File: /home/asjudine/public_html/admin/modules/polls.php
<?php
if (!eregi("admin.php", $PHP_SELF)) { die ("Access Denied"); }
$hlpfile = "manual/surveys.html";
$result = sql_query("select radminsurvey, radminsuper from $prefix"._authors." where aid='$aid'", $dbi);
list($radminsurvey, $radminsuper) = sql_fetch_row($result, $dbi);
if (($radminsurvey==1) OR ($radminsuper==1)) {
/*********************************************************/
/* Poll/Surveys Functions */
/*********************************************************/
function puthome($ihome, $acomm) {
echo "<br><b>"._PUBLISHINHOME."</b> ";
if (($ihome == 0) OR ($ihome == "")) {
$sel1 = "checked";
$sel2 = "";
}
if ($ihome == 1) {
$sel1 = "";
$sel2 = "checked";
}
echo "<input type=\"radio\" name=\"ihome\" value=\"0\" $sel1>"._YES." "
."<input type=\"radio\" name=\"ihome\" value=\"1\" $sel2>"._NO.""
." <font class=\"content\">[ "._ONLYIFCATSELECTED." ]</font><br>";
echo "<br><b>"._ACTIVATECOMMENTS."</b> ";
if (($acomm == 0) OR ($acomm == "")) {
$sel1 = "checked";
$sel2 = "";
}
if ($acomm == 1) {
$sel1 = "";
$sel2 = "checked";
}
echo "<input type=\"radio\" name=\"acomm\" value=\"0\" $sel1>"._YES." "
."<input type=\"radio\" name=\"acomm\" value=\"1\" $sel2>"._NO."</font><br><br>";
}
function SelectCategory($cat) {
global $prefix, $dbi;
$selcat = sql_query("select catid, title from $prefix"._stories_cat." order by title", $dbi);
$a = 1;
echo "<b>"._CATEGORY."</b> ";
echo "<select name=\"catid\">";
if ($cat == 0) {
$sel = "selected";
} else {
$sel = "";
}
echo "<option name=\"catid\" value=\"0\" $sel>"._ARTICLES."</option>";
while(list($catid, $title) = sql_fetch_row($selcat, $dbi)) {
if ($catid == $cat) {
$sel = "selected";
} else {
$sel = "";
}
echo "<option name=\"catid\" value=\"$catid\" $sel>$title</option>";
$a++;
}
echo "</select> [ <a href=\"admin.php?op=AddCategory\">"._ADD."</a> | <a href=\"admin.php?op=EditCategory\">"._EDIT."</a> | <a href=\"admin.php?op=DelCategory\">"._DELETE."</a> ]";
}
function poll_createPoll() {
global $language, $hlpfile, $admin, $multilingual, $prefix, $dbi;
include ('header.php');
GraphicAdmin($hlpfile);
OpenTable();
echo "<center><font class=\"title\"><b>"._POLLSADMIN."</b></font></center>";
CloseTable();
echo "<br>";
OpenTable();
echo "<center><font class=\"option\"><b>"._CREATEPOLL."</b></font><br><br>"
."[ <a href=\"admin.php?op=remove\">"._DELETEPOLLS."</a> | <a href=\"admin.php?op=polledit_select\">"._EDITPOLL."</a> ]</center><br><br>"
."<form action=\"admin.php\" method=\"post\">"
.""._POLLTITLE.": <input type=\"text\" name=\"pollTitle\" size=\"50\" maxlength=\"100\"><br><br>";
if ($multilingual == 1) {
echo "<br>"._LANGUAGE.": "
."<select name=\"planguage\">";
$handle=opendir('language');
while ($file = readdir($handle)) {
if (preg_match("/^lang\-(.+)\.php/", $file, $matches)) {
$langFound = $matches[1];
$languageslist .= "$langFound ";
}
}
closedir($handle);
$languageslist = explode(" ", $languageslist);
sort($languageslist);
for ($h=0; $h < sizeof($languageslist); $h++) {
if($languageslist[$h]!="") {
echo "<option value=\"$languageslist[$h]\" ";
if($languageslist[$h]==$language) echo "selected";
echo ">".ucfirst($languageslist[$h])."</option>\n";
}
}
echo "</select><br><br>";
} else {
echo "<input type=\"hidden\" name=\"planguage\" value=\"$language\"><br><br>";
}
echo "<font class=\"content\">"._POLLEACHFIELD."</font><br>"
."<table border=\"0\">";
for($i = 1; $i <= 12; $i++) {
echo "<tr>"
."<td>"._OPTION." $i:</td><td><input type=\"text\" name=\"optionText[$i]\" size=\"50\" maxlength=\"50\"></td>"
."</tr>";
}
echo "</table>"
."<br><br><center><hr size=\"1\" noshade><font class=\"option\"><b>"._ANNOUNCEPOLL."</b></font><br>"
."<font class=\"tiny\">"._LEAVEBLANK."</font></center>"
."<br><br><b>"._TITLE.":</b><br>"
."<input type=\"text\" name=\"title\" size=\"40\"><br><br>";
$cat = 0;
$ihome = 0;
$acomm = 0;
SelectCategory($cat);
echo "<br>";
puthome($ihome, $acomm);
echo "<b>"._TOPIC."</b> <select name=\"topic\">";
$toplist = sql_query("select topicid, topictext from $prefix"._topics." order by topictext", $dbi);
echo "<option value=\"\">"._SELECTTOPIC."</option>\n";
while(list($topicid, $topics) = sql_fetch_row($toplist, $dbi)) {
echo "<option value=\"$topicid\">$topics</option>\n";
}
echo "</select>";
echo "<br><br><b>"._STORYTEXT."</b><br>"
."<textarea wrap=\"virtual\" cols=\"50\" rows=\"7\" name=\"hometext\">$story</textarea><br><br>"
."<b>"._EXTENDEDTEXT."</b><br>"
."<textarea wrap=\"virtual\" cols=\"50\" rows=\"8\" name=\"bodytext\"></textarea><BR>"
."<br><br>"
."<input type=\"hidden\" name=\"op\" value=\"createPosted\">"
."<input type=\"submit\" value=\""._CREATEPOLLBUT."\">"
."</form>";
CloseTable();
include ('footer.php');
}
function old_poll_createPosted() {
global $pollTitle, $optionText, $prefix, $dbi, $planguage;
$timeStamp = time();
$result = sql_query("INSERT INTO $prefix"._poll_desc." VALUES (NULL, '$pollTitle', '$timeStamp', '$planguage', '0')", $dbi);
if (!$result) {
return;
}
/* create option records in data table */
for($i = 1; $i <= 12; $i++) {
if($optionText[$i] != "") {
$result = sql_query("INSERT INTO $prefix"._poll_data." VALUES ($id, '$optionText[$i]', 0, $i)", $dbi);
}
if (!result) {
return;
}
}
Header("Location: admin.php?op=adminMain");
}
function poll_createPosted($pollTitle, $optionText, $planguage, $title, $hometext, $topic, $bodytext, $catid, $ihome, $acomm) {
global $prefix, $dbi, $aid;
$timeStamp = time();
$pollTitle = FixQuotes($pollTitle);
if(!sql_query("INSERT INTO $prefix"._poll_desc." VALUES (NULL, '$pollTitle', '$timeStamp', 0, '$planguage', '0')", $dbi)) {
return;
}
$object = sql_fetch_object(sql_query("SELECT pollID FROM $prefix"._poll_desc." WHERE pollTitle='$pollTitle'", $dbi), $dbi);
$id = $object->pollID;
for($i = 1; $i <= sizeof($optionText); $i++) {
if($optionText[$i] != "") {
$optionText[$i] = FixQuotes($optionText[$i]);
}
if(!sql_query("INSERT INTO $prefix"._poll_data." (pollID, optionText, optionCount, voteID) VALUES ($id, '$optionText[$i]', 0, $i)", $dbi)) {
return;
}
}
if (($title != "") AND ($hometext != "")) {
$title = stripslashes(FixQuotes($title));
$hometext = stripslashes(FixQuotes($hometext));
$bodytext = stripslashes(FixQuotes($bodytext));
$result = sql_query("insert into $prefix"._stories." values (NULL, '$catid', '$aid', '$title', now(), '$hometext', '$bodytext', '0', '0', '$topic', '$aid', '', '$ihome', '$planguage', '$acomm', '0', '0')", $dbi);
}
Header("Location: admin.php?op=adminMain");
}
function poll_removePoll() {
global $hlpfile, $prefix, $dbi;
$hlpfile = "manual/surveys.html";
include ('header.php');
GraphicAdmin($hlpfile);
OpenTable();
echo "<center><font class=\"title\"><b>"._POLLSADMIN."</b></font></center>";
CloseTable();
echo "<br>";
OpenTable();
echo "<center><font class=\"option\"><b>"._REMOVEEXISTING."</b></font><br><br>"
.""._POLLDELWARNING."</center><br><br>"
.""._CHOOSEPOLL."<br>"
."<form action=\"admin.php\" method=\"post\">"
."<input type=\"hidden\" name=\"op\" value=\"removePosted\">"
."<table border=\"0\">";
$result = sql_query("SELECT pollID, pollTitle, timeStamp, planguage FROM $prefix"._poll_desc." ORDER BY timeStamp", $dbi);
if(!$result) {
return;
}
/* cycle through the descriptions until everyone has been fetched */
while($object = sql_fetch_object($result, $dbi)) {
$pollID = $object->pollID;
echo "<tr><td><input type=\"radio\" name=\"id\" value=\"".$object->pollID."\">".$object->pollTitle." - (".$object->planguage.")</td></tr>";
}
echo "</table>";
echo "<input type=\"submit\" value=\""._DELETE."\">";
echo "</form>";
CloseTable();
include ('footer.php');
}
function poll_removePosted() {
global $id, $prefix, $dbi;
sql_query("DELETE FROM $prefix"._poll_desc." WHERE pollID=$id", $dbi);
sql_query("DELETE FROM $prefix"._poll_data." WHERE pollID=$id", $dbi);
Header("Location: admin.php?op=adminMain");
}
function polledit_select() {
global $hlpfile, $prefix, $dbi;
$hlpfile = "manual/surveys.html";
include ('header.php');
GraphicAdmin($hlpfile);
OpenTable();
echo "<center><font class=\"title\"><b>"._POLLSADMIN."</b></font></center>";
CloseTable();
echo "<br>";
OpenTable();
echo "<center><font class=\"option\"><b>"._EDITPOLL."</b></font></center><br><br>"
.""._CHOOSEPOLLEDIT."<br>"
."<form action=\"admin.php\" method=\"post\">"
