Rev 4 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
| Rev 4 | Rev 8 | ||
|---|---|---|---|
| Line 8... | Line 8... | ||
| 8 | $row = db_fetch($res); |
8 | $row = db_fetch($res); |
| 9 | if ($row['user'] != $benutzer['id']) |
9 | if ($row['user'] != $benutzer['id']) |
| 10 | $folder = 0; |
10 | $folder = 0; |
| 11 | 11 | ||
| 12 | db_query("INSERT INTO ".$mysql_zugangsdaten['praefix']."popper_konten (`name`, `folder`, `server`, `username`, `passwort`, `personenname`, `replyaddr`, `user`) VALUES ('".db_escape($name)."', '".db_escape($folder)."', '".db_escape($mserver)."', '".db_escape($musername)."', '".db_escape($mpasswort)."', '".db_escape($personenname)."', '".db_escape($replyaddr)."', '".$benutzer['id']."')"); |
12 | db_query("INSERT INTO ".$mysql_zugangsdaten['praefix']."popper_konten (`name`, `folder`, `server`, `username`, `passwort`, `personenname`, `replyaddr`, `user`) VALUES ('".db_escape($name)."', '".db_escape($folder)."', '".db_escape($mserver)."', '".db_escape($musername)."', '".db_escape($mpasswort)."', '".db_escape($personenname)."', '".db_escape($replyaddr)."', '".$benutzer['id']."')"); |
| 13 | if ($danach == 'A') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.$modul); |
13 | if ($danach == 'A') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.urlencode($modul)); |
| 14 | if ($danach == 'B') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.$modul.'&aktion=new&danach='.$danach); |
14 | if ($danach == 'B') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&danach='.urlencode($danach)); |
| 15 | if ($danach == 'C') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.$modul.'&aktion=new&folder='.$folder.'&danach='.$danach); |
15 | if ($danach == 'C') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&folder='.urlencode($folder).'&danach='.urlencode($danach)); |
| 16 | } |
16 | } |
| 17 | 17 | ||
| 18 | if ($aktion == 'edit') |
18 | if ($aktion == 'edit') |
| 19 | { |
19 | { |
| 20 | $res = db_query("SELECT `user` FROM `".$mysql_zugangsdaten['praefix']."ordner` WHERE `id` = '".db_escape($folder)."'"); |
20 | $res = db_query("SELECT `user` FROM `".$mysql_zugangsdaten['praefix']."ordner` WHERE `id` = '".db_escape($folder)."'"); |
| 21 | $row = db_fetch($res); |
21 | $row = db_fetch($res); |
| 22 | if ($row['user'] != $benutzer['id']) |
22 | if ($row['user'] != $benutzer['id']) |
| 23 | $folder = 0; |
23 | $folder = 0; |
| 24 | 24 | ||
| 25 | db_query("UPDATE `".$mysql_zugangsdaten['praefix']."popper_konten` SET `name` = '".db_escape($name)."', `folder` = '".db_escape($folder)."', `server` = '".db_escape($mserver)."', `username` = '".db_escape($musername)."', `passwort` = '".db_escape($mpasswort)."', `personenname` = '".db_escape($personenname)."', `replyaddr` = '".db_escape($replyaddr)."' WHERE `id` = '".db_escape($id)."' AND `user` = '".$benutzer['id']."'"); |
25 | db_query("UPDATE `".$mysql_zugangsdaten['praefix']."popper_konten` SET `name` = '".db_escape($name)."', `folder` = '".db_escape($folder)."', `server` = '".db_escape($mserver)."', `username` = '".db_escape($musername)."', `passwort` = '".db_escape($mpasswort)."', `personenname` = '".db_escape($personenname)."', `replyaddr` = '".db_escape($replyaddr)."' WHERE `id` = '".db_escape($id)."' AND `user` = '".$benutzer['id']."'"); |
| 26 | if ($danach == 'A') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.$modul); |
26 | if ($danach == 'A') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.urlencode($modul)); |
| 27 | if ($danach == 'B') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.$modul.'&aktion=new&danach='.$danach); |
27 | if ($danach == 'B') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&danach='.urlencode($danach)); |
| 28 | if ($danach == 'C') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.$modul.'&aktion=new&folder='.$folder.'&danach='.$danach); |
28 | if ($danach == 'C') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&folder='.urlencode($folder).'&danach='.urlencode($danach)); |
| 29 | } |
29 | } |
| 30 | 30 | ||
| 31 | if ($aktion == 'delete') |
31 | if ($aktion == 'delete') |
| 32 | { |
32 | { |
| 33 | db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."popper_konten` WHERE `id` = '".db_escape($id)."' AND `user` = '".$benutzer['id']."'"); |
33 | db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."popper_konten` WHERE `id` = '".db_escape($id)."' AND `user` = '".$benutzer['id']."'"); |
| Line 36... | Line 36... | ||
| 36 | 36 | ||
| 37 | db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."popper_messages` WHERE `accounts` = '".db_escape($id)."'"); |
37 | db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."popper_messages` WHERE `accounts` = '".db_escape($id)."'"); |
| 38 | if (db_affected_rows() > 0) |
38 | if (db_affected_rows() > 0) |
| 39 | db_query("OPTIMIZE TABLE `".$mysql_zugangsdaten['praefix']."popper_messages`"); |
39 | db_query("OPTIMIZE TABLE `".$mysql_zugangsdaten['praefix']."popper_messages`"); |
| 40 | 40 | ||
| 41 | if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.$modul); |
41 | if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.urlencode($modul)); |
| 42 | } |
42 | } |
| 43 | 43 | ||
| 44 | ?> |
44 | ?> |