if (!check_perms('admin_manage_permissions') && !check_perms('users_mod')) {
error(403);
}
if (!check_perms('admin_manage_permissions')) {
View::show_header('Site Options');
$DB->query("SELECT Name, First, Second FROM misc");
?>
Name |
First |
Second |
while (list($Name, $First, $Second) = $DB->next_record()) {
?>
=$Name?> |
=$First?> |
=$Second?> |
}
?>
View::show_footer();
die();
}
if (isset($_POST['submit'])) {
authorize();
if ($_POST['submit'] == 'Delete') {
$Name = db_string($_POST['name']);
$DB->query("DELETE FROM misc WHERE Name = '" . $Name . "'");
} else {
$Val->SetFields('name', '1', 'regex', 'The name must be separated by underscores. No spaces are allowed.', array('regex' => '/^[a-z][:_a-z0-9]{0,63}$/i'));
$Val->SetFields('first', '1', 'string', 'You must specify the first value.');
$Val->SetFields('second', '1', 'string', 'You must specify the second value.');
$Error = $Val->ValidateForm($_POST);
if ($Error) {
error($Error);
}
$Name = db_string($_POST['name']);
$First = db_string($_POST['first']);
$Second = db_string($_POST['second']);
if ($_POST['submit'] == 'Edit') {
$DB->query("SELECT Name FROM misc WHERE ID = '" . db_string($_POST['id']) . "'");
list($OldName) = $DB->next_record();
$DB->query("
UPDATE misc
SET
Name = '$Name',
First = '$First',
Second = '$Second'
WHERE ID = '" . db_string($_POST['id']) . "'
");
} else {
$DB->query("
INSERT INTO misc (Name, First, Second)
VALUES ('$Name', '$First', '$Second')
");
}
}
}
$DB->query("
SELECT
ID,
Name,
First,
Second
FROM misc
ORDER BY LOWER(Name) DESC
");
View::show_header('Miscellaneous Values');
?>
Name
|
First |
Second |
Submit |
while (list($ID, $Name, $First, $Second) = $DB->next_record()) {
?>
}
?>
View::show_footer(); ?>