| 0,0 → 1,87 |
|---|
| <?php |
| |
| require '../_taios.php'; |
| |
| $page = new Taios_Page('Blog Posts', '../'); |
| |
| if (!isset($_GET['id'])) |
| $id = $_GET['id']; |
| else if (!isset($_POST['id'])) |
| $id = $_POST['id']; |
| else |
| $page->redirect("index.php"); |
| |
| $page->checkLoggedIn(); |
| |
| $post = $page->getBlogPost($id); |
| if (!$page->isUserAdmin($page->getLoggedInUser()) && $page->getLoggedInUser()->ID != $post->author->ID) |
| { |
| $page->drawError('You do not have permission to access this page.'); |
| } |
| |
| $error = ''; |
| |
| if (isset($_POST['id'])) |
| { |
| $title = $_POST['title']; |
| $content = $_POST['content']; |
| $category = $_POST['category']; |
| |
| if (empty($title)) |
| { |
| $error = "No Title Specified"; |
| } |
| else if (empty($content)) |
| { |
| $error = "No Content Specified"; |
| } |
| else |
| { |
| $page->query('update BlogPosts set (Content="' . $content . '", Title="' . $title . '", Category="' . $category . '") where ID=' . $id); |
| $page->redirect('index.php'); |
| } |
| } |
| |
| $page->drawHeader(); |
| $page->drawBlogCategoriesMenu(); |
| $page->drawMiddle(); |
| |
| if (!empty($error)) |
| { |
| $page->drawError($error, false); |
| } |
| |
| ?> |
| |
| <form action="add-post.php?id=<?php echo getParentID(); ?>" method="post"> |
| <table> |
| <tr> |
| <td class="bold">Title: </td> |
| <td><input type="text" name="title" value="<?php echo post->title; ?>/></td> |
| </tr> |
| <tr> |
| <td class="bold">Content: </td> |
| <td><textarea name="content" style="width: 500px; height: 300px;"><?php echo $post->content;</textarea></td> |
| </tr> |
| <tr> |
| <td class="bold">Catagory: </td> |
| <td><input type="text" name="category" /><?php echo $post->category; ?></td> |
| </tr> |
| |
| <?php |
| write('<input type="hidden" name="is" value="' . $id . '" />'); |
| ?> |
| |
| <tr> |
| <td class="bold"></td> |
| <td><input type="submit" value="Post" /></td> |
| </tr> |
| </table> |
| </form> |
| |
| <?php |
| |
| $page->drawFooter(); |
| |
| ?> |
| |