ok

Mini Shell

Direktori : /proc/thread-self/root/proc/self/root/home2/selectio/public_html/thecomponents.in/admin/
Upload File :
Current File : //proc/thread-self/root/proc/self/root/home2/selectio/public_html/thecomponents.in/admin/faq.php

<?php
session_start();

// set time for session timeout
$currentTime = time() + 25200;
$expired = 3600;

// if session not set go to login page
if (!isset($_SESSION['user'])) {
	header("location:index.php");
}

// if current time is more than session timeout back to login page
if ($currentTime > $_SESSION['timeout']) {
	session_destroy();
	header("location:index.php");
}

// destroy previous session timeout and create new one
unset($_SESSION['timeout']);
$_SESSION['timeout'] = $currentTime + $expired;
include "header.php"; ?>
<html>

<head>
	<title>FAQ | <?= $settings['app_name'] ?> - Dashboard</title>
</head>
</body>
<!-- Content Wrapper. Contains page content -->
<div class="content-wrapper">
	<?php
	include_once('includes/custom-functions.php');
	$fn = new custom_functions;
	$error1 = array();
	if (isset($_POST['btnAdd'])) {
		if (ALLOW_MODIFICATION == 0 && !defined(ALLOW_MODIFICATION)) {
			echo '<label class="alert alert-danger">This operation is not allowed in demo panel!.</label>';
			return false;
		}
		if ($permissions['faqs']['create'] == 1) {
			if (empty($_POST['query'])) {
				$error1['query'] = " <span class='label label-danger'>Query is required!</span>";
			}
			if (!empty($_POST['query']) && empty($error1)) {
				$query = $db->escapeString($fn->xss_clean($_POST['query']));
				$answer = $db->escapeString($fn->xss_clean($_POST['answer']));
				$error = array();
				// create random image file name
				$function = new functions;
                if($answer != ""){
                    $sql_query = "INSERT INTO faq (`question`, `answer`,`status`)VALUES('$query', '$answer',1)";
                    
                }else{
                    $sql_query = "INSERT INTO faq (`question`, `answer`,`status`)VALUES('$query', '$answer',2)";
                }
				// insert new data to menu table
				$db->sql($sql_query);
				$result = $db->getResult();
				if (!empty($result)) {
					$result = 0;
				} else {
					$result = 1;
				}
				if ($result == 1) {
					$error['add_query'] = "<script>function myFunction() {window.location.reload(true);}</script>";
				} else {
					$error['add_query'] = " <span class='label label-danger'>Failed add query</span>";
				}
			}
		} else {
			echo '<script>alert("You have no permission to create faq")</script>';
		}
	}
	// create object of functions class
	$function = new functions;

	// create array variable to store data from database
	$data = array();

	if (isset($_GET['keyword'])) {
		// check value of keyword variable
		$keyword = $function->sanitize($_GET['keyword']);
		$bind_keyword = "%" . $keyword . "%";
	} else {
		$keyword = "";
		$bind_keyword = $keyword;
	}

	if (empty($keyword)) {
		$sql_query = "SELECT id, question, answer FROM faq ORDER BY id DESC";
	} else {
		$sql_query = "SELECT id, question, answer FROM faq where question LIKE " . $bind_keyword . "  ORDER BY id DESC";
	}
	$db->sql($sql_query);
	$res = $db->getResult();
	$total_records = $db->numRows($res);
	// check page parameter
	if (isset($_GET['page'])) {
		$page = $_GET['page'];
	} else {
		$page = 1;
	}

	// number of data that will be display per page		
	$offset = 10;

	//lets calculate the LIMIT for SQL, and save it $from
	if ($page) {
		$from 	= ($page * $offset) - $offset;
	} else {
		//if nothing was given in page request, lets load the first page
		$from = 0;
	}

	if (empty($keyword)) {
		$sql_query = "SELECT id, question, answer
					FROM faq
					ORDER BY id DESC LIMIT " . $from . "," . $offset . "";
	} else {
		$sql_query = "SELECT id, question, answer
					FROM faq
					WHERE question LIKE " . $keyword . " 
					ORDER BY id DESC LIMIT " . $from . "," . $offset . "";
	}
	$db->sql($sql_query);
	$res = $db->getResult();
	// for paging purpose
	$total_records_paging = $total_records;

