ok
Direktori : /home2/selectio/www/ramali.in/dashboard/ |
Current File : /home2/selectio/www/ramali.in/dashboard/faq.php |
<?php session_start(); // set time for session timeout $currentTime = time() + 25200; $expired = 3600; // if session not set go to login page if (!isset($_SESSION['user'])) { header("location:index.php"); } // if current time is more than session timeout back to login page if ($currentTime > $_SESSION['timeout']) { session_destroy(); header("location:index.php"); } // destroy previous session timeout and create new one unset($_SESSION['timeout']); $_SESSION['timeout'] = $currentTime + $expired; include "header.php"; ?> <html> <head> <title>FAQ | <?= $settings['app_name'] ?> - Dashboard</title> </head> </body> <!-- Content Wrapper. Contains page content --> <div class="content-wrapper"> <?php include_once('includes/custom-functions.php'); $fn = new custom_functions; $error1 = array(); if (isset($_POST['btnAdd'])) { if (ALLOW_MODIFICATION == 0 && !defined(ALLOW_MODIFICATION)) { echo '<label class="alert alert-danger">This operation is not allowed in demo panel!.</label>'; return false; } if ($permissions['faqs']['create'] == 1) { if (empty($_POST['query'])) { $error1['query'] = " <span class='label label-danger'>Query is required!</span>"; } if (!empty($_POST['query']) && empty($error1)) { $query = $db->escapeString($fn->xss_clean($_POST['query'])); $answer = $db->escapeString($fn->xss_clean($_POST['answer'])); $error = array(); // create random image file name $function = new functions; if($answer != ""){ $sql_query = "INSERT INTO faq (`question`, `answer`,`status`)VALUES('$query', '$answer',1)"; }else{ $sql_query = "INSERT INTO faq (`question`, `answer`,`status`)VALUES('$query', '$answer',2)"; } // insert new data to menu table $db->sql($sql_query); $result = $db->getResult(); if (!empty($result)) { $result = 0; } else { $result = 1; } if ($result == 1) { $error['add_query'] = "<script>function myFunction() {window.location.reload(true);}</script>"; } else { $error['add_query'] = " <span class='label label-danger'>Failed add query</span>"; } } } else { echo '<script>alert("You have no permission to create faq")</script>'; } } // create object of functions class $function = new functions; // create array variable to store data from database $data = array(); if (isset($_GET['keyword'])) { // check value of keyword variable $keyword = $function->sanitize($_GET['keyword']); $bind_keyword = "%" . $keyword . "%"; } else { $keyword = ""; $bind_keyword = $keyword; } if (empty($keyword)) { $sql_query = "SELECT id, question, answer FROM faq ORDER BY id DESC"; } else { $sql_query = "SELECT id, question, answer FROM faq where question LIKE " . $bind_keyword . " ORDER BY id DESC"; } $db->sql($sql_query); $res = $db->getResult(); $total_records = $db->numRows($res); // check page parameter if (isset($_GET['page'])) { $page = $_GET['page']; } else { $page = 1; } // number of data that will be display per page $offset = 10; //lets calculate the LIMIT for SQL, and save it $from if ($page) { $from = ($page * $offset) - $offset; } else { //if nothing was given in page request, lets load the first page $from = 0; } if (empty($keyword)) { $sql_query = "SELECT id, question, answer FROM faq ORDER BY id DESC LIMIT " . $from . "," . $offset . ""; } else { $sql_query = "SELECT id, question, answer FROM faq WHERE question LIKE " . $keyword . " ORDER BY id DESC LIMIT " . $from . "," . $offset . ""; } $db->sql($sql_query); $res = $db->getResult(); // for paging purpose $total_records_paging = $total_records; // if no data on database show "No Reservation is Available" if ($total_records_paging == 0) { ?> <section class="content"> <!-- Main row --> <div class="row"> <div class="col-md-12"> <div class="box box-primary"> <div class="box-header with-border"> <h3 class="box-title">Frequently Asked Questions</h3> <div class="box-tools pull-right"> <button class="btn btn-box-tool" data-widget="collapse"><i class="fa fa-minus"></i></button> <button class="btn btn-box-tool" data-widget="remove"><i class="fa fa-times"></i></button> </div> </div><!-- /.box-header --> <?php echo isset($error['add_query']) ? $error['add_query'] : ''; ?> <div class="box-footer"> <form id="faq_form" method="post" enctype="multipart/form-data"> <div class="input-group"> <input class="form-control" name="query" placeholder="Add a Query..."> <div class="msg"><?php echo isset($error1['query']) ? $error1['query'] : ''; ?></div><br> <input class="form-control" name="answer" placeholder="Add a Answer..." /> <?php echo isset($error['answer']) ? $error['answer'] : ''; ?> <div class="input-group-btn"> <button class="btn btn-primary" type="submit" name="btnAdd"><i class="fa fa-plus"></i></button> </div> </div> </form> </div><!-- /.box-footer --> </div> </div> <div class="col-sx-12"> <h4> <?php // for pagination purpose $function->doPages($offset, 'faq.php', '', $total_records, $keyword); ?> </h4> </div> </div> </section> <hr /> <?php // otherwise, show data } else { $row_number = $from + 1; ?> <section class="content"> <!-- Main row --> <div class="row"> <div class="col-md-12"> <div class="box box-primary"> <div class="box-header with-border"> <h3 class="box-title">Frequently Asked Questions</h3> <div class="box-tools pull-right"> <button class="btn btn-box-tool" data-widget="collapse"><i class="fa fa-minus"></i></button> <button class="btn btn-box-tool" data-widget="remove"><i class="fa fa-times"></i></button> </div> </div><!-- /.box-header --> <div class="box-body"> <ul class="products-list product-list-in-box"> <?php if ($permissions['faqs']['read'] == 1) { foreach ($res as $row) { ?> <li class="item"> <div class="product-img"> <a href="faq.php" class="product-title"><?php echo $row['question']; ?> </a> <p class="product-description"> <?php echo $row['answer']; ?> </p> </div> <div class="product-info"> <a href="delete-query.php?id=<?php echo $row['id']; ?>" class="product-title"><span class="label label-warning pull-right">Delete</span></a> <a href="edit-query.php?id=<?php echo $row['id']; ?>" class="product-title"><span class="label label-success pull-right">Edit | Answer</span></a> </div> </li><!-- /.item --> <?php } } else { ?> <div class="alert alert-danger">You have no permission to read faq</div> <?php } ?> </ul> </div><!-- /.box-body --> <?php echo isset($error['add_query']) ? $error['add_query'] : ''; ?> <div class="box-footer"> <form id="faq_form" method="post" enctype="multipart/form-data"> <div class="input-group"> <input class="form-control" name="query" placeholder="Add a Query..."> <div class="msg"><?php echo isset($error1['query']) ? $error1['query'] : ''; ?></div><br> <input class="form-control" name="answer" placeholder="Add a Answer..." /> <?php echo isset($error['answer']) ? $error['answer'] : ''; ?> <div class="input-group-btn"> <button class="btn btn-primary" type="submit" name="btnAdd"><i class="fa fa-plus"></i></button> </div> </div> </form> </div><!-- /.box-footer --> </div> </div> <?php } ?> <div class="col-sx-12"> <h4> <?php // for pagination purpose $function->doPages($offset, 'faq.php', '', $total_records, $keyword); ?> </h4> </div> </div> </section> </div><!-- /.content-wrapper --> </body> </html> <?php include "footer.php"; ?> <script> var data = $('.msg').html(); if(data != ''){ $('.msg').show().delay(3000).fadeOut(); '<?php $error1['query'] = "";?>' } </script>