systemtest/Systemtest_tk
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Import later changes

Browse Source
This commit is contained in:
Fándly Gergő
2019-08-10 15:39:07 +03:00
parent d24a3edef4
commit caeaf3d8ef
10 changed files with 163 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

71
subs/parts/userarea_backend.php
View File

@ -41,7 +41,7 @@ else{
}
if($sub!=""){
if($sub!="fileshare" && $sub!="blog" && $sub!="projects" && $sub!="orders" && $sub!="messages" && $sub!="news" && $sub!="admin" && $sub!="profile"){
if($sub!="fileshare" && $sub!="blog" && $sub!="orders" && $sub!="messages" && $sub!="news" && $sub!="projects" && $sub!="admin" && $sub!="profile"){
functions::setError(500);
header("Location: /userarea");
}
@ -49,11 +49,11 @@ else{
functions::setError(500);
header("Location: /userarea");
}
if(($sub=="projects" || $sub=="orders" || $sub=="messages") && $_SESSION['accesslevel']<2){
if(($sub=="orders" || $sub=="messages") && $_SESSION['accesslevel']<2){
functions::setError(500);
header("Location: /userarea");
}
if(($sub=="news" || $sub=="admin") && $_SESSION['accesslevel']<3){
if(($sub=="news" || $sub=="projects" || $sub=="admin") && $_SESSION['accesslevel']<3){
functions::setError(500);
header("Location: /userarea");
}
@ -706,5 +706,66 @@ else{
}
}
}
}
/*
* PROJECTS
*/
//get a project by id
if(isset($_GET['projects_get'])){
$sql=$db->prepare("SELECT p.id, p.name, p.description, u.fullname AS owner, p.path, p.repo, p.status, p.image FROM projects AS p INNER JOIN users AS u ON (u.id=p.owner) WHERE p.id=:id");
$sql->execute(array(":id"=>$_GET['projects_get']));
$res=$sql->fetch(PDO::FETCH_ASSOC);
echo json_encode($res);
die();
}
//save project
if(isset($_POST['project_id']) && isset($_POST['project_name']) && isset($_POST['project_desc']) && isset($_POST['project_path']) && isset($_POST['project_repo']) && isset($_POST['project_status']) && isset($_POST['project_image'])){
if($_POST['project_id']=="new"){
$sql=$db->prepare("INSERT INTO projects (name, description, owner, path, repo, status, image) VALUES (:name, :desc, :owner, :path, :repo, :status, :image)");
$sql->execute(array(":name"=>$_POST['project_name'], ":desc"=>$_POST['project_desc'], ":owner"=>$_SESSION['id'], ":path"=>$_POST['project_path'], ":repo"=>$_POST['project_repo'], ":status"=>$_POST['project_status'], ":image"=>$_POST['project_image']));
$res=$sql->rowCount();
if($res<1){
functions::setError(6);
echo "err";
}
else{
functions::setMessage(15);
echo "ok";
}
}
else{
$sql=$db->prepare("UPDATE projects SET name=:name, description=:desc, path=:path, repo=:repo, status=:status, image=:image WHERE id=:id");
$sql->execute(array(":name"=>$_POST['project_name'], ":desc"=>$_POST['project_desc'], ":path"=>$_POST['project_path'], ":repo"=>$_POST['project_repo'], ":status"=>$_POST['project_status'], ":image"=>$_POST['project_image'], ":id"=>$_POST['project_id']));
$res=$sql->rowCount();
if($res<1){
functions::setError(6);
echo "err";
}
else{
functions::setMessage(4);
echo "ok";
}
}
}
//delete project
if(isset($_POST['project_delete'])){
$sql=$db->prepare("DELETE FROM projects WHERE id=:id");
$sql->execute(array(":id"=>$_POST['project_delete']));
$res=$sql->rowCount();
if($res<1){
functions::setError(6);
echo "err";
}
else{
functions::setMessage(5);
echo "ok";
}
}
}