File: /home/asjudine/www/admin.php
<?php
//require("auth.inc.php");
//require_once("mainfile.php");
//if(!isset($op)) { $op = "adminMain"; }
//$adminpage = 1;
//$pagetitle = "- "._ADMINMENU."";
/*********************************************************/
/* Login Function */
/*********************************************************/
function login() {
/* include ("header.php");
OpenTable();
echo "<center><font class=\"title\"><b>"._ADMINLOGIN."</b></font></center>";
CloseTable();
echo "<br>";
OpenTable();
echo "<form action=\"admin.php\" method=\"post\">"
."<table border=\"0\">"
."<tr><td>"._ADMINID."</td>"
."<td><input type=\"text\" NAME=\"aid\" SIZE=\"20\" MAXLENGTH=\"20\"></td></tr>"
."<tr><td>"._PASSWORD."</td>"
."<td><input type=\"password\" NAME=\"pwd\" SIZE=\"20\" MAXLENGTH=\"18\"></td></tr>"
."<tr><td>"
."<input type=\"hidden\" NAME=\"op\" value=\"login\">"
."<input type=\"submit\" VALUE=\""._LOGIN."\">"
."</td></tr></table>"
."</form>";
CloseTable();
include ("footer.php");
*/
}
function deleteNotice($id, $table, $op_back) {
global $dbi;
sql_query("delete from $table WHERE id = $id", $dbi);
Header("Location: admin.php?op=$op_back");
}
/*********************************************************/
/* Administration Menu Function */
/*********************************************************/
function adminmenu($url, $title, $image) {
global $counter, $admingraphic;
if ($admingraphic == 1) {
$img = "<img src=\"images/admin/$image\" border=\"0\" alt=\"\"></a><br>";
$close = "";
} else {
$image = "";
$close = "</a>";
}
// al copiar esto estoy quitando la imagen
// echo "<td align=\"center\"><font face=\"Geneva, Arial, Helvetica, san-serif\" size=\"1\"><a href=\"$url\">$img<b>$title</b>$close</font></td>";
echo "<td align=\"center\"><font face=\"Geneva, Arial, Helvetica, san-serif\" size=\"1\"><a href=\"$url\"><b>$title</b>$close</font></td>";
if ($counter == 5) {
echo "</tr><tr>";
$counter = 0;
} else {
$counter++;
}
}
function GraphicAdmin($hlpfile) {
global $aid, $admingraphic, $language, $admin, $banners, $prefix, $dbi;
$result = sql_query("SELECT qid FROM $prefix"._queue."", $dbi);
$newsubs = sql_num_rows($result, $dbi);
// echo "ESTO ES LO QUE VIENE $aid";
$result = sql_query("select radminarticle,radmintopic,radminuser,radminsurvey,radminsection,radminlink,radminephem,radminfaq,radmindownload,radminreviews,radminsuper from $prefix"._authors." where aid='$aid'", $dbi);
// $result = sql_query("select radminarticle,radmintopic,radminuser,radminsurvey,radminsection,radminlink,radminephem,radminfaq,radmindownload,radminreviews,radminsuper from $prefix"._authors." where 1", $dbi);
list($radminarticle,$radmintopic,$radminuser,$radminsurvey,$radminsection,$radminlink,$radminephem,$radminfaq,$radmindownload,$radminreviews,$radminsuper) = sql_fetch_array($result, $dbi);
OpenTable();
echo "<center><b><a class=\"storycat\" href=\"admin.php\">"._ADMINMENU."</a></b>";
if ($radminsuper==1) {
// echo" <b><a class=\"storycat\" href=\"admin.php?op=BannersAdmin\">"._BANNERSADMIN."</a></b>";
echo" <b><a class=\"storycat\" href=\"javascript:Importar()\">Importar datos a la BD</a></b>";
}
if (!$hlpfile) {
} else {
// echo "<br><br>[ <a href=\"javascript:openwindow()\">"._ONLINEMANUAL."</a> ]</center>";
}
echo "<br><br>";
echo"<table border=\"0\" width=\"100%\" cellspacing=\"3\"><tr>";
$linksdir = dir("admin/links");
while($func=$linksdir->read()) {
if(substr($func, 0, 6) == "links.") {
$menulist .= "$func ";
}
}
closedir($linksdir->handle);
$menulist = explode(" ", $menulist);
sort($menulist);
for ($i=0; $i < sizeof($menulist); $i++) {
if($menulist[$i]!="") {
$counter = 0;
include($linksdir->path."/$menulist[$i]");
}
}
adminmenu("admin.php?op=logout", ""._ADMINLOGOUT."", "exit.gif");
echo"</tr></table></center>";
CloseTable();
echo "<br>";
}
/*********************************************************/
/* Administration Main Function */
/*********************************************************/
function adminMain() {
global $language, $hlpfile, $admin, $aid, $prefix, $file, $dbi;
