This repository has been archived by the owner on Nov 9, 2017. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsettings.php
68 lines (65 loc) · 2.54 KB
/
settings.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
<?php
###################################
# Copyright (c) 2008 Mhd Zahere Ghaibeh and others.
# All rights reserved. This program and the accompanying materials
# are made available under the terms of the GNU GPL v2.0
# which accompanies this distribution, and is available at
# http://www.GNU.org
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License along
# with this program; if not, write to the Free Software Foundation, Inc.,
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
#
##################################
include_once('config.php');
isLogin();
$act = (isset($_GET['act'])) ? treatGet($_GET['act']) : treatGet($_POST['act']);
$page = (isset($_GET['page'])) ? $_GET['page'] : 0;
switch ($act) {
case 'save':
if( empty($_POST['sitename']) OR empty($_POST['url']) OR empty($_POST['curency']) OR !isset($_POST['perPage'])){
header('location: settings.php?error=1');
}else{
$record = array(
"sitename"=>$db->sqlsafe($_POST['sitename']),
"url"=>$db->sqlsafe($_POST['url']),
"theme"=>$db->sqlsafe($_POST['theme']),
"perPage"=>$db->sqlsafe($_POST['perPage']),
"curency"=>$db->sqlsafe($_POST['curency'])
);
$update = $db->update('settings',$record,'id ='.$db->sqlsafe($_POST['id']).'');
if($update){
$recordEemail = array(
"email"=>$db->sqlsafe($_POST['email'])
);
$update = $db->update('admin',$recordEemail,'id='.$db->sqlsafe($_SESSION['login']['id']).'');
header('location: settings.php?error=2');
}else{
header('location: settings.php?error=3');
}
}
break;
default:
$themes['Theme'] = getThemes(ABSPATH.'/themes/');
$getAdminEmail = $db->select('select email from admin where id='.$db->sqlsafe($_SESSION['login']['id']).'');
$skin = new skin();
$skin->assign('showMenu','1');
$skin->assign('config',$config);
$skin->assign('act','save');
$skin->assign('email',$getAdminEmail[0]['email']);
$skin->assign('info',$settings);
$skin->assign('theme',$themes);
$skin->assign('incFile','site/settings.tpl');
$skin->display('site/index.tpl');
break;
}
?>