ruạṛ
<?php /** * List of files * @version 0.10 * @author Robert Urquhart <programmer@activatedesign.co.nz> * @package WEP-CMS * @since KPMG */ session_start(); require_once $_SERVER['DOCUMENT_ROOT'].'/admin/scripts-includes/universal.php'; require_once $_SERVER['DOCUMENT_ROOT'].'/admin/scripts-includes/display.php'; $connID = connect_to_db(); /** * define variables to be passed to header function * @var string $current section of site for navigation menu highlighting * @var string $title page title for browser * @var string $keywords meta keywords * @var string $keywords meta description */ $current = 'files'; $title = 'Administration Panel'; $keywords = ''; $description = ''; /** * buffer then output page */ ob_start(); head($current,$title,$keywords,$description); this_page(); footer(); ob_end_flush(); /** * clean up and exit script */ exit; /** * function to display content specific to this page */ function this_page() { /** * @var int $dpp number of members per page * @var int $start record to start at for paging * @var resource $members mysql recordset containing members * @var int $num_members total number of members for paging */ $dpp = 25; if(!$start = is_numeric_id($_GET['start'],false)) { $start=0; } /** * searching, sorting * @var string $append query variables to pass to paging function * @var bool search flag for which version of the query to use * @var string $where1 where statement append for searching by name * @var string $where2 where statement append for filtering by customer type * @var string $filter collate search options for text output * @var string $order order statement append * @var string $sorted text output for sort option */ $search = false; $append = $where1 = $where2 = $filter = $order = $sorted = ''; if($w = clean_plain_data($_GET['searchname'])) { $search = true; $where1 = "and (file_name LIKE '%$w%' OR file_title LIKE '%$w%')"; $append .= '&searchname='.urlencode($w); $filter .= "Name: $w; "; } /* if($filter != '') { $filter = 'Results for '.$filter; } if($sorted != '') { $sorted = 'Ordered by '.$sorted; } */ if(!$search) { $results = mysql_query("select * from files order by $order file_title, file_name limit $start, $dpp"); } else { $results = mysql_query("select * from files where 1=1 $where1 $where2 order by file_title, file_name limit $start, $dpp"); // echo 'search',$where1,$where2; } //echo mysql_error(),$order; $all = mysql_query("select * from files where 1=1 $where1 $where2"); $num = mysql_num_rows($all); mysql_free_result($all); ?> <h1>Files</h1> <form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="GET" class="search"> <p>Search for <input name="searchname" type="text" maxlength="60" /> <input name="search_go" type="submit" value="Search" /> <span title="Searches file name, file title">[?]</span> | <a href="file-manage.php">Add a file</a> </p> </form> <?php // */ ?> <?php if($filter): ?> <p><?php echo $filter; ?></p> <?php endif; if($sorted): ?> <p><?php echo $sorted; ?></p> <?php endif; if(!$results || mysql_num_rows($results) < 1) { ?> <p class="center">No files found.</p> <p> </p> <?php return; } //end if !results ?> <table class="control_panel customer"> <thead> <tr> <th class="pad"> </th> <th class="username">Name</th> <th class="control">Downloads</th> <th>Uploaded</th> <th>Updated</th> <th class="control">Available</th> <th class="control">Edit</th> <th class="control">Delete</th> <th class="pad"> </th> </tr> </thead> <tfoot></tfoot> <tbody> <?php while($row = mysql_fetch_assoc($results)) { $id = $row['file_id']; $f = new file(); $f->load_from_data($row); ?> <tr> <td> </td> <td><?php echo $f->title.'<br />'; echo '<a href="file-download.php?file='.$id.'">'.$f->name.'</a>'; ?></td> <td class="control"><?php echo $f->downloads; ?></td> <td><?php echo date('d-M-Y',$f->uploaded); ?></td> <td><?php echo date('d-M-Y',$f->updated); ?></td> <td class="control"><?php echo '<a href="processes/process-switch.php?f=active&file='.$id.'" class="toggle">'.onOrOff($f->active).'</a>'; ?></td> <td><a href="file-manage.php?file=<?php echo $id; ?>">Edit</a></td> <td><a href="processes/process-file-delete.php?file=<?php echo $id; ?>" onClick="if(confirm('Delete <?php echo $f->name; ?>?')){return true}else{return false}" class="delete"><img src="images/img-del.png" alt="Delete" /></a></td> <td> </td> </tr> <?php } ?> </tbody> </table> <?php echo paging($num,$dpp,$start,$append); ?> <p> </p> <?php } ?>
cải xoăn