Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <html>
- <head>
- <title>Artikkeleiden hallinta</title>
- <?php
- include("head.php");
- ?>
- </head>
- <body>
- <?php
- include("header.php");
- ?>
- <?php
- include("db.php");
- ?>
- <?php
- if(isset($_POST["articleid"]) && isset($_POST["content"])) {
- print('
- <div class="container uusclass">
- <div class="row">
- <div class="col-sm-12">
- <h2>Uutisartikkelien muokkaus</h2>
- <form method="post" action="test.php">
- <ul class="formienLista">
- <li>ID:<input type="text" name="idEdit" value="' . $_POST["articleid"] . '">
- Otsikko:<input type="text" name="titleEdit" value="' . $_POST["title"] . '"></li>
- <li><textarea style="width:1000px;height:250px;" name="contentEdit"> ' . ($_POST["content"]) . ' </textarea></li>
- <li><button type="submit" class="btn btn-primary" name="edit" value="edit">Edit</button></li>
- </ul>
- </form>
- </div>
- </div>
- </div>
- ');
- }
- else {
- print('
- <div class="container uusclass">
- <div class="row">
- <div class="col-sm-12">
- <h2>Uutisartikkelien lisäys</h2>
- <form method="post" action="test.php">
- <ul class="formienLista">
- <li><input type="text" name="newTitle" placeholder="Insert new title"></li>
- <li><textarea name="newContent" style="width:1000px;height:250px;" placeholder="Insert new content"></textarea></li>
- <li>Aihealue:</li>
- <li><input type="text" name="formwriter" value="' . $_SESSION["email"] . '"></input></li>
- <li><input type="radio" name="formcategory" value="sports"></input> Urheilu</li>
- <li><input type="radio" name="formcategory" value="gossip"></input> Juorut/politiikka</li>
- <li><button type="submit" class="btn btn-primary" name="add" value="post">Add</button></li>
- </ul>
- </form>
- </div>
- </div>
- </div>
- ');
- }
- //session_start();
- if(isset($_SESSION["loggedIn"]) && $_SESSION["loggedIn"] == true) {
- } else {
- print("User is not logged in");
- }
- print("<br></br>");
- if(isset($_SESSION["admin"]) && $_SESSION["admin"] == 1) {
- //'pw.php' sisältää salasanan muuttujana $pw
- /*include '/var/www/html/news-siteee/pw.php';
- //lukee taulua 'articles', joka sisältää sarakkeet (column) title, content ja id
- $servername = "localhost";
- $username = "root";
- $password = $pw;
- $database = "news";
- $table = "articles";
- // Create connection
- $conn = new mysqli($servername, $username, $password, $database);*/
- // Check connection
- //if ($conn->connect_error)
- if ($mysqli->connect_error)
- {
- die("Connection failed: " . $mysqli->connect_error);
- //die("Connection failed: " . $conn->connect_error);
- }
- //echo "Connected successfully";
- //echo "<br></br>";
- //Lomakkeen lukeminen
- $title=$_POST["newTitle"];
- $content=$_POST["newContent"];
- $formcategory=$_POST["formcategory"];
- $formwriter=$_POST["formwriter"];
- $titleEdit=$_POST["titleEdit"];
- $contentEdit=$_POST["contentEdit"];
- $idEdit=$_POST["idEdit"];
- if ($idEdit){
- //Muokkaus
- $sql = "UPDATE $table SET title='$titleEdit', content='$contentEdit' WHERE id='$idEdit'";
- //if ($conn->query($sql) === TRUE) {
- if ($mysqli->query($sql) === TRUE) {
- echo "Record updated successfully";
- echo "<br></br>";
- print("
- <script>
- window.location.href = 'index.php'
- alert('Artikkeli on tallennettu');
- </script>
- ");
- } else {
- //echo "Error updating record: " . $conn->error;
- echo "Error updating record: " . $mysqli->error;
- }
- }
- /*$stmt = $mysqli->prepare("SELECT * FROM myTable WHERE name = ?");
- $stmt->bind_param("s", $_POST['name']);
- $stmt->execute();
- $result = $stmt->get_result();
- if($result->num_rows === 0) exit('No rows');
- while($row = $result->fetch_assoc()) {
- $ids[] = $row['id'];
- $names[] = $row['name'];
- $ages[] = $row['age'];
- }
- var_export($ages);
- $stmt->close();*/
- //Prepared statement ja tietojen kirjoitus tietokantaan
- if ($title && $content){
- include("db.php");
- $sql="INSERT INTO news(title, content, category, writer) values(?, ?, ?, ?)";
- $stmt = $mysqli->prepare($sql);
- $stmt->bind_param("ssss", $title, $content, $formcategory, $formwriter);
- $stmt->execute();
- print($sql);
- //Printataan taulun sisältö sivulle näkyviin
- $sql = "SELECT * FROM news";
- //$result = $conn->query($sql);
- $result = $mysqli->query($sql);
- if ($result->num_rows > 0) {
- // output data of each row
- while($row = $result->fetch_assoc()) {
- echo $row["id"]. "Category: " . $row["category"]. "- Title: " . $row["title"]. "<br>". " - Content: " . $row["content"]. "<br>". " - Writer: " . $row["writer"]. "<br>". "<br>";
- }
- } else {
- echo "0 results";
- }
- print($sql);
- $stmt->close();
- //$mysqli->close();
- }
- /*//Printataan taulun sisältö sivulle näkyviin
- $sql = "SELECT * FROM $table";
- //$result = $conn->query($sql);
- $result = $mysqli->query($sql);
- if ($result->num_rows > 0) {
- // output data of each row
- while($row = $result->fetch_assoc()) {
- echo $row["id"]. "Category: " . $row["category"]. "- Title: " . $row["title"]. "<br>". " - Content: " . $row["content"]. "<br>". " - Writer: " . $row["writer"]. "<br>". "<br>";
- }
- } else {
- echo "0 results";
- }*/
- //$conn->close();
- $mysqli->close();
- } else {
- echo "<script>
- type='text/javascript'>alert('Access denied! Please log in as admin')
- window.location.href='login.php';
- </script>";
- }
- ?>
- <?php
- include("footer.php");
- ?>
- <script src="https://code.jquery.com/jquery-3.2.1.slim.min.js" integrity="sha384-KJ3o2DKtIkvYIK3UENzmM7KCkRr/rE9/Qpg6aAZGJwFDMVNA/GpGFF93hXpG5KkN" crossorigin="anonymous"></script>
- <script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js" integrity="sha384-ApNbgh9B+Y1QKtv3Rn7W3mgPxhU9K/ScQsAP7hUibX39j7fakFPskvXusvfa0b4Q" crossorigin="anonymous"></script>
- <script src="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js" integrity="sha384-JZR6Spejh4U02d8jOt6vLEHfe/JQGiRRSQQxSfFWpi1MquVdAyjUar5+76PVCmYl" crossorigin="anonymous"></script>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement