Skip to content
Snippets Groups Projects
Normal view Permalink
news.php 2.09 KiB
Newer Older
  • Learn to ignore specific revisions
    • Denis Walker's avatar
    Moves project into "trunk" directory
    Denis Walker committed
    1 
    <?php
    Denis Walker's avatar
    Resolves #39 by forcing a trailing slash in the News URI.  
    Denis Walker committed
    2 3 
    // Ensure we have a trailing slash so that relative links within the page work
if ($_SERVER['PATH_INFO']=="/News") header("Location: ".$baseurl."/News/");
    Denis Walker's avatar
    Moves project into "trunk" directory
    Denis Walker committed
    4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 
    
// A user must be in the staff group in order to edit content in this component
$permission = "staff";
$newstable = "news";

if (isset($session->groups[$permission])) {
// display Edit links on page
	$smarty->assign("editable", TRUE);
	switch (@$_REQUEST['action']) {
	case "Save":
		$record['title'] = $_REQUEST['edittitle'];
		$record['body'] = $_REQUEST['body'];
		if (isset($_REQUEST['sticky']))
			$record['sticky'] = 't';
		else
			$record['sticky'] = 'f';
		
		if ($_REQUEST['id']=="*") {
			$record['author'] = $session->username;
			$record['date'] = "now";
			$DB->AutoExecute($newstable, $record, 'INSERT');
		} else {
			$DB->AutoExecute($newstable, $record, 'UPDATE', "id=".$DB->qstr($_REQUEST['id']));
		}
		include("motd.php");
		
		break;
	case "Delete":
		$deleted = $DB->Execute("DELETE FROM $newstable WHERE id=?", array($_REQUEST['id']));
		include("motd.php");
		break;
	case "Expire":
		$expired = $DB->Execute("UPDATE $newstable SET expiry=now() WHERE id=?", array($_REQUEST['id']));
		include("motd.php");
		break;
	}
}

$query = "SELECT *, date_part('epoch', expiry) AS expirytime FROM news";
if (@$pathlist[2]!="") $query .= " WHERE title=".$DB->qstr($pathlist[2]);
$query .= " ORDER BY date DESC";

$smarty->assign("news", $DB->GetArray($query));

$output = $smarty->fetch("news.tpl");
$smarty->assign("title", "News");

if (isset($session->groups[$permission])) {
// Perform any requested actions
	switch (@$_REQUEST['action']) {
	case "create":
		$news = array(array("id" => "*"));
		$smarty->assign("news", $news);
	case "edit":
		$output = $smarty->fetch("news_edit.tpl");
		$smarty->assign("action", "edit");
		$smarty->assign("title", "Edit News");
		break;
	case "delete-query":
		$output = $smarty->fetch('news_delete.tpl').$output;		
		break;
	case "expire-query":
		$output = $smarty->fetch('news_expire.tpl').$output;		
		break;
	case "Delete":
		if ($deleted) $output = "News item deleted";
		break;
	}
}

$smarty->assign("body", $output);
?>