/phpEventCalendar/eventsubmit.php

https://github.com/brownjohnf/senegad · PHP · 118 lines · 102 code · 16 blank · 0 comment · 39 complexity · 5005bc3fac72c6d75ec1fa3d3001e44a MD5 · raw file 

    

  1. <?php
    2. 

  2. require("config.php");
    3. 

  3. require("./lang/lang.admin." . LANGUAGE_CODE . ".php");
    4. 

  4. require("functions.php");
    5. 

  5. 

  6. if (auth()) {
    7. 

  7. 	switch ($_GET['flag']) {
    8. 

  8. 		case "add" :
    9. 

  9. 			submitEventData();
    10. 

  10. 			break;
    11. 

  11. 		case "edit":
    12. 

  12. 			$id = (int) $_GET['id'];
    13. 

  13. 			
    14. 

  14. 			if (!empty($id))
    15. 

  15. 				submitEventData($id);
    16. 

  16. 			else
    17. 

  17. 				$lang['accesswarning'];
    18. 

  18. 			break;
    19. 

  19. 		case "delete":
    20. 

  20. 			$month 	= (int) $_GET['month'];
    21. 

  21. 			$year	= (int) $_GET['year'];
    22. 

  22. 			$id 	= (int) $_GET['id'];
    23. 

  23. 			
    24. 

  24. 			if (!(empty($id) && empty($month) && empty($year)))
    25. 

  25. 				deleteEvent($id, $month, $year);
    26. 

  26. 			else
    27. 

  27. 				$lang['accesswarning'];
    28. 

  28. 			break;
    29. 

  29. 		default:
    30. 

  30. 			$lang['accesswarning'];
    31. 

  31. 	}
    32. 

  32. } else {
    33. 

  33. 	echo $lang['accessdenied'];
    34. 

  34. }
    35. 

  35. 

  36. 

  37. function submitEventData ($id="")
    38. 

  38. {
    39. 

  39. 	global $lang;
    40. 

  40. 	
    41. 

  41. 	$uid 		= $_POST['uid'];
    42. 

  42. 	$title 		= addslashes($_POST['title']);
    43. 

  43. 	$title		= strip_tags($title);
    44. 

  44. 	$text 		= addslashes($_POST['text']);
    45. 

  45. 	$text		= strip_tags($text);
    46. 

  46. 	$month 		= $_POST['month'];
    47. 

  47. 	$day 		= $_POST['day'];
    48. 

  48. 	$year 		= $_POST['year'];
    49. 

  49. 	$shour 		= $_POST['start_hour'];
    50. 

  50. 	$sminute 	= $_POST['start_min'];
    51. 

  51. 	$s_ampm 	= $_POST['start_am_pm'];
    52. 

  52. 	$ehour 		= $_POST['end_hour'];
    53. 

  53. 	$eminute 	= $_POST['end_min'];
    54. 

  54. 	$e_ampm 	= $_POST['end_am_pm'];
    55. 

  55. 	
    56. 

  56. 	if ($shour == 0 && $sminute == 0 && $s_ampm == 0) {
    57. 

  57. 		$starttime = "55:55:55";
    58. 

  58. 	} else {
    59. 

  59. 		if ($s_ampm == 1 && $shour != 12) $shour = $shour + 12;
    60. 

  60. 		if ($s_ampm == 0 && $shour == 12) $shour = 0;
    61. 

  61. 		$starttime = "$shour:$sminute:00";
    62. 

  62. 	}
    63. 

  63. 	
    64. 

  64. 	if ($ehour == 0 && $eminute == 0 && $e_ampm == 0) {
    65. 

  65. 		$endtime = "55:55:55";
    66. 

  66. 	} else {
    67. 

  67. 		if ($e_ampm == 1 && $ehour != 12) $ehour = $ehour + 12;
    68. 

  68. 		if ($e_ampm == 0 && $ehour == 12) $ehour = 0;
    69. 

  69. 		$endtime = "$ehour:$eminute:00";
    70. 

  70. 	}
    71. 

  71. 	
    72. 

  72. 	if ($id) {
    73. 

  73. 		$sql = "UPDATE " . DB_TABLE_PREFIX . "mssgs SET uid='$uid', m='$month', d='$day', y='$year', ";
    74. 

  74. 		$sql .= "start_time='$starttime', end_time='$endtime', title='$title', text='$text' ";
    75. 

  75. 		$sql .= "WHERE id=$id";
    76. 

  76. 		$result = $lang['updated'];
    77. 

  77. 	} else {
    78. 

  78. 		$sql = "INSERT INTO " . DB_TABLE_PREFIX . "mssgs SET uid=$uid, m=$month, d=$day, y=$year, ";
    79. 

  79. 		$sql .= "start_time='$starttime', end_time='$endtime', title='$title', text='$text'";
    80. 

  80. 		$result = $lang['added'];
    81. 

  81. 	}
    82. 

  82. 	
    83. 

  83. 	mysql_connect(DB_HOST, DB_USER, DB_PASS) or die(mysql_error());
    84. 

  84. 	mysql_select_db(DB_NAME) or die(mysql_error());
    85. 

  85. 	
    86. 

  86. 	mysql_query($sql) or die(mysql_error());
    87. 

  87. ?>
    88. 

  88. 	<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
    89. 

  89. 	<html>
    90. 

  90. 	<head>
    91. 

  91. 		<link rel="stylesheet" type="text/css" href="css/popwin.css">
    92. 

  92. 		<script language="JavaScript">
    93. 

  93. 			opener.location = 
    94. 

  94. 				"index.php?month=<?php echo $month ?>&year=<?php echo $year ?>";
    95. 

  95. 			window.setTimeout('window.close()', 1000);
    96. 

  96. 		</script>
    97. 

  97. 	</head>
    98. 

  98. 	<body>
    99. 

  99. 	
    100. 

  100. 	<div align=\"center\" class=\"display_txt\">
    101. 

  101. 	<?php echo stripslashes($title) ?> <?php echo $result ?></div>
    102. 

  102. 	
    103. 

  103. 	</body>
    104. 

  104. 	</html>
    105. 

  105. <?php	
    106. 

  106. }
    107. 

  107. 

  108. function deleteEvent($id, $m, $y)
    109. 

  109. {
    110. 

  110. 	mysql_connect(DB_HOST, DB_USER, DB_PASS) or die(mysql_error());
    111. 

  111. 	mysql_select_db(DB_NAME) or die(mysql_error());
    112. 

  112. 	
    113. 

  113. 	$sql = "DELETE FROM " . DB_TABLE_PREFIX . "mssgs WHERE id = $id";
    114. 

  114. 	$result = mysql_query($sql) or die(mysql_error());
    115. 

  115. 	
    116. 

  116. 	header("Location: index.php?month=$m&year=$y");
    117. 

  117. }
    118. 

  118. ?>
    119.