-
Notifications
You must be signed in to change notification settings - Fork 0
/
edit.php
107 lines (103 loc) · 5.34 KB
/
edit.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
<?php
session_start();
$db = new PDO('sqlite:database.db');
if (!isset($_SESSION['user_id'])) {
header('Location: session.php');
}
$user_id = $_SESSION['user_id'];
if (isset($_POST['submit'])) {
$post_id = $_POST['post_id'];
$title = htmlspecialchars($_POST['title']);
$tags = htmlspecialchars($_POST['tags']);
$synopsis = htmlspecialchars($_POST['synopsis']);
$content = htmlspecialchars($_POST['content']);
$content = nl2br($content);
$synopsis = nl2br($synopsis);
$query = "UPDATE posts SET title='$title', tags='$tags', synopsis='$synopsis', content='$content' WHERE id='$post_id'";
$db->exec($query);
header("Location: profile.php");
}
if (isset($_GET['id'])) {
$post_id = $_GET['id'];
$query = "SELECT * FROM posts WHERE id='$post_id' AND user_id='$user_id'";
$post = $db->query($query)->fetch();
if (!$post) {
header("Location: profile.php");
}
$tags = htmlspecialchars($post['tags']); // encode tags
} else {
header("Location: profile.php");
}
?>
<!DOCTYPE html>
<html lang="en" data-bs-theme="dark">
<head>
<title>Edit <?php echo $post['title'] ?></title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<?php include('bootstrapcss.php'); ?>
</head>
<body>
<main id="swup" class="transition-main">
<?php include('header.php'); ?>
<form method="post" class="container-fluid my-4">
<div class="d-none d-md-block d-lg-block">
<div class="d-flex">
<div class="btn-group mb-5 me-auto">
<button class="btn btn-primary fw-bold" type="submit" name="submit">save changes</button>
<button type="button" class="btn btn-danger fw-bold" data-bs-toggle="modal" data-bs-target="#modalDelete">
delete this work
</button>
</div>
<a class="ms-auto btn btn-primary fw-bold mb-5" href="<?php echo (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? 'https' : 'http') . '://' . $_SERVER['HTTP_HOST']; ?>">back to home</a>
</div>
</div>
<div class="modal fade" id="modalDelete" tabindex="-1" aria-labelledby="exampleModalLabel" aria-hidden="true">
<div class="modal-dialog modal-dialog-centered">
<div class="modal-content">
<div class="modal-header border-bottom-0">
<h1 class="modal-title fs-5">Delete <?php echo $post['title'] ?></h1>
<button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
</div>
<div class="modal-body py-0 text-center fw-medium">
<p>Are you sure want to delete <strong><?php echo $post['title'] ?></strong> from your works?</p>
<p class="small">(Warning: You can't restore back after you delete this!)</p>
</div>
<div class="modal-footer flex-column align-items-stretch w-100 gap-2 pb-3 border-top-0">
<a class="btn btn-lg btn-danger" href="delete.php?id=<?php echo $post_id; ?>">Delete this!</a>
<button type="button" class="btn btn-lg btn-secondary" data-bs-dismiss="modal">Close</button>
</div>
</div>
</div>
</div>
<input type="hidden" name="post_id" value="<?php echo $post_id ?>">
<div class="input-group gap-3 mb-2">
<div class="form-floating">
<input class="form-control border-top-0 border-start-0 border-end-0 rounded-bottom-0 border-3 focus-ring focus-ring-dark" type="text" name="title" placeholder="Enter title" maxlength="100" required value="<?php echo $post['title'] ?>">
<label for="floatingInput" class="fw-bold"><small>Enter title</small></label>
</div>
<div class="form-floating">
<input class="form-control border-top-0 border-start-0 border-end-0 rounded-bottom-0 border-3 focus-ring focus-ring-dark" type="text" name="tags" placeholder="Enter genre" maxlength="50" required value="<?php echo $post['tags'] ?>">
<label for="floatingInput" class="fw-bold"><small>Enter genre</small></label>
</div>
</div>
<div class="form-floating mb-2">
<textarea class="form-control border-top-0 border-start-0 border-end-0 rounded-bottom-0 border-3 focus-ring focus-ring-dark" style="height: 250px;" type="text" name="synopsis" oninput="stripHtmlTags(this)" placeholder="Enter synopsis" maxlength="450" required><?php echo strip_tags($post['synopsis']) ?></textarea>
<label for="floatingInput" class="fw-bold"><small>Enter synopsis</small></label>
</div>
<div class="form-floating mb-2">
<textarea class="form-control rounded border-3 focus-ring focus-ring-dark vh-100" name="content" oninput="stripHtmlTags(this)" placeholder="Enter content" required><?php echo strip_tags($post['content']) ?></textarea>
<label for="floatingInput" class="fw-bold"><small>Enter content</small></label>
</div>
<button type="button" class="btn d-md-none d-lg-none btn-danger fw-bold mb-2 w-100" data-bs-toggle="modal" data-bs-target="#modalDelete">
delete this work
</button>
<div class="d-flex d-md-none d-lg-none">
<button class="me-auto btn btn-primary fw-bold mb-5" type="submit" name="submit">save changes</button>
<a class="ms-auto btn btn-primary fw-bold mb-5" href="profile.php">back to profile</a>
</div>
</form>
</main>
<?php include('bootstrapjs.php'); ?>
</body>
</html>