."<input type=\"hidden\" name=\"op\" value=\"polledit\">"
."<table border=\"0\">";
$result = sql_query("SELECT pollID, pollTitle, timeStamp, planguage FROM $prefix"._poll_desc." ORDER BY timeStamp", $dbi);
if(!$result) {
return;
}
/* cycle through the descriptions until everyone has been fetched */
while($object = sql_fetch_object($result, $dbi)) {
$pollID = $object->pollID;
echo "<tr><td><input type=\"radio\" name=\"pollID\" value=\"".$object->pollID."\">".$object->pollTitle." - (".$object->planguage.")</td></tr>";
}
echo "</table>";
echo "<input type=\"submit\" value=\""._EDIT."\">";
echo "</form>";
CloseTable();
include ('footer.php');
}
function polledit($pollID) {
global $prefix, $dbi;
include ('header.php');
GraphicAdmin($hlpfile);
OpenTable();
echo "<center><font class=\"title\"><b>"._POLLSADMIN."</b></font></center>";
$result = sql_query("select pollTitle from $prefix"._poll_desc." where pollID=$pollID", $dbi);
list($pollTitle) = sql_fetch_row($result, $dbi);
CloseTable();
echo "<br>";
OpenTable();
echo "<center><b>"._POLLEDIT." $pollTitle</b></center><br><br>";
echo "<form action=\"admin.php\" method=\"post\">";
echo "<table border=\"0\" align=\"center\"><tr><td>";
echo "<b>"._TITLE.":</b></td><td colspan=\"2\"><input type=\"text\" name=\"pollTitle\" value=\"$pollTitle\" size=\"40\" maxlength=\"100\"><br><br></td></tr>";
$result = sql_query("select optionText, optionCount, voteID from $prefix"._poll_data." where pollID=$pollID order by voteID", $dbi);
while(list($optionText, $optionCount, $voteID) = sql_fetch_row($result, $dbi)) {
echo "<tr><td align=\"center\"><b>$voteID</b></td><td><input type=\"text\" name=\"optiontext$voteID\" value=\"$optionText\" size=\"40\" maxlength=\"50\"></td><td align=\"right\">$optionCount "._VOTES."</td></tr>";
}
echo "</table><input type=\"hidden\" name=\"pollID\" value=\"$pollID\"><input type=\"hidden\" name=\"op\" value=\"savepoll\">"
."<br><br><center><input type=\"submit\" value=\""._SAVECHANGES."\"><br>"._GOBACK."</center><br><br></form>";
CloseTable();
include("footer.php");
}
function savepoll($pollID, $pollTitle, $optiontext1, $optiontext2, $optiontext3, $optiontext4, $optiontext5, $optiontext6, $optiontext7, $optiontext8, $optiontext9, $optiontext10, $optiontext11, $optiontext12) {
global $prefix, $dbi;
$result = sql_query("update $prefix"._poll_desc." set pollTitle='$pollTitle' where pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext1' where voteID=1 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext2' where voteID=2 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext3' where voteID=3 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext4' where voteID=4 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext5' where voteID=5 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext6' where voteID=6 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext7' where voteID=7 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext8' where voteID=8 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext9' where voteID=9 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext10' where voteID=10 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext11' where voteID=11 AND pollID='$pollID'", $dbi);
$result = sql_query("update $prefix"._poll_data." set optionText='$optiontext12' where voteID=12 AND pollID='$pollID'", $dbi);
Header("Location: admin.php");
}
switch($op) {
case "create":
poll_createPoll();
break;
case "createPosted":
poll_createPosted($pollTitle, $optionText, $planguage, $title, $hometext, $topic, $bodytext, $catid, $ihome, $acomm);
break;
case "ChangePoll":
ChangePoll($pollID, $pollTitle, $optionText, $voteID);
break;
case "remove":
poll_removePoll();
break;
case "removePosted":
poll_removePosted();
break;
case "polledit":
polledit($pollID);
break;
case "savepoll":
savepoll($pollID, $pollTitle, $optiontext1, $optiontext2, $optiontext3, $optiontext4, $optiontext5, $optiontext6, $optiontext7, $optiontext8, $optiontext9, $optiontext10, $optiontext11, $optiontext12);
break;
case "polledit_select":
polledit_select();
break;
}
} else {
echo "Access Denied";
}
?>