ACC SHELL
<?php
$make = ( isset( $_GET[ "make" ] ) )?$_GET[ "make" ]:"view";
if ( $make == "view" ) {
if ( isset( $_GET[ "do" ] ) ) {
$do = $_GET[ "do" ];
$title = "";
if ( isset( $_GET[ "id" ]) ) {
$id = $_GET[ "id" ];
$query = "SELECT title FROM `newsreel` WHERE ID = $id";
$result = @mysql_query( $query, $dbc );
if ( @mysql_num_rows( $result ) > 0 ) {
$row = mysql_fetch_row( $result );
$title = " <strong>\"".$row[0]."\"</strong>";
}
}
if ( $do == "saved" ) {
message( "Aktualita$title byla úspěčně uložena" );
} elseif ( $do == "updated" ) {
message( "Aktualita$title byla úpěšně editována" );
} elseif ( $do == "deleted" ) {
if ( $title != "" ) {
$query = "DELETE FROM `newsreel` WHERE ID = $id";
$result = mysql_query( $query, $dbc );
if ( $result ) {
message( "Aktualita$title byla úpěšně smazána" );
} else {
message( "Omlouváme se, ale nastala systémová chyba: ". mysql_error() );
}
}
}
}
$query = "SELECT * FROM `newsreel` ORDER BY date DESC LIMIT 0,10";
$result = mysql_query( $query, $dbc );
$table = array();
$i = -1;
if ( mysql_num_rows( $result ) > 0 )
{
while ( $row = mysql_fetch_row( $result ) )
{
/*echo "<tr>\n";
echo "<th>$row[1]</th>\n";
echo "<td><a href=\"?action=actuals&make=edit&id=$row[0]\">Editovat</a></td>\n";
echo "<td><a href=\"?action=actuals&make=del&id=$row[0]\">Smazat</a></td>\n";
echo "</tr>\n";*/
$i++;
$table[ $i ][ 'id' ] = $row[ 0 ];
$table[ $i ][ 'title' ] = $row[ 1 ];
$table[ $i ][ 'display' ] = $row[ 4 ];
}
$smarty->assign( 'table', $table );
}
$smarty->display( 'admin/actuals_view.tpl' );
} elseif ( $make == "viewact" ) {
$id = ( isset( $_GET[ "id" ] ) )?$_GET[ "id" ]:-1;
if ( $id != -1 ) {
$query = "SELECT * FROM `newsreel` WHERE ID = $id";
$result = @mysql_query( $query, $dbc );
if ( @mysql_num_rows( $result ) > 0 ) {
$row = mysql_fetch_row( $result );
$smarty->assign( 'ID', $row[ 0 ] );
$smarty->assign( 'title', $row[ 1 ] );
$smarty->assign( 'content', $row[ 2 ] );
$smarty->display( 'admin/actuals_qview.tpl' );
} else {
message( "Omlouváme se, ale pro zadané ID nebyl v databázi nalezen odpovídající záznam." );
}
} else {
message( "Nebylo zadáno ID aktuality kterou chcete zobrazit" );
}
} elseif ( $make == "add" ) {
if ( isset( $_POST[ "submit" ] ) ) {
$correct = TRUE;
$message = "";
if ( empty( $_POST[ "title" ] ) ) {
$correct = FALSE;
$message .= "<p>Nebyl zadán nadpis aktuality!</p>\n";
}
if ( empty( $_POST[ "content" ] ) ) {
$correct = FALSE;
$message .= "<p>Nebyl zadán obsah aktuality!</p>\n";
}
if ( $correct ) {
$title = htmlspecialchars( $_POST[ "title" ] );
$content = $_POST[ "content" ];
$show = ( $_POST[ "show"] == "on" )?1:0;
$query = "INSERT INTO `newsreel` (ID, title, content, date, display) VALUES (0, '$title', '$content', NOW(), $show)";
$result = @mysql_query( $query, $dbc );
if ( $result) {
$res = @mysql_query( "SELECT ID FROM `newsreel` ORDER BY date DESC LIMIT 0,1", $dbc );
$row = mysql_fetch_array( $res );
header ( "Location: index.php?action=actuals&make=view&do=saved&id=$row[0]" );
} else {
echo "chyba:". mysql_error();
}
} else {
echo "\n". $message. "<p>Zkuste to znovu..</p>\n";
}
}
echo '
<script language="javascript" type="text/javascript" src="./scripts/tiny_mce/tiny_mce.js"></script>
<script language="javascript" type="text/javascript">
// Notice: The simple theme does not use all options some of them are limited to the advanced theme
tinyMCE.init({
mode : "textareas",
theme : "advanced",
language : "cs"
});
</script>';
$smarty->assign( 'title', $title );
$smarty->assign( 'content', $_POST[ "content" ] );
if ( $_POST[ "show"] == "on" || !isset( $_POST[ "submit" ] ) ) {
