| /blog/add-post.php |
|---|
| 4,12 → 4,28 |
| $page = new Taios_Page('Blog Posts', '../'); |
| if (!$page->isUserGM($page->getLoggedInUser())) |
| $page->redirect("index.php"); |
| $error = ''; |
| if (isset($_POST['title']) && isset($_POST['content']) && isset($_POST['catagory']) && isset($_POST['parentID'])) |
| $title = $_POST['title']; |
| $content = $_POST['content']; |
| $parentID = $_POST['parentID']; |
| $category = $_POST['category']; |
| if (empty($title)) |
| { |
| $page->query('insert into BlogPosts VALUES(0, ' . $_POST['parentID'] . ', "' . $page->getLoggedInUser()->ID . '", "' . $_POST['title'] . '", "' . $_POST['content'] . '", NOW(), "' . $_POST['catagory'] . '", 0)'); |
| $error = "No Title Specified"; |
| } |
| else if (empty($content)) |
| { |
| $error = "No Content Specified"; |
| } |
| else if (empty($parentID)) |
| { |
| $error = "No Parent ID Specified"; |
| } |
| else |
| { |
| $page->query('INSERT INTO BlogPosts VALUES(0, ' . $parentID . ', "' . $page->getLoggedInUser()->ID . '", "' . $title . '", "' . $content . '", NOW(), "' . $category . '", 0)'); |
| $page->redirect('index.php'); |
| } |
| 25,7 → 41,7 |
| ?> |
| <form action="add-post.php" method="post"> |
| <form action="post-add.php" method="post"> |
| <table> |
| <tr> |
| <td class="bold">Title: </td> |
| 33,11 → 49,11 |
| </tr> |
| <tr> |
| <td class="bold">Content: </td> |
| <td><textarea name="content" style="width: 523px; height: 543px">Content Here</textarea></td> |
| <td><input type="text" name="content" /></td> |
| </tr> |
| <tr> |
| <td class="bold">Catagory: </td> |
| <td><input type="text" name="catagory" /></td> |
| <td><input type="text" name="category" /></td> |
| </tr> |
| <?php |
| /blog/post.php |
|---|
| 4,17 → 4,11 |
| $page = new Taios_Page('Blog Posts', '../'); |
| if (!isset($_GET['id']) || $_GET['id'] == "" || $_GET['id'] == -1) |
| $page->redirect('index.php'); |
| if (!isset($_GET['id'])) |
| $page->redirect("index.php"); |
| $page->drawHeader(); |
| $page->drawBlogCategoriesMenu(); |
| $page->drawMiddle(); |
| $page->drawBlogPostTree($_GET['id'], true); |
| $page->drawBlogPostTree($page->getGetID(), true); |
| $page->drawFooter(); |
| /blog/del-post.php |
|---|
| 2,13 → 2,26 |
| require '../_taios.php'; |
| $page = new Taios_Page('Blog Posts', '../'); |
| $page = new Taios_Page('Delete Blog Post', '../'); |
| if (isset($_GET['id'])) |
| $id = $_GET['id']; |
| if ($id) |
| { |
| if ($page->isUserAdmin($page->getLoggedInUser()) || $page->getLoggedInUser == $page->getBlogPost($_GET['id'])->author->ID) |
| $page->delBlogPost($_GET['id']); |
| if ($page->isUserAdmin($page->getLoggedInUser()) || $page->getLoggedInUser()->ID == $page->getBlogPost($id)->author->ID) |
| { |
| $page->delBlogPost($id); |
| } |
| else |
| { |
| $page->drawError('You do not have permission to access this page.'); |
| } |
| } |
| $page->redirect("index.php"); |
| else |
| { |
| $page->drawError('No ID Specified'); |
| } |
| $page->redirect('index.php'); |
| ?> |
| /blog/index.php |
|---|
| 26,9 → 26,11 |
| { |
| $id = $ids[$i]; |
| $post = $page->getBlogPost($id); |
| write('<a href="post.php?id=' . $id . '"><h3>' . $post->title. '</h3></a>'); |
| write('<h5 style="color: #666666;">Posted On ' . date('l j F Y', $post->datePosted) . ' by ' . $post->user->name . ' (' . $post->user->username . ')</h5>'); |
| write('<p>' . $post->content . '</p>'); |
| write('<br />'); |
| } |