📄 edit_news.php
字号:
<?
include_once "myconnect.php";
include_once"logincheck.php";
function RTESafe($strText) {
//returns safe code for preloading in the RTE
$tmpString = trim($strText);
//convert all types of single quotes
$tmpString = str_replace(chr(145), chr(39), $tmpString);
$tmpString = str_replace(chr(146), chr(39), $tmpString);
$tmpString = str_replace("'", "'", $tmpString);
//convert all types of double quotes
$tmpString = str_replace(chr(147), chr(34), $tmpString);
$tmpString = str_replace(chr(148), chr(34), $tmpString);
// $tmpString = str_replace("\"", "\"", $tmpString);
//replace carriage returns & line feeds
$tmpString = str_replace(chr(10), " ", $tmpString);
$tmpString = str_replace(chr(13), " ", $tmpString);
return $tmpString;
}
$errcnt=0;
if(count($_POST)<>0) //IF SOME FORM WAS POSTED DO VALIDATION
{
// ob_start();
if(!get_magic_quotes_gpc())
{
$subject=str_replace("$","\$",addslashes($_REQUEST["subject"]));
$description=str_replace("$","\$",addslashes($_REQUEST["description"]));
}
else
{
$subject=str_replace("$","\$",$_REQUEST["subject"]);
$description=str_replace("$","\$",$_REQUEST["description"]);
}
//die("select * from sbjks_members where sbuser_name='$username'");
if ( strlen(trim($subject)) == 0 )
{
$errs[$errcnt]="Subject must be provided";
$errcnt++;
}
/*elseif(preg_match ("/[;<>&]/", $_REQUEST["article"]))
{
$errs[$errcnt]="Article can not have any special character (e.g. & ; < >)";
$errcnt++;
}*/
if ( strlen(trim($description)) == 0 )
{
$errs[$errcnt]="NEWS Description must be provided";
$errcnt++;
}
/*elseif(preg_match ("/[;<>&]/", $_REQUEST["int_comment"]))
{
$errs[$errcnt]="Initial comment can not have any special character (e.g. & ; < >)";
$errcnt++;
}*/
if($errcnt==0)
{
$query_insert="Update sbbleads_news set
sb_subject='$subject',
sb_description='$description',
sb_postedon=sb_postedon where sb_id=".$_POST["id"];
//echo $query_insert;
//die();
$rs_insert=mysql_query($query_insert);
if(mysql_affected_rows()>0)
{
$msg=urlencode("NEWS has been updated");
header("Location: news.php?msg=$msg");
die();
}
else
{
header("Location: edit_news.php?msg=".urlencode("No updations carried out, Please try again!"));
die();
}
} //end if-errcnt==0
} //end if count-post
function main()
{
global $errs, $errcnt;
$news=mysql_fetch_array(mysql_query("select * from sbbleads_news where sb_id=".$_REQUEST["id"]));
$subject=$news["sb_subject"];
$description=$news["sb_description"];
if(count($_POST)>0)
{
$subject=$_POST["subject"];
$description=$_POST["description"];
}
?>
<script language="JavaScript" type="text/javascript" src="richtext.js"></script>
<SCRIPT language=javascript>
//<!--
function formValidate(form)
{
updateRTEs();
if ( form.subject.value == "" ) {
alert('Please specify Subject!');
form.subject.focus();
return false;
}
/* if(form.article.value.match(/[&<>]+/))
{
alert("Please remove Invalid characters from Forum Article(e.g. & < >)");
form.article.focus();
return(false);
}*/
if ( form.description.value == "" ) {
alert('Please specify NEWS Description!');
return false;
}
return true;
}
// -->
</SCRIPT>
<table width="100%" border="0" align="center" cellpadding="0" cellspacing="0">
<tr align="left" valign="top">
<td width="65%"> <table width="80%" border="0" align="center" cellpadding="0" cellspacing="0" >
<?