$smarty->assign( 'show', 'on' );
}
$smarty->display( "admin/actuals_add.tpl" );
} elseif ( $make == "edit" ) {
$id = ( isset( $_GET[ "id" ] ) )?$_GET[ "id" ]:-1;
if ( isset( $_POST[ "submit" ] ) ) {
$correct = TRUE;
$message = "";
if ( empty( $_POST[ "title" ] ) ) {
$correct = FALSE;
$message .= "<p>Nebyl zadán nadpis aktuality!</p>\n";
}
if ( empty( $_POST[ "content" ] ) ) {
$correct = FALSE;
$message .= "<p>Nebyl zadán obsah aktuality!</p>\n";
}
if ( $correct ) {
$title = htmlspecialchars( $_POST[ "title" ] );
$content = $_POST[ "content" ];
$show = ( $_POST[ "show"] == "on" )?1:0;
$query = "UPDATE `newsreel` SET `title` = '$title', `content` = '$content', `display` = $show WHERE ID = $id";
$result = @mysql_query( $query, $dbc );
if ( $result) {
header ( "Location: index.php?action=actuals&make=view&do=updated&id=$id" );
} else {
echo "chyba:". mysql_error();
}
} else {
echo "\n". $message. "<p>Zkuste to znovu..</p>\n";
}
}
if ( $id != -1 ) {
$query = "SELECT * FROM `newsreel` WHERE ID = $id";
$result = mysql_query( $query, $dbc );
if ( mysql_num_rows( $result ) > 0 ) {
$row = mysql_fetch_row( $result );
echo '
<script language="javascript" type="text/javascript" src="./scripts/tiny_mce/tiny_mce.js"></script>
<script language="javascript" type="text/javascript">
// Notice: The simple theme does not use all options some of them are limited to the advanced theme
tinyMCE.init({
mode : "textareas",
theme : "advanced",
language : "cs"
});
</script>';
$title = ( !isset( $_POST[ "submit" ] ) )?$row[1]:$_POST[ "title" ];
$content = ( !isset( $_POST[ "submit" ] ) )?$row[2]:$_POST[ "content" ];
$smarty->assign( 'title', $title );
$smarty->assign( 'content', $content );
if ( $_POST[ "show"] == "on" || ( !isset( $_POST[ "submit" ] ) && $row[4] == 1 ) ) {
$smarty->assign( 'show', 'on' );
}
$smarty->display( "admin/actuals_add.tpl" );
} else {
echo "<p>Omlouváme se, ale požadovaný příspěvek nebyl v databázi nalezen.</p>";
}
} else {
echo "<p>Nebylo zadáno ID aktuality kterou chcete editovat.</p>";
}
} elseif ( $make == "del" ) {
$id = ( isset( $_GET[ "id" ] ) )?$_GET[ "id" ]:-1;
if ( $id != -1 ) {
$query = "SELECT * FROM `newsreel` WHERE ID = $id";
$result = mysql_query( $query, $dbc );
if ( mysql_num_rows( $result ) > 0 ) {
header ( "Location: index.php?action=actuals&make=view&do=deleted&id=$id" );
} else {
message ( "Omlouváme se, ale požadovaný příspěvek nebyl v databázi nalezen." );
}
} else {
message ( "Nebylo zadáno ID aktuality kterou chcete smazat." );
}
} elseif ( $make == "visible" ) {
$id = ( isset( $_GET[ "id" ] ) )?$_GET[ "id" ]:-1;
$do = ( isset( $_GET[ "do" ] ) )?$_GET[ "do" ]:"show";
if ( $id != -1 ) {
$query = "SELECT ID FROM `newsreel` WHERE ID = $id";
$result = @mysql_query( $query, $dbc );
if ( @mysql_num_rows( $result ) > 0 ) {
if ( $do == "hide" ) {
$show = 0;
} else {
$show = 1;
}
$query = "UPDATE `newsreel` SET `display` = $show WHERE ID = $id";
$result = @mysql_query( $query, $dbc );
if ( $result) {
header ( "Location: index.php?action=actuals&make=view&do=updated&id=$id" );
} else {
message( "Omlouváme se, ale Váš požadavek nemohl být obsloužen kůli systémové chybě:<br/><em>". mysql_error(). "</em>" );
}
} else {
message( "Omlouváme se, ale pro zadané ID nebyl v databázi nalezen žádný odpovídající příspěvek. <br/> Požadovaná akce nemůže být provedena." );
}
} else {
if ( $do == "hide" ) {
$act = "zneviditelnit";
} else {
$act = "zviditelnit";
}
message( "Nebylo zadáno ID aktuality kterou chcete $act." );
}
} else {
message( "Požadovaná akce neexistuje." );
}
?>
ACC SHELL 2018