Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!--PHP variable for active nav link-->
- <?php $pageName = "Posts"; ?>
- <!--PHP include statement for header-->
- <?php
- include 'includes/header.php';
- ?>
- <div class="container">
- <div class="page-header">
- <h1>Posts</h1>
- </div>
- </div>
- <div class="container">
- <div class="row">
- <!--Posts-->
- <div class="col-md-8">
- <?php
- $showPostID = $_GET['showPostID'];
- $servername = "localhost";
- $username = "root";
- $password = "bangalore";
- $dbname = "cms";
- // Create connection
- $conn = new mysqli($servername, $username, $password, $dbname);
- // Check connection
- if ($conn->connect_error) {
- die("Connection failed: " . $conn->connect_error);
- }
- $sql = "SELECT * FROM posts WHERE post_id=\"$showPostID\"";
- $result = $conn->query($sql);
- if ($result->num_rows > 0) {
- // output data of each row
- while($row = $result->fetch_assoc()) {
- echo "<a href=\"#\"><h3 class=\"cover-heading\">Post Title: " . $row['post_title'] . "</h3></a>";
- echo "<a href=\"#\"><p>Author: " . $row['post_author'] . "</p></a>";
- echo "<p>Date: " . $row['post_date'] . "</p>";
- if ($row['post_image'] != NULL){
- echo "<img src=\"" . $row['post_image'] . "\">";
- }
- echo "<p>" . $row['post_content'] . "</p>";
- echo "<br><br><hr>";
- }
- } else {
- echo "0 results";
- }
- $conn->close();
- ?>
- <!--Comment-->
- <div class="jumbotron">
- <?php
- echo "<form method=\"post\" action=\"" . basename($_SERVER['PHP_SELF']) . "\">"
- ?>
- <h3>Leave a comment:</h3>
- <div class="form-group">
- <label>Author</label>
- <input type="text" name="commAuthor" class="form-control" placeholder="Name" required>
- </div>
- <div class="form-group">
- <label>Email</label>
- <input type="email" name="commEmail" class="form-control" placeholder="E-mail" required>
- </div>
- <div class="form-group">
- <label>Comment</label>
- <textarea class="form-control" rows="5" name="commContent"></textarea>
- </div>
- <button type="submit" name="commSubmit" class="btn btn-primary" >Submit</button>
- </form>
- </div>
- <?php
- date_default_timezone_set("America/Halifax");
- $datestuff = date("Y-m-d") . " " . date("h:i:s");
- $commName = "";
- $commEmail = "";
- $commContent = "";
- echo $showPostID;
- if(isset($_POST['commSubmit'])) {
- $commName = validate_form_data($_POST['commAuthor']);
- $commEmail = validate_form_data($_POST['commEmail']);
- $commContent = validate_form_data($_POST['commContent']);
- $servername = "localhost";
- $username = "root";
- $password = "bangalore";
- $dbname = "cms";
- // Create connection
- $conn = new mysqli($servername, $username, $password, $dbname);
- // Check connection
- if ($conn->connect_error) {
- die("Connection failed: " . $conn->connect_error);
- }
- $showPostID = $_GET['showPostID'];
- $sql = "INSERT INTO comments VALUES (NULL,\"" . $_GET['showPostID'] ."\", \"". $commName ."\", \"". $commEmail ."\", \"". $commContent ."\", \"". $datestuff ."\", \"submitted\")";
- $result = $conn->query($sql);
- if ($result === TRUE) {
- header('Location: '.$_SERVER['PHP_SELF'] . '?showPostID=' . $showPostID);
- die;
- } else {
- echo "Error: " . $sql . "<br>" . $conn->error;
- }
- $conn->close();
- }
- ?>
- <hr>
- <div class="row">
- <?php
- $servername = "localhost";
- $username = "root";
- $password = "bangalore";
- $dbname = "cms";
- // Create connection
- $conn = new mysqli($servername, $username, $password, $dbname);
- // Check connection
- if ($conn->connect_error) {
- die("Connection failed: " . $conn->connect_error);
- }
- $sql = "SELECT * FROM comments WHERE comment_post_id=\"$showPostID\"";
- $result = $conn->query($sql);
- if ($result->num_rows > 0) {
