Subversion Repositories personal-webbase

Rev

Rev 4 | Go to most recent revision | Blame | Last modification | View Log | RSS feed

  1. <?php
  2.  
  3. if (!defined('IBLEGAL')) die('Kann nicht ohne Personal WebBase ausgef&uuml;hrt werden.');
  4.  
  5.   if ($aktion == 'new')
  6.   {
  7.     $res = db_query("SELECT `user` FROM `".$mysql_zugangsdaten['praefix']."ordner` WHERE `id` = '".db_escape($folder)."'");
  8.     $row = db_fetch($res);
  9.     if ($row['user'] != $benutzer['id'])
  10.       $folder = 0;
  11.  
  12.     db_query("INSERT INTO ".$mysql_zugangsdaten['praefix']."popper_konten (`name`, `folder`, `server`, `username`, `passwort`, `personenname`, `replyaddr`, `user`) VALUES ('".db_escape($name)."', '".db_escape($folder)."', '".db_escape($mserver)."', '".db_escape($musername)."', '".db_escape($mpasswort)."', '".db_escape($personenname)."', '".db_escape($replyaddr)."', '".$benutzer['id']."')");
  13.     if ($danach == 'A') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.urlencode($modul));
  14.     if ($danach == 'B') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&danach='.urlencode($danach));
  15.     if ($danach == 'C') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&folder='.urlencode($folder).'&danach='.urlencode($danach));
  16.   }
  17.  
  18.   if ($aktion == 'edit')
  19.   {
  20.     $res = db_query("SELECT `user` FROM `".$mysql_zugangsdaten['praefix']."ordner` WHERE `id` = '".db_escape($folder)."'");
  21.     $row = db_fetch($res);
  22.     if ($row['user'] != $benutzer['id'])
  23.       $folder = 0;
  24.  
  25.         db_query("UPDATE `".$mysql_zugangsdaten['praefix']."popper_konten` SET `name` = '".db_escape($name)."', `folder` = '".db_escape($folder)."', `server` = '".db_escape($mserver)."', `username` = '".db_escape($musername)."', `passwort` = '".db_escape($mpasswort)."', `personenname` = '".db_escape($personenname)."', `replyaddr` = '".db_escape($replyaddr)."' WHERE `id` = '".db_escape($id)."' AND `user` = '".$benutzer['id']."'");
  26.     if ($danach == 'A') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.urlencode($modul));
  27.     if ($danach == 'B') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&danach='.urlencode($danach));
  28.     if ($danach == 'C') if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=edit&modul='.urlencode($modul).'&aktion=new&folder='.urlencode($folder).'&danach='.urlencode($danach));
  29.   }
  30.  
  31.   if ($aktion == 'delete')
  32.   {
  33.         db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."popper_konten` WHERE `id` = '".db_escape($id)."' AND `user` = '".$benutzer['id']."'");
  34.         if (db_affected_rows() > 0)
  35.       db_query("OPTIMIZE TABLE `".$mysql_zugangsdaten['praefix']."popper_konten`");
  36.  
  37.         db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."popper_messages` WHERE `accounts` = '".db_escape($id)."'");
  38.         if (db_affected_rows() > 0)
  39.       db_query("OPTIMIZE TABLE `".$mysql_zugangsdaten['praefix']."popper_messages`");
  40.  
  41.     if (!headers_sent()) header('location: '.$_SERVER['PHP_SELF'].'?seite=inhalt&modul='.urlencode($modul));
  42.   }
  43.  
  44. ?>
  45.