bedbreakah

1. <?php
2.  
3. require_once 'connect.php';
4.  
5. $todo = "SELECT * from items";
6. $result = mysqli_query($conn, $todo);
7. $doneBox = 0;
8.  
9. if (!$result)
10. {
11. printf ('<pre>We have a problem: ' . mysqli_error($conn) . '<pre>');
12. }
13. if (isset ($_POST['submitted']))
14. {
15. $itemName = $_POST['name'];
16. $itemUser = $_POST['user'];
17.  
18. if (isset ($_POST['done']) && $_POST['done'] == true)
19. {
20. $doneBox = 1;
21. }
22. $doDate = date("Y-m-d H:i:s");
23. $dbInsert = "INSERT into items (name, user, done, date) values ('$itemName', '$itemUser', '$doneBox', '$doDate')";
24. if (!mysqli_query($conn, $dbInsert))
25. {
26. die ('Could not add new item');
27. }
28. header('Location: '.$_SERVER['PHP_SELF']);
29. die;
30. }
31.  
32. ?>
33.  
34. <script src="http://code.jquery.com/jquery-1.10.2.js"></script>
35. <script src="http://code.jquery.com/ui/1.11.0/jquery-ui.js">
36. </script>
37. <link rel="stylesheet" href="http://code.jquery.com/ui/1.11.0/themes/smoothness/jquery-ui.css">
38. <script>
39. $(function(){
40. $( "#datepicker" ).datepicker({ dateFormat: "yy-mm-dd" });
41. });
42. </script>
43. <!doctype html>
44.  
45. <html lang="en">
46. <head>
47. <meta charset="UTF-8">
48. <title>To Do List</title>
49. </head>
50.  
51. <body>
52.  
53. <form method="post" action="index.php">
54. <input type="hidden" name="submitted" value="true">
55. <fieldset>
56. <legend>To Do List Input Form</legend>
57. <label>What<input type="text" name="name"/></label>
58. <label>Who<input type="text" name="user"/></label>
59. <label>Done?<input type="checkbox" name="done"/></label>
60. <label>When?<input type="text" name="selected_date" id="datepicker"/></label>
61. </fieldset>
62. <br/>
63. <input type="submit" value="addnew" />
64. </form>
65. <ol>
66. <?php
67. if (isset($_GET['id']))
68. {
69. $itemDesc = $_GET['id'];
70. ?><form><input type="hidden" name="keepvar" value="<?php echo $_GET['id'];?>"/></form><?php
71. $oldDesc = $_GET['keepvar'];
72. print_r ('Change ' . $itemDesc . '?');
73. ?><form> <method="post" action="index.php">
74. <label>New Description<input type="text" name="newDesc"/></label>
75. <input type="submit" value="Change" /></form>
76.  
77. <?php
78. if (isset ($_POST['Change']))
79. {
80. $oldDesc=$_GET['keepvar'];
81. $newDesc=$_POST['newDesc'];
82. $dbNewdesc = "UPDATE items SET name='$newDesc' WHERE name='$oldDesc'";
83. $updatequery = mysqli_query ($conn, $dbNewdesc);
84. if (!$updatequery)
85. {
86. echo mysqli_error($conn);
87. }
88. }
89. }
90. if (isset($_GET['del']))
91. {
92. $delvar = ($_GET['del']);
93. print_r ($delvar);
94. $delprep = "DELETE from items where name = '$delvar'";
95. $deletequery = mysqli_query ($conn, $delprep);
96. var_dump ($deletequery);
97. if ($deletequery)
98. {
99. echo "'$delvar' has been successfully deleted!";
100. }
101. else
102. {
103. echo mysqli_error($conn);
104. }
105. }
106. ?>
107. <?php while ($row = $result->fetch_assoc()) : ?>
108. <li><?php echo $row['name']; ?> </li>
109. <a href="<?php echo $_SERVER['PHP_SELF'] . "?id=" . $row['name'] ?>">Edit</a>
110. <a href="<?php echo $_SERVER['PHP_SELF'] . "?del=" . $row['name'] ?>">Delete</a>
111. <?php endwhile ?>
112. </ol>