXT['SUCCESS'], WB_URL.'/modules/news/modify_post.php?page_id='.$page_id.'&section_id='.$section_id.'&post_id='.$post_id);
57
}
58

  
59
// Print admin footer
60
$admin->print_footer();
61

  
1
<?php
2
/**
3
 *
4
 * @category        modules
5
 * @package         news
6
 * @author          WebsiteBaker Project
7
 * @copyright       2004-2009, Ryan Djurovich
8
 * @copyright       2009-2010, Website Baker Org. e.V.
9
 * @link			http://www.websitebaker2.org/
10
 * @license         http://www.gnu.org/licenses/gpl.html
11
 * @platform        WebsiteBaker 2.8.x
12
 * @requirements    PHP 4.3.4 and higher
13
 * @version         $Id$
14
 * @filesource		$HeadURL$
15
 * @lastmodified    $Date$
16
 *
17
 */
18

  
19
require('../../config.php');
20

  
21
// Get id
22
if(!isset($_POST['comment_id']) OR !is_numeric($_POST['comment_id']) OR !isset($_POST['post_id']) OR !is_numeric($_POST['post_id']))
23
{
24

  
25
	header("Location: ".ADMIN_URL."/pages/index.php");
26
	exit( 0 );
27
}
28
else
29
{
30
	$comment_id = $_POST['comment_id'];
31
}
32

  
33
// Include WB admin wrapper script
34
$update_when_modified = true; // Tells script to update when this page was last updated
35
require(WB_PATH.'/modules/admin.php');
36

  
37
// Validate all fields
38
if($admin->get_post('title') == '' AND $admin->get_post('comment') == '')
39
{
40
	$admin->print_error($MESSAGE['GENERIC']['FILL_IN_ALL'], WB_URL.'/modules/news/modify_comment.php?page_id='.$page_id.'&section_id='.$section_id.'comment_id='.$id);
41
}
42
else
43
{
44
	$title = strip_tags($admin->get_post_escaped('title'));
45
	$comment = strip_tags($admin->get_post_escaped('comment'));
46
	$post_id = $admin->get_post('post_id');
47
}
48

  
49
// Update row
50
$database->query("UPDATE ".TABLE_PREFIX."mod_news_comments SET title = '$title', comment = '$comment' WHERE comment_id = '$comment_id'");
51

  
52
// Check if there is a db error, otherwise say successful
53
if($database->is_error())
54
{
55
	$admin->print_error($database->get_error(), WB_URL.'/modules/news/modify_comment.php?page_id='.$page_id.'&section_id='.$section_id.'&comment_id='.$id);
56
}
57
else
58
{
59
	$admin->print_success($TEXT['SUCCESS'], WB_URL.'/modules/news/modify_post.php?page_id='.$page_id.'&section_id='.$section_id.'&post_id='.$post_id);
60
}
61

  
62
// Print admin footer
63
$admin->print_footer();
64

  
62 65
?>
63 66

  

Also available in: Unified diff