$hlpfile = "manual/admin.html";
include ("header.php");
$dummy = 0;
GraphicAdmin($hlpfile);
// echo "ESTO ES LO QUE VIENE $aid";
$result2 = sql_query("select radminarticle, radminsuper, admlanguage from $prefix"._authors." where aid='$aid'", $dbi);
// $result2 = sql_query("select radminarticle, radminsuper, admlanguage from $prefix"._authors." where 1", $dbi);
list($radminarticle, $radminsuper, $admlanguage) = sql_fetch_row($result2, $dbi);
if ($admlanguage != "" ) {
$queryalang = "WHERE alanguage='$admlanguage' ";
} else {
$queryalang = "";
}
OpenTable();
$result = sql_query("SELECT username FROM $prefix"._session." where guest=1", $dbi);
$guest_online_num = sql_num_rows($result, $dbi);
$result = sql_query("SELECT username FROM $prefix"._session." where guest=0", $dbi);
$member_online_num = sql_num_rows($result, $dbi);
// $who_online_num = $guest_online_num + $member_online_num;
// $who_online = "<center><font class=\"option\">"._WHOSONLINE."</font><br><br><font face=\"Geneva, Arial, Helvetica, san-serif\" size=\"1\">"._CURRENTLY." $guest_online_num "._GUESTS." $member_online_num "._MEMBERS."<br>";
// echo "<center>$who_online</center>";
CloseTable();
echo "<br>";
OpenTable();
echo "<center><b>"._LAST." 50 "._ARTICLES."</b></center><br>";
$result = sql_query("select sid, aid, title, time, topic, informant, alanguage from $prefix"._stories." $queryalang order by time desc limit 0,50", $dbi);
echo "<center><table border=\"1\" width=\"100%\" bgcolor=\"$bgcolor1\">";
while(list($sid, $said, $title, $time, $topic, $informant, $alanguage) = sql_fetch_row($result, $dbi)) {
$ta = sql_query("select topicname from $prefix"._topics." where topicid=$topic", $dbi);
list($topicname) = sql_fetch_row($ta, $dbi);
if ($alanguage == "") {
$alanguage = ""._ALL."";
}
formatTimestamp($time);
echo "<tr><td align=\"right\"><b>$sid</b>"
."</td><td align=\"left\" width=\"100%\"><a href=\"$topicname.php\">$title</a>"
// ."</td><td align=\"center\">$alanguage"
."</td><td align=\"right\">$topicname";
if (($radminarticle==1) OR ($radminsuper==1)) {
if (($radminarticle==1) AND ($aid == $said) OR ($radminsuper==1)) {
echo "</td><td align=\"right\" nowrap>(<a href=\"admin.php?op=EditStory&sid=$sid\">"._EDIT."</a>-<a href=\"admin.php?op=RemoveStory&sid=$sid\">"._DELETE."</a>)"
."</td></tr>";
} else {
echo "</td><td align=\"right\" nowrap><font face=\"Geneva, Arial, Helvetica, san-serif\" size=\"1\"><i>("._NOFUNCTIONS.")</i></font>"
."</td></tr>";
}
} else {
echo "</td></tr>";
}
}
echo "
</table>";
if (($radminarticle==1) OR ($radminsuper==1)) {
echo "<center>
<form action=\"admin.php\" method=\"post\">
"._STORYID.": <input type=\"text\" NAME=\"sid\" SIZE=\"10\">
<select name=\"op\">
<option value=\"EditStory\" SELECTED>"._EDIT."</option>
<option value=\"RemoveStory\">"._DELETE."</option>
</select>
<input type=\"submit\" value=\""._GO."\">
</form></center>";
}
CloseTable();
$result = sql_query("SELECT pollID, pollTitle FROM $prefix"._poll_desc." ORDER BY pollID DESC limit 1", $dbi);
$object = sql_fetch_object($result, $dbi);
$pollID = $object->pollID;
$pollTitle = $object->pollTitle;
echo "<br>";
OpenTable();
echo "<center><b>"._CURRENTPOLL.":</b> $pollTitle [ <a href=\"admin.php?op=polledit&pollID=$pollID\">"._EDIT."</a> | <a href=\"admin.php?op=create\">"._ADD."</a> ]</center>";
CloseTable();
include ("footer.php");
}
if($admintest) {
switch($op) {
case "deleteNotice":
deleteNotice($id, $table, $op_back);
break;
case "GraphicAdmin":
GraphicAdmin($hlpfile);
break;
case "adminMain":
adminMain();
break;
case "logout":
//setcookie("admin");
include("header.php");
OpenTable();
echo "<center><font class=\"title\"><b>"._YOUARELOGGEDOUT."</b></font></center>";
CloseTable();
include("footer.php");
break;
case "login";
unset($op);
default:
// setcookie("admin");
$casedir = dir("admin/case");
while($func=$casedir->read()) {
if(substr($func, 0, 5) == "case.") {
include($casedir->path."/$func");
}
}
closedir($casedir->handle);
break;
}
} else {
adminMain();
// login();
}
?>