- // output data of each row
- while($row = $result->fetch_assoc()) {
- echo "<div class=\"col-sm-2 text-center\">";
- echo "<img src=\"bandmember.jpg\" class=\"img-circle\" height=\"65\" width=\"65\" alt=\"Avatar\">";
- echo "</div>";
- echo "<div class=\"col-sm-10\">";
- echo "<h4>" . $row['comment_author'] . " <small>" . $row['comment_date'] . "</small></h4>";
- echo "<p>". $row['comment_context'] . "</p>";
- echo "<br></div>";
- }
- }
- $conn->close();
- ?>
- </div>
- </div>
- <!--Login and report issue functionalities-->
- <div class="col-md-4">
- <div class="jumbotron">
- <div class="header">
- <h3>Login</h3>
- </div>
- <?php
- echo "<form method=\"post\" action=\"" . basename($_SERVER['PHP_SELF']) . "\">"
- ?>
- <div class="form-group">
- <label>Username</label>
- <input type="text" name="username" class="form-control" placeholder="Username" required>
- </div>
- <div class="form-group">
- <label for="exampleInputPassword1">Password</label>
- <input type="password" name="password" class="form-control" placeholder="Password" required>
- </div>
- <button type="submit" name="Login" class="btn btn-primary center-block" >Login</button><br>
- <a href="#"><p class="text-center">forget password</p></a>
- </form>
- </div>
- <!--Error report panel-->
- <div class="jumbotron">
- <div class="header">
- <h3>Report Issue</h3>
- </div>
- <?php
- echo "<form method=\"post\" action=\"" . basename($_SERVER['PHP_SELF']) . "\">"
- ?>
- <div class="form-group">
- <label>Name</label>
- <input type="text" name="name" class="form-control" placeholder="Preferred Name" required>
- </div>
- <div class="form-group">
- <label>Email address</label>
- <input type="email" name="email" class="form-control" id="exampleInputEmail1" placeholder="E-mail" required>
- </div>
- <div class="form-group">
- <label for="sel1">Select Issue Type</label>
- <select name="sel1" class="form-control" id="sel1">
- <option value="Link not working">Link not working</option>
- <option value="Page not Found">Page not Found</option>
- <option value="Incorrect script">Incorrect script</option>
- </select>
- </div>
- <div class="form-group">
- <label for="message">Message:</label>
- <textarea class="form-control" name="message" rows="5" id="message" required></textarea>
- </div>
- <button type="submit" name="Submit" class="btn btn-success" value="Submit">Submit</button>
- <button type="reset" class="btn btn-info" value="Reset">Reset</button>
- </form>
- <?php
- date_default_timezone_set("America/Halifax");
- $datestuff = date("h.i.s") . "-" . date("Y.m.d");
- $name = "";
- $email = "";
- $message = "";
- $errorType = "";
- if(isset($_POST['Submit'])) {
- $report = fopen("misc/message_" . $datestuff . ".txt", "w") or die("Unable to open file!");
- $name = validate_form_data($_POST['name']);
- $email = validate_form_data($_POST['email']);
- $message = validate_form_data($_POST['message']);
- $alertType = validate_form_data($_POST['sel1']);
- fwrite($report, "Issue Alert!\r\n");
- fwrite($report, "Type of issue: " . $alertType . "\r\n\r\n");
- fwrite($report, "Submitted by: " . $name . "\r\n");
- fwrite($report, "Email ID: " . $email . "\r\n");
- fwrite($report, "Submitted at: " . date("h:i:sa") . " on " . date("Y-M-d") . "\r\n\r\n");
- fwrite($report, "Details: " . $message);
- fclose($report);
- }
- function validate_form_data($formdata){
- $formdata = trim($formdata);
- $formdata = stripslashes($formdata);
- $formdata = htmlspecialchars($formdata);
- return $formdata;
- }
- ?>
- </div>
- </div>
- </div>
- </div><!-- /.container -->
- <?php
- include 'includes/footer.php';
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement