Просмотр файла LaOrden_wgb_v1.0/inc/index.php

Размер файла: 11.42Kb 
<?php
session_start();
include('func.php');
Access($password);

// Выход из панели управления
if (@$action == 'exit') {
session_unset();
Header("Location: index.php");
exit;
}

// Удаление сообщений
if($action == 'add_from_admin') {

mysql_query("INSERT INTO messages VALUES (0, '$nick', '$text', '$time_d');");
Header("Location: index.php?action=list");
exit;
}

// Удаление сообщений
if($action == 'del_msg') {

mysql_query("delete from  messages WHERE id='$id'");
Header("Location: index.php?action=list&p=$p");
exit;
}
// Изменение настроек
if(isset($change_data_options)) {
if($perpg < 1)$perpg = 1;
if($perpg > 25)$perpg = 25;
if($perpg_admin < 1)$perpg_admin = 1;
if($perpg_admin > 99)$perpg_admin = 99;
mysql_query("UPDATE options  SET per_page = '$perpg' where id = '$id_option'");
mysql_query("UPDATE options  SET per_page_admin = '$perpg_admin' where id = '$id_option'");
Header("Location: index.php?action=options");
exit;
}

// Смена пароля
if(isset($change_password)) {
if((!@$pass1) or (!@$pass2)) {
Header("Location: index.php?action=options&error1=yes");
exit; }
if($pass1 != $pass2) {
Header("Location: index.php?action=options&error2=yes");
exit; }
$new_pass=md5($pass1);
mysql_query("UPDATE options  SET password= '$new_pass'");
session_unset();
Header("Location: index.php");
exit;
}

if(isset($update_system)) {
mysql_query("UPDATE string  SET page_name = '$up_page' where id=$id_string");
mysql_query("UPDATE string  SET guest_name = '$up_guest' where id=$id_string");
mysql_query("UPDATE string  SET onmain = '$up_onmain' where id=$id_string");
mysql_query("UPDATE string  SET add_name = '$up_add' where id=$id_string");
mysql_query("UPDATE string  SET onmain_url = '$up_url' where id=$id_string");
mysql_query("UPDATE string  SET nick_name = '$up_nick' where id=$id_string");
mysql_query("UPDATE string  SET text_name = '$up_text' where id=$id_string");
mysql_query("UPDATE string  SET ready_name = '$up_ready' where id=$id_string");
mysql_query("UPDATE string  SET nonick_name = '$up_nonick' where id=$id_string");
mysql_query("UPDATE string  SET notext_name = '$up_notext' where id=$id_string");
mysql_query("UPDATE string  SET added_name = '$up_added' where id=$id_string");
Header("Location: index.php?action=system");
exit;
}
?>

<html>
<head>
  <title>LaOrden WAP Guest 1.0</title>
<style type=text/css>
<!--
a { text-decoration:none; font-weight:bold; }
a:link {color:#336699}
a:active {color:#336699}
a:visited {color:#336699}
a:hover {color:#0000FF}
font.top { COLOR: #004080; FONT-FAMILY: font1, Verdana; FONT-SIZE: 35px;  TEXT-ALIGN: left; font-weight: bold }
font.tit { COLOR: #004080; FONT-FAMILY: font1, Verdana; FONT-SIZE: 16px;  TEXT-ALIGN: left; font-weight: bold }


-->
</style>
</head>

<div align="center">
  <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#C0C0C0" width="99%">
    <tr>
      <td width="756" height="60" background="bg.gif">&nbsp;<div align="center"><font class=top>LaOrden WAP GuestBook 1.0</font></div></td>
    </tr>
    <tr>
      <td width="756" height="18" align="right">
      <a href="index.php?action=list">Список сообщений</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
      <a href="index.php?action=options">Настройки</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
      <a href="index.php?action=system">Системные сообщения</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
      <a href="index.php?action=exit">Выход</a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
      </td>
    </tr>
  </table>
<br>
<?php
if((!@$action) or ($action == 'list')) {
?>
  <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#C0C0C0" width="99%">
    <tr>
      <td width="125" height="21" align="center"><b>Ник автора</b></td>
      <td width="422" height="21" align="center"><b>Сообщение</b></td>
      <td width="115" height="21" align="center"><b>Дата</b></td>
      <td width="86" height="21" align="center"><b>Удаление</b></td>
    </tr>
<?php
if(!isset($p)){$p=1;}
if(!@$start)$start=($p-1)*$perpage_admin;
$sql=mysql_query("select * from messages ORDER BY id DESC LIMIT $start,$perpage_admin");
while($data=mysql_fetch_array($sql)) {
$msg_id = $data[0];
$name = $data[1];
$msg = $data[2];
$date_msg = $data[3];
?>
    <tr>
      <td width="125" height="16" align="left" valign="top">&nbsp;<?=$name;?></td>
      <td width="422" height="16" align="left" valign="top">&nbsp;<?=$msg;?></td>
      <td width="115" height="16" align="center" valign="top">&nbsp;<?=$date_msg;?></td>
      <td width="86" height="16" align="center" valign="top"><a href="index.php?action=del_msg&id=<?=$msg_id;?>&p=<?=$p;?>"><< удалить >></a></td>
    </tr>
<?php
 }
print "</table><br>\n";
print "<div align=\"center\"><b>Добавить запись</b></div><br>\n";

print "<form action=\"index.php\" method=\"post\">\n";
print "Ник:&nbsp;<input name=\"nick\" type=\"text\">\n";
print "Текст:&nbsp;<input name=\"text\" type=\"text\">\n";
print "<input name=\"action\" type=\"hidden\" value=\"add_from_admin\">\n";
print "<input type=\"submit\" value=\"Send\"> \n";
print "</form>\n";

print "&nbsp;&nbsp;<div align=\"left\"> \n";
$vsego=mysql_result(mysql_query("select count(id) from messages "),0);
 if (($vsego%$perpage_admin)>0){$num=$vsego/$perpage_admin+1;}else{$num=$vsego/$perpage_admin;}
 echo "&nbsp;&nbsp;<font face=\"Verdana\" size=\"1\">";
 if ($num>=2){
 for ($i=1; $i<=$num; $i++){
    if ($i!=$p){echo " [<a href=\"index.php?p=$i&action=list\">$i</a>] ";}
    else{echo "[$i] ";}
    }}
 echo "&nbsp;<b>Всего записей: ".$vsego."</font></b> </div>";
print "</div> \n";
}

if($action == 'options') {
if(@$error1)$error='Заполнены не все поля!';
if(@$error2)$error='Данные полей не совпадают!';
?>

<form action="index.php" method="post">
<table border="1" cellpadding="2" cellspacing="2" style="border-collapse: collapse" bordercolor="#C0C0C0" width="99%" >
    <tr>
      <td width="100%%" height="20" align="center" colspan="2">&nbsp;<font class=tit>Настройки скрипта</font></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Количество сообщений выводимых на страницу в микробраузере</td>
      <td width="60%" height="20" align="left" valign="top"><input name="perpg" type="text" value="<?=$perpage;?>">&nbsp;(макс. 25)</td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Количество сообщений выводимых на страницу в панели администратора</td>
      <td width="60%" height="20" align="left" valign="top"><input name="perpg_admin" type="text" value="<?=$perpage_admin;?>">&nbsp;(макс. 99)</td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Количество хитов в гостевой книге</td>
      <td width="60%" height="20" align="left" valign="top">&nbsp;<b><?=$count;?></b></td>
    </tr>
    <input name="id_option" type="hidden" value="<?=$id_option;?>">
    <tr>
      <td width="100%" height="20" align="left" valign="top" colspan="2">
<input type="submit" name="change_data_options" value="Сохранить данные " style="width: 99%">
      </td>
    </tr>
  </table>
</form>
 <br><br>
<div align="center"><font color="#FF0000"><h2><?=$error;?></h2></font></div>
 <br><br>

<table border="1" cellpadding="2" cellspacing="2" style="border-collapse: collapse" bordercolor="#C0C0C0" width="99%" >
    <tr>
      <td width="100%%" height="20" align="center" colspan="2">&nbsp;<font class=tit>Смена пароля</font></td>
    </tr>

    <tr>
<form action="index.php" method="post">
      <td width="100%" height="20" align="center" valign="top">
 Новый пароль&nbsp;<input name="pass1" type="password" value="">&nbsp;&nbsp;
 Повтор пароля&nbsp;<input name="pass2" type="password" value="">
      </td>
    </tr>
    <tr>
      <td width="100%" height="20" align="left" valign="top" colspan="2">
<input type="submit" name="change_password" value="Сменить пароль (потребуется повторная авторизация)" style="width: 99%">
      </td>
</form>
    </tr>
  </table>
<?php
}

if($action == 'system') {

?><form action="index.php" method="post">
<table border="1" cellpadding="2" cellspacing="2" style="border-collapse: collapse" bordercolor="#C0C0C0" width="99%" >
    <tr>
      <td width="100%%" height="20" align="center" colspan="2">&nbsp;<font class=tit>Настройка системных сообщений</font></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Название ресурса</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_page" type="text" value="<?=$page_string;?>"></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Название гостевой</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_guest" type="text" value="<?=$guest_string;?>"></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "Добавить запись"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_add" type="text" value="<?=$add_string;?>"></td>
    </tr>

    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "На главную"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_onmain" type="text" value="<?=$main_string;?>"></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">URL перехода</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_url" type="text" value="<?=$url_string;?>"></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "Ник"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_nick" type="text" value="<?=$nick_string;?>"></td>
    </tr>

    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "Текст"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_text" type="text" value="<?=$text_string;?>"></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "Готово"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_ready" type="text" value="<?=$ready_string;?>"></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "Отсутствует Ник"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_nonick" type="text" value="<?=$nonick_string;?>"></td>
    </tr>

    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "Отсутствует Текст"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_notext" type="text" value="<?=$notext_string;?>"></td>
    </tr>
    <tr>
      <td width="40%" height="20" align="left" valign="top">Элемент "Сообщение добавлено"</td>
      <td width="60%" height="20" align="left" valign="top"><input name="up_added" type="text" value="<?=$added_string;?>"></td>
    </tr>


    <input name="id_string" type="hidden" value="<?=$id_string;?>">
    <tr>
      <td width="100%" height="20" align="left" valign="top" colspan="2">
<input type="submit" name="update_system" value="Сохранить данные " style="width: 99%">
      </td>
    </tr>
  </table>
</form>
 <br><br>
<?php
}
?>
  <br><table border="1" cellpadding="2" cellspacing="2" style="border-collapse: collapse"  bordercolor="#C0C0C0" width="99%" >
    <tr>
      <td width="748" height="1" align="right"><a href="http://www.laorden.ru">LaORDEN &copy;</a></td>
    </tr>
  </table>
</div>