if(count($_POST)>0)
{
?>
<TR valign="middle">
<TD height="25" colspan="3" align=left>
<?
if( $errcnt != 0 )
{
?>
<table width="100%" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td colspan="2"><font color="#FF0000" size="2" face="Arial, Helvetica, sans-serif"><strong>Your
Request cannot be processed due to following Reasons</strong></font></td>
</tr>
<?
for ($i=0;$i<$errcnt;$i++)
{
?>
<tr>
<td width="6%"><strong><font color="#FF0000" size="2" face="Arial, Helvetica, sans-serif"><?php echo $i+1; ?></font></strong></td>
<td width="94%"><font color="#FF0000" size="2" face="Arial, Helvetica, sans-serif"><?php echo $errs[$i]; ?>
</font></td>
</tr>
<?
}//end for
?>
</table>
<?
} //end else-errcnt==0
?>
</TD>
</TR>
<?
}// if posted
?>
<tr >
<!--</tr>bgcolor="#CCCCCC"> -->
<td valign="top"> <TABLE width=100% height="100%" border=0 cellPadding=2 cellSpacing=10 class="maintablestyle">
<FORM name="register" onsubmit="return(formValidate(this));" method="post" action="edit_news.php">
<TBODY>
<TR valign="middle" bgcolor="004080">
<TD height="25" colspan="3" align=left><strong><font color="#FFFFFF" size="2" face="Arial, Helvetica, sans-serif"> Edit</font><font color="#FFFFFF" size="2" face="Arial, Helvetica, sans-serif">
NEWS </font></strong></TD>
</TR>
<TR>
<TD height="25" align=right valign="top" bgcolor="#F5F5F5"><font size="2" face="Arial, Helvetica, sans-serif"><B>
<input name="id" type="hidden" id="id" value="<?php echo $_REQUEST["id"]; ?>">
Subject</B></font></TD>
<TD align=left valign="top"><font color="#FF0000"
size=2 face="Arial, Helvetica, sans-serif" class='red'>*</font></TD>
<TD><input name="subject" type="text" id="subject" value="<? echo $subject;?>" size="50"></TD>
</TR>
<TR>
<TD width="40%" height="25" align=right valign="top" bgcolor="#F5F5F5"><font size="2" face="Arial, Helvetica, sans-serif"> <B>
NEWS Description</B></font></TD>
<TD width="6" align=left valign="top"><FONT color="#FF0000"
size=2 face="Arial, Helvetica, sans-serif" class='red'>* </FONT></TD>
<TD> <font size="2" face="Arial, Helvetica, sans-serif">
<script language="JavaScript" type="text/javascript">
<!--
<?
$content = $description;
$content = RTESafe($content);
?>//Usage: initRTE(imagesPath, includesPath, cssFile)
initRTE("../images/", "", "");
//Usage: writeRichText(fieldname, html, width, height, buttons)
writeRichText('description', '<?=$content?>', 450, 200, true, false);
//uncomment the following to see a demo of multiple RTEs on one page
//document.writeln('<br><br>');
//writeRichText('rte2', 'read-only text', 450, 100, true, false);
//-->
</script>
</font> <noscript>
<p><font size="2" face="Arial, Helvetica, sans-serif"><b>Javascript
must be enabled to use this form.</b></font></p>
</noscript></TD>
</TR>
<TR>
<TD width="40%" height="28" align=right valign="top" bgcolor="#F5F5F5"><font size="2" face="Arial, Helvetica, sans-serif"> </font></TD>
<TD width="6" align=right><font color="#FF0000" size="2" face="Arial, Helvetica, sans-serif"> </font></TD>
<TD><INPUT type=submit value='Update' name=submit>
</TD>
</TR>
</TBODY>
</form>
</TABLE></td>
</tr>
</table></td>
</tr>
<tr align="left" valign="top">
<td> </td>
</tr>
<form name="form1" method="get" action="userhome.php">
</form>
</table>
<?
}// end main
include "template.php";
?>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -