Context Navigation

← Previous Revision
Latest Revision
Next Revision →
Blame
Revision Log

admin_novinky_modify.php@ 561

Last change on this file since 561 was 470, checked in by amun, 16 years ago
Zabezpečení administrace - podle gmlevelu Přidáno Upravování NOVINEK a FINANCÍ
File size: 5.2 KB

Line
1	<?php
2	$lvl = $player -> GetGmLvl();
3	if($lvl > 0){
4	echo "<center>";
5	$q = $_GET['q'];
6	if(empty($q)):
7	echo"<h2>Vyber kategorii</h2>";
8	echo"<p align=center>";
9	echo"<a href=\"?page=admin_novinky_modify&q=1&c=0\">Všechny</a> <br />";
10	echo"<a href=\"?page=admin_novinky_modify&q=1&c=1\">Server novinky</a> <br />";
11	echo"<a href=\"?page=admin_novinky_modify&q=1&c=2\">Gm novinky</a> <br />";
12	echo"<a href=\"?page=admin_novinky_modify&q=1&c=3\">In-Game novinky</a> <br />";
13	echo"<a href=\"?page=admin_novinky_modify&q=1&c=4\">Články</a> <br />";
14
15	elseif($q == 1):
16	$kategorie = $_GET['c'];
17
18	if($kategorie == 0):
19	$where = " ";
20	else:
21	$where = "WHERE category='$kategorie'";
22	endif;
23
24	mysql_connect($db_server, $db_user, $db_pass);
25	mysql_select_db($db_webu);
26	mysql_query("SET NAMES 'utf8'");
27	$pocet = mysql_num_rows(mysql_query("SELECT id FROM articles $where"));
28
29	if($pocet != 0):
30	echo"<table align=center border=1><tr><td><b>Autor</b><td><b>Datum</b><td><b>Nadpis</b><td></tr>";
31
32	$query = mysql_query("SELECT * from articles $where order by date DESC");
33	while($row = mysql_fetch_array($query)){
34	$id = $row['id'];
35	echo"<tr>
36	<td align=center valign=middle>$row[date]
37	<td align=center valign=middle>$row[autor]
38	<td align=center valign=middle>$row[title]
39	<form method=post action=\"?page=admin_novinky_modify&q=2\">
40	<td align=center valign=middle>
41	<input type=hidden name=id value='$id'><input type=submit value='Upravit'>
42	</form></tr>";
43
44	}
45	echo"</table>";
46
47	else:
48	echo"<b>V této kategorii nejsou žádné novinky!</b>";
49	endif;
50
51	elseif($q == 2):
52	$id = $_POST['id'];
53
54	mysql_connect($db_server, $db_user, $db_pass);
55	mysql_select_db($db_webu);
56	mysql_query("SET NAMES 'utf8'");
57	$query = mysql_query("SELECT * from articles where id='$id'");
58
59	while($row = mysql_fetch_array($query)){
60	$autor = $row['autor'];
61	$title = $row['title'];
62	$text = $row['text'];
63	$kategorie = $row['category'];
64	}
65	if($kategorie==1):
66	$option1 = "<option value=1>Server novinky";
67	$option2 = "<option value=2>Gm novinky";
68	$option3 = "<option value=3>In-Game novinky";
69	$option4 = "<option value=4>Články";
70	elseif($kategorie==2):
71	$option1 = "<option value=2>Gm novinky";
72	$option2 = "<option value=1>Server novinky";
73	$option3 = "<option value=3>In-Game novinky";
74	$option4 = "<option value=4>Články";
75	elseif($kategorie==3):
76	$option1 = "<option value=3>In-Game novinky";
77	$option2 = "<option value=2>Gm novinky";
78	$option3 = "<option value=1>Server novinky";
79	$option4 = "<option value=4>Články";
80	elseif($kategorie==4):
81	$option1 = "<option value=4>Články";
82	$option2 = "<option value=2>Gm novinky";
83	$option3 = "<option value=3>In-Game novinky";
84	$option4 = "<option value=1>Server novinky";
85	endif;
86
87	echo"<form method=post action=\"?page=admin_novinky_modify&q=3\"><table align=center><p align=center>";
88	echo"<input type=hidden name=id value='$id'><input type=hidden name=upravit value=1>";
89	echo"<tr><td align=right><b>Autor:</b> <td><input type=text value='$autor' name=autor><br />";
90	echo"<tr><td align=right><b>Nadpis:</b> <td><input type=text value='$title' name=title><br />";
91	echo"
92	<tr><td align=right>
93	<b>Kategorie:</b>
94	<td><select name=kategorie>
95	$option1
96	$option2
97	$option3
98	$option4
99	</select>
100	</table><br /><br />";
101	echo"<table align=center><tr><td valign=top><b>Text:</b> <td><textarea name=text cols=\"30\" rows=\"5\">$text</textarea></table><br />";
102	echo"<br><input type=submit value='Upravit'>";
103
104	elseif($q == 3):
105	$autor = $_POST['autor'];
106	$title = $_POST['title'];
107	$text = $_POST['text'];
108	$kategorie = $_POST['kategorie'];
109	$id = $_POST['id'];
110	$upravit = $_POST['upravit'];
111
112	if($upravit==1 and $lvl > 0):
113
114	mysql_connect($db_server, $db_user, $db_pass);
115	mysql_select_db($db_webu);
116	mysql_query("SET NAMES 'utf8'");
117	$upravit_autor = mysql_query("update articles set autor='$autor' where id='$id'");
118	$upravit_title = mysql_query("update articles set title='$title' where id='$id'");
119	$upravit_text = mysql_query("update articles set text='$text' where id='$id'");
120	$upravit_kategorie = mysql_query("update articles set category='$kategorie' where id='$id'");
121
122	if($upravit_autor and $upravit_title and $upravit_text and $upravit_kategorie):
123	echo"<p align=center><font color=green><b>Úprava novinky byla provedena úspěšně!</b></font><br>";
124	echo"<a href=\"?page=admin\"><-- Do administrace</a>";
125	else:
126	echo"<p align=center><font color=red><b>Při úpravě novinky došlo k chybě, zkuste to prosím později!</b></font><br>";
127	echo"<a href=\"?page=admin\"><-- Do administrace</a>";
128	endif;
129	else:
130	echo"<p align=center><font color=red><b>Nemáte dostatečná oprávnění pro tuto akci!</b></font>";
131	echo"<meta http-equiv=\"refresh\" content=\"3;url=?page=main\">";
132	endif;
133
134	endif;
135	echo"</center>";
136
137	} else {
138	echo"<p align=center><font color=red><b>Nemáte dostatečná oprávnění pro tuto akci!</b></font>";
139	echo"<meta http-equiv=\"refresh\" content=\"3;url=?page=main\">";
140	}
141
142	?>
143
144
145
146
147
148
149
150
151
152
153

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: trunk/pages/admin_novinky_modify.php@ 561

Download in other formats: