ok

Mini Shell

Direktori : /home2/selectio/www/thecomponents.in/admin/public/
Upload File :
Current File : /home2/selectio/www/thecomponents.in/admin/public/edit-query-form.php

<?php
include_once('includes/functions.php');
include_once('includes/custom-functions.php');
$fn = new custom_functions;
?>
<?php

$ID = (isset($_GET['id'])) ? $db->escapeString($fn->xss_clean($_GET['id'])) : "";

$faq_data = array();

$sql_query = "SELECT id, question, answer, status FROM faqORDER BY id ASC";
$db->sql($sql_query);
$res = $db->getResult();
if (isset($_POST['btnEdit'])) {
    if (ALLOW_MODIFICATION == 0 && !defined(ALLOW_MODIFICATION)) {
        echo '<label class="alert alert-danger">This operation is not allowed in demo panel!.</label>';
        return false;
    }
    if ($permissions['faqs']['update'] == 1) {

        $question = $db->escapeString($fn->xss_clean($_POST['question']));
        $answer = $db->escapeString($fn->xss_clean($_POST['answer']));
        $status = $db->escapeString($fn->xss_clean($_POST['status']));
        // create array variable to handle error
        $error = array();

        if (empty($question)) {
            $error['question'] = " <span class='label label-danger'>Required!</span>";
        }
        if (empty($answer)) {
            $error['answer'] = " <span class='label label-danger'>Required!</span>";
        }
        if (empty($status)) {
            $error['status'] = " <span class='label label-danger'>Required!</span>";
        }

        if (!empty($question) && !empty($answer) && !empty($status)) {
            $function = new functions;
            $sql_query = "UPDATE faq SET question = '" . $question . "' , answer = '" . $answer . "' , status = '" . $status . "' WHERE id =" . $ID;
            $db->sql($sql_query);
            $update_result = $db->getResult();
            if (!empty($update_result)) {
                $update_result = 0;
            } else {
                $update_result = 1;
            }
            if ($update_result == 1) {
                $error['update_data'] = "<section class='content-header'>
												<span class='label label-success'>Query updated Successfully</span>
												</section>";
            } else {
                $error['update_data'] = " <span class='label label-danger'>failed update</span>";
            }
        }
    } else {
        $error['update_data'] = "<section class='content-header'><span class='label label-danger'>You have no permission to edit faq</span></section>";
    }
}

$data = array();
$sql_query = "SELECT * FROM faq WHERE id =" . $ID;
$db->sql($sql_query);
$res = $db->getResult();
?>
<section class="content-header">
    <h1>
        Edit FAQ</h1>
    <small><?php echo isset($error['update_data']) ? $error['update_data'] : ''; ?></small>
    <h4><small><a href='faq.php'><i class='fa fa-angle-double-left'></i>&nbsp;&nbsp;&nbsp;Back to Faqs</a></small></h4>
    <ol class="breadcrumb">
        <li><a href="home.php"><i class="fa fa-home"></i> Home</a></li>
    </ol>
</section>
<section class="content">
    <!-- Main row -->
    <div class="row">
        <div class="col-md-6">
            <?php if ($permissions['faqs']['update'] == 0) { ?>
                <div class="alert alert-danger topmargin-sm">You have no permission to edit faq</div>
            <?php } ?>
            <!-- general form elements -->
            <div class="box box-primary">
                <div class="box-header with-border">
                    <h3 class="box-title">Edit FAQ</h3>
                </div><!-- /.box-header -->
                <!-- form start -->
                <form method="post" enctype="multipart/form-data">
                    <div class="box-body">
                        <div class="form-group">
                            <label for="exampleInputEmail1">Question</label><?php echo isset($error['question']) ? $error['question'] : ''; ?>
                            <input type="text" name="question" class="form-control" value="<?php echo $res[0]['question']; ?>" />
                        </div>
                        <div class="form-group">
                            <label for="exampleInputEmail1">Answer :</label><?php echo isset($error['answer']) ? $error['answer'] : ''; ?>
                            <input type="text" name="answer" class="form-control" value="<?php echo $res[0]['answer']; ?>" />
                        </div>
                        <div class="form-group">
                            <label for="exampleInputEmail1">Status :</label><?php echo isset($error['status']) ? $error['status'] : ''; ?>
                            <select name="status" class="form-control">
                                <?php if ($res[0]['status'] == 1) { ?>
                                    <option value="1" selected="selected">Answered</option>
                                    <option value="2">Pending</option>
                                <?php } else { ?>
                                    <option value="1">Answered</option>
                                    <option value="2" selected="selected">Pending</option>
                                <?php } ?>
                            </select>
                        </div>
                        <div class="box-footer">
                            <input type="submit" class="btn-primary btn" value="Update" name="btnEdit" />
                        </div>
                </form>
            </div><!-- /.box -->
        </div>
    </div>
</section>

<div class="separator"> </div>
<?php
$db->disconnect(); ?>

Zerion Mini Shell 1.0