Файл: backup/admin/for.php
Строк: 118
<?
require_once('../core/start.php');
func::is_auth();
if($user['level']<2){
header('location:/');
exit;
}
$title = 'Управление пользователем';
require_once(root.'core/header.php');
func::head_menu();
switch($act){
default:
$array = core::$dbs-> query("SELECT * FROM forum_r ORDER BY name DESC");
if($array->rowCount()==0)func::error('Категорий нет!');
while($arr = $array -> fetch()){
echo '<div class="main"><font color="red"><b>'.$arr['name'].'</b></font> [<a href="?act=editr&id='.$arr['id'].'">ред</a>] [<a href="?act=delr&id='.$arr['id'].'">del</a>]<br/>'.$arr['value'].'</div>';
$praz = core::$dbs-> query("SELECT * FROM forum_pr WHERE id_r = ? ORDER BY name DESC",array($arr['id']));
if($praz->rowCount()==0)func::error('Подкатегорий нет!');
while($pr = $praz -> fetch()){
echo '<div class="main">'.$pr['name'].' [<a href="?act=editpr&id='.$pr['id'].'">ред</a>] [<a href="?act=delpr&id='.$pr['id'].'">del</a>]<br/>'.$arr['about'].'</div>';
}
}
echo '<a class="l1" href="?act=addr">Добавить форум</a>';
echo '<a class="l1" href="?act=addpr">Добавить подфорум</a>';
break;
case 'addr':
if(isset($_POST['ok'])){
$name = func::check($_POST['name']);
$about = func::check($_POST['about']);
if(!empty($name)){
if(core::$dbs->querySingle("SELECT COUNT(id) FROM forum_r WHERE name = ?",array($name))==0){
core::$dbs->query("INSERT INTO forum_r SET name = ?, value = ?",array($name,$about));
header('location:?');
} else func::error('Такой форум уже есть!');
} else func::error('Такой подфорум уже есть!');
}
echo '<form action="?act=addr" method="post">Название:<br/><input type="text" name="name"/><br/>Описание:<br/><textarea name="about"></textarea><br/><input type="submit" name="ok" value="Добавить"/></form>';
break;
case 'addpr':
if(isset($_POST['ok'])){
$id_r = abs(intval($_POST['id_r']));
$name = func::check($_POST['name']);
$about = func::check($_POST['about']);
if(!empty($name)){
if(core::$dbs->querySingle("SELECT COUNT(id) FROM forum_pr WHERE name = ?",array($name))==0){
core::$dbs->query("INSERT INTO forum_pr SET name = ?, value = ?, id_r = ?",array($name,$about,$id_r));
header('location:?');
} else func::error('Такой форум уже есть!');
} else func::error('Такой подфорум уже есть!');
}
echo '<form action="?act=addpr" method="post">Название:<br/><input type="text" name="name"/><br/>Описание:<br/><textarea name="about"></textarea><br/>Категория:<br/><select name="id_r">';
$category = core::$dbs-> query("SELECT * FROM forum_r ORDER BY name DESC");
while($cat = $category -> fetch()){
echo '<option value="'.$cat['id'].'">'.$cat['name'].'</option>';
}
echo '</select><br/><input type="submit" name="ok" value="Добавить"/></form>';
break;
case 'delr':
core::$dbs->query("DELETE FROM forum_r WHERE id = ?",array(abs(intval($_GET['mid']))));
core::$dbs->query("DELETE FROM forum_pr WHERE id_r = ?",array(abs(intval($_GET['mid']))));
header('location:?');
break;
case 'delpr':
core::$dbs->query("DELETE FROM forum_pr WHERE id = ?",array(abs(intval($_GET['id']))));
header('location:?');
break;
case 'editr':
$id = isset($_GET['id']) ? abs(intval($_GET['id'])) : false;
$inf = core::$dbs-> queryFetch("SELECT * FROM forum_r WHERE id = ? LIMIT 1",array($id));
if(empty($id)){
header('location:/');
exit;
}
if(isset($_POST['ok'])){
$name = func::check($_POST['name']);
$about = func::check($_POST['about']);
if(!empty($name)){
core::$dbs->query("UPDATE forum_r SET name = ?, value = ? WHERE id = ? LIMIT 1",array($name,$about,$id));
header('location:?');
} else func::error('Введите название форума!');
}
echo '<form action="?act=editr&id='.$id.'" method="post">Название:<br/><input type="text" name="name" value="'.$inf['name'].'"/><br/>Описание:<br/><textarea name="about">'.$inf['value'].'</textarea><br/><input type="submit" name="ok" value="Добавить"/></form>';
break;
case 'editpr':
$id = isset($_GET['id']) ? abs(intval($_GET['id'])) : false;
$inf = core::$dbs-> queryFetch("SELECT * FROM forum_pr WHERE id = ? LIMIT 1",array($id));
if(empty($id)){
header('location:/');
exit;
$name = func::check($_POST['name']);
$about = func::check($_POST['about']);
$id_r = abs(intval($_POST['id_r']));
if(!empty($name)){
core::$dbs->query("UPDATE forum_r SET name = ?, value = ? WHERE id = ? LIMIT 1",array($name,$about,$id));
header('location:?');
} else func::error('Введите название подфорума!');
}
echo '<form action="?act=editpr&id='.$id.'" method="post">Название:<br/><input type="text" name="name" value="'.$inf['name'].'"/><br/>Описание:<br/><textarea name="about">'.$inf['value'].'</textarea><br/> <input type="submit" name="ok" value="Добавить"/></form>';
break;
}
echo '<a class="l1" href="?">Админка</a>';
func::footer_menu();
require_once(root.'core/footer.php');
?>