\n"; print_r($_REQUEST); print "\n"; } # Make sure this visitor is logged in # if (isset($_COOKIE["AURSID"])) { $atype = account_from_sid($_COOKIE["AURSID"]); } else { $atype = ""; } if (!$atype) { print __("You must be logged in before you can edit package information."); print "
\n"; html_footer($svn_idstr); exit(); } # Must know what package to operate on throughout this entire script # if (!$_REQUEST["ID"]) { print __("Missing package ID."); print "
\n"; html_footer($svn_idstr); } # Delete a comment for this package # if ($_REQUEST["del_Comment"]) { if ($_REQUEST["comment_id"]) { if (canDeleteComment($_REQUEST["comment_id"], $atype, $_COOKIE["AURSID"])) { $dbh = db_connect(); $uid = uid_from_sid($_COOKIE["AURSID"]); $q = "UPDATE PackageComments "; $q.= "SET DelUsersID = ".$uid." "; $q.= "WHERE ID = ".intval($_REQUEST["comment_id"]); db_query($q, $dbh); print __("Comment has been deleted.")."
\n"; } else { print __("You are not allowed to delete this comment.")."
\n"; } } else { print __("Missing comment ID.")."
\n"; } pkgdetails_link($_REQUEST["ID"]); html_footer($svn_idstr); exit(); } # Add a comment to this package # if ($_REQUEST["add_Comment"]) { if ($_REQUEST["comment"]) { # Insert the comment # $dbh = db_connect(); $q = "INSERT INTO PackageComments "; $q.= "(PackageID, UsersID, Comments, CommentTS) VALUES ("; $q.= intval($_REQUEST["ID"]).", ".uid_from_sid($_COOKIE["AURSID"]) . ", "; $q.= "'".mysql_escape_string($_REQUEST["comment"])."', "; $q.= "UNIX_TIMESTAMP())"; db_query($q, $dbh); print __("Comment has been added.")."
 
\n"; pkgdetails_link($_REQUEST["ID"]); } else { # Prompt visitor for comment # print "
\n"; print "\n"; print "\n"; print __("Enter your comment below.")."
 
\n"; print "\n"; print "
 
\n"; print "\n"; print "\n"; print "
\n"; } html_footer($svn_idstr); exit(); } # Change package category # if ($_REQUEST["change_Category"]) { $cat_array = pkgCategories(); $dbh = db_connect(); if ($_REQUEST["category_id"]) { # Try and set the requested category_id # if (array_key_exists($_REQUEST["category_id"], $cat_array)) { $q = "UPDATE Packages SET CategoryID = ".intval($_REQUEST["category_id"]); $q.= " WHERE ID = ".intval($_REQUEST["ID"]); db_query($q, $dbh); print __("Package category updated.")."
\n"; } else { print __("Invalid category ID.")."
\n"; } pkgdetails_link($_REQUEST["ID"]); } else { # Prompt visitor for new category_id # $q = "SELECT CategoryID FROM Packages WHERE ID = ".intval($_REQUEST["ID"]); $result = db_query($q, $dbh); if ($result != NULL) { $catid = mysql_fetch_row($result); } print "
\n"; print "\n"; print "\n"; print __("Select new category").": \n"; print "\n"; print "
 
\n"; print "\n"; print "\n"; print "
\n"; } html_footer($svn_idstr); exit(); } print __("You've found a bug if you see this....")."
\n"; html_footer($svn_idstr); # Use the $Id$ keyword # NOTE: when checking in a new file, use # 'svn propset svn:keywords "Id" filename.php' # to tell svn to expand the "Id" keyword. # vim: ts=2 sw=2 noet ft=php ?>