source: action.php@ 36

<?php

  include('includes/global.php');

  if (array_key_exists('delete', $_GET) and Licence(1)) {
    $QuestID = $_GET['ID'];       
    $Database->SQLCommand("DELETE FROM quests WHERE ID = '$QuestID' AND Language <> '0'");
    echo 'P�eklad byl smaz�n!';   
      WriteLog('P�eklad smaz�n! <a href="form.php?ID='.$QuestID.'">'.$QuestID.'</a>', 4);
  }

  if (array_key_exists('type_translation', $_POST) and Licence(1)) {
    if (array_key_exists('1', $_POST)) 
      $check = 1;     
    else $check = 0;
    $ID_translation = $_POST['ID_translation'];       
    $type_translation = $_POST['type_translation'];       
    $Database->SQLCommand("DELETE FROM tag WHERE  ID_user = ".$_SESSION['UserID']." AND ID_translation = $ID_translation AND type_translation = $type_translation");
    $Database->SQLCommand("INSERT INTO `tag` ( `type_translation` , `ID_translation` , `ID_user` , `tag` )
      VALUES ('$type_translation', '$ID_translation', '".$_SESSION['UserID']."', '$check')");
    echo 'P�eklad ozna�en!';   
    if ($type_translation == 1)
      WriteLog('P�eklad ozna�en: '.$check.' <a href="form.php?ID='.$ID_translation.'">'.$ID_translation.'</a>', 5);
    if ($type_translation == 2)
      WriteLog('P�eklad ozna�en: '.$check.' <a href="npc_form.php?ID='.$ID_translation.'">'.$ID_translation.'</a>', 5);
    if ($type_translation == 3)
      WriteLog('P�eklad ozna�en: '.$check.' <a href="page_form.php?ID='.$ID_translation.'">'.$ID_translation.'</a>', 5);
  }

  if (array_key_exists('admin_check', $_GET) and Licence(2)) {
    $ID = $_GET['ID'];       
    $admin_check = $_GET['admin_check'];       
    $entry = mysql_fetch_array($Database->SQLCommand("SELECT entry FROM quests Where ID = $ID"));
    $Database->SQLCommand("UPDATE quests SET admin_check = '0' WHERE entry = '".$entry['entry']."' AND Language <> '0'");
    $Database->SQLCommand("UPDATE quests SET admin_check = '$admin_check' WHERE ID = '$ID' AND Language <> '0'");
    if ($admin_check == 1) {
      echo 'P�eklad byl zkontrolov�n!';   
      WriteLog('P�eklad byl zkontrolov�n! <a href="form.php?ID='.$ID.'">'.$ID.'</a>', 4);
    } else {
      echo 'U p�ekladu bylo zru�eno zkontrolov�n�!';   
      WriteLog('U p�ekladu bylo zru�eno zkontrolov�n�! <a href="form.php?ID='.$ID.'">'.$ID.'</a>', 4);
    }
  }

  if (array_key_exists('NotComplete', $_GET) and Licence(1)) {
    $QuestID = $_GET['ID'];
    $Database->SQLCommand("UPDATE quests SET Complete = '0' WHERE ID = '$QuestID'");
    echo 'P�eklad byl vr�cen k oprav�!';   
      WriteLog('P�eklad byl vr�cen k oprav� <a href="form.php?ID='.$QuestID.'">'.$QuestID.'</a>', 4);
  }

  if (array_key_exists('shoutbox', $_GET)) {
    $shoutbox = $_GET['shoutbox'];
    if ($shoutbox == '') {
      echo '<form action="action.php?shoutbox=1" method="post">
      U�ivatel: ';
      if (Licence(0)) echo '<b>'.$_SESSION['User'].'</b><br />'; else  echo '<input type="text" name="user"><br />';
            echo 'Text zpr�vy: <br>
            <textarea name="text" cols="40"></textarea> <br>
            <input type="submit" value="Ulo�it"><br />
            </form>';
    } else {
      if (Licence(0)) $user = $_SESSION['User']; else {
        die('Pro vkladani musite byt registrovani!');
      }
      $text = $_POST['text'];
      $Database->SQLCommand("INSERT INTO `shoutbox` ( `user` , `text` , `date` , `IP` ) 
      VALUES ( '$user', '$text', now(), '".$_SERVER['REMOTE_ADDR']."');");
      echo 'Zpr�va vlo�ena!<br>Budete p�esm�rov�ni...';   
            echo '
        <script type="text/javascript" language="JavaScript" charset="iso-8859-2">
            setTimeout("parent.location.href=\'index.php\'",1000)
        </script>';

    }
  }

  if (array_key_exists('vote', $_GET)) {
    $questID = $_GET['ID'];
    $vote = $_GET['vote'];
    $IDuser = $_SESSION['UserID'];
    
    if (($vote > 5) OR ($vote < 1)) die ('�patn� zn�mka');
    

    $Line = mysql_fetch_row($Database->SQLCommand("SELECT * FROM quests_vote WHERE IDuser = '$IDuser' AND IDquest = '$questID'"));
    if ((!$Line) and (Licence(0))) {  
      $Line = mysql_fetch_array($Database->SQLCommand("SELECT Vote,CountVote FROM quests WHERE ID = '$questID'"));
      $CountVote = $Line['CountVote']+1;
      $OldVote = $Line['Vote']*$Line['CountVote'];
      $NewVote = ($OldVote+$vote)/$CountVote;
      
      $Database->SQLCommand("UPDATE quests SET Vote = '$NewVote', CountVote = '$CountVote' WHERE ID = '$questID'");
    
      $Database->SQLCommand("INSERT INTO `quests_vote` ( `IDquest` , `IDuser` , `vote` ) VALUES ( '$questID', '$IDuser', '$vote');");
      echo 'Hlas byl ulo�en! Hlasoval jste: '.$vote.'<br /> Nyn� je zn�mka p�ekladu '.$NewVote;   
    
      WriteLog('U�ivatel hlasoval: '.$vote.'! Nyn� je zn�mka p�ekladu (<a href="form.php?ID='.$questID.'">'.$questID.'</a>): '.$NewVote, 5);
    } else echo 'Ji� jste hlasoval nebo nem��ete hlasovat!';
  }

  ShowFooter();      
?>