	// if no data on database show "No Reservation is Available"
	if ($total_records_paging == 0) {
	?>
    <section class="content">
			<!-- Main row -->
			<div class="row">
				<div class="col-md-12">
					<div class="box box-primary">
						<div class="box-header with-border">
							<h3 class="box-title">Frequently Asked Questions</h3>
							<div class="box-tools pull-right">
								<button class="btn btn-box-tool" data-widget="collapse"><i class="fa fa-minus"></i></button>
								<button class="btn btn-box-tool" data-widget="remove"><i class="fa fa-times"></i></button>
							</div>
						</div><!-- /.box-header -->
						<?php echo isset($error['add_query']) ? $error['add_query'] : ''; ?>
						<div class="box-footer">
							<form id="faq_form" method="post" enctype="multipart/form-data">
								<div class="input-group">
									<input class="form-control" name="query" placeholder="Add a Query...">
									<div class="msg"><?php echo isset($error1['query']) ? $error1['query'] : ''; ?></div><br>
									<input class="form-control" name="answer" placeholder="Add a Answer..." />
									<?php echo isset($error['answer']) ? $error['answer'] : ''; ?>
									<div class="input-group-btn">
										<button  class="btn btn-primary" type="submit" name="btnAdd"><i class="fa fa-plus"></i></button>
									</div>
								</div>
							</form>

						</div><!-- /.box-footer -->
					</div>
				</div>
			<div class="col-sx-12">
				<h4>
					<?php
					// for pagination purpose
					$function->doPages($offset, 'faq.php', '', $total_records, $keyword); ?>
				</h4>
			</div>
			</div>
		</section>
		<hr />
	<?php
		// otherwise, show data
	} else {
		$row_number = $from + 1;
	?>
		<section class="content">
			<!-- Main row -->
			<div class="row">
				<div class="col-md-12">
					<div class="box box-primary">
						<div class="box-header with-border">
							<h3 class="box-title">Frequently Asked Questions</h3>
							<div class="box-tools pull-right">
								<button class="btn btn-box-tool" data-widget="collapse"><i class="fa fa-minus"></i></button>
								<button class="btn btn-box-tool" data-widget="remove"><i class="fa fa-times"></i></button>
							</div>
						</div><!-- /.box-header -->
						<div class="box-body">
							<ul class="products-list product-list-in-box">
								<?php
								if ($permissions['faqs']['read'] == 1) {
									foreach ($res as $row) { ?>

										<li class="item">
											<div class="product-img">
												<a href="faq.php" class="product-title"><?php echo $row['question']; ?> </a>
												<p class="product-description">
													<?php echo $row['answer']; ?>
												</p>
											</div>
											<div class="product-info">
												<a href="delete-query.php?id=<?php echo $row['id']; ?>" class="product-title"><span class="label label-warning pull-right">Delete</span></a>

												<a href="edit-query.php?id=<?php echo $row['id']; ?>" class="product-title"><span class="label label-success pull-right">Edit | Answer</span></a> </div>
										</li><!-- /.item -->
									<?php }
								} else { ?>
									<div class="alert alert-danger">You have no permission to read faq</div>
								<?php } ?>
							</ul>
						</div><!-- /.box-body -->
						<?php echo isset($error['add_query']) ? $error['add_query'] : ''; ?>
						<div class="box-footer">
							<form id="faq_form" method="post" enctype="multipart/form-data">
								<div class="input-group">
									<input class="form-control" name="query" placeholder="Add a Query...">
									<div class="msg"><?php echo isset($error1['query']) ? $error1['query'] : ''; ?></div><br>
									<input class="form-control" name="answer" placeholder="Add a Answer..." />
									<?php echo isset($error['answer']) ? $error['answer'] : ''; ?>
									<div class="input-group-btn">
										<button  class="btn btn-primary" type="submit" name="btnAdd"><i class="fa fa-plus"></i></button>
									</div>
								</div>
							</form>

						</div><!-- /.box-footer -->
					</div>
				</div>
			<?php } ?>
			<div class="col-sx-12">
				<h4>
					<?php
					// for pagination purpose
					$function->doPages($offset, 'faq.php', '', $total_records, $keyword); ?>
				</h4>
			</div>
			</div>
		</section>
</div><!-- /.content-wrapper -->
</body>

</html>
<?php include "footer.php"; ?>
<script>
	var data = $('.msg').html();
	if(data != ''){
		$('.msg').show().delay(3000).fadeOut();
		'<?php $error1['query'] = "";?>'
	}
</script>

Zerion Mini Shell 1.0