/php/phpadmentor/admin/index.php
<?
require("../phpadmentor_config.php");
require("inctemplate.php");
require("inclogin.php");
require("inccampaign.php");
require("incgenhtml.php");
require("increports.php");
$sContent = "";
$sHeader = "";
$conn = PhpAdMentor_GetDatabaseConn();
//Check if we are logged in etc
if ($action=="login" )
{
$loginusername = trim($loginusername);
$loginuserpassword = trim($loginuserpassword);
//Try to login
DBUserCheck($loginusername, $loginuserpassword);
$PhpAdMentor_SessionID = uniqid("adm");
$oRS = mysql_query("insert into admin_session(sessionid, sessiondata) values ('$PhpAdMentor_SessionID', '$g_sUser_FldAuto')");
setcookie("PhpAdMentor_SessionID", $PhpAdMentor_SessionID, time() + 3600);
header("Location: index.php");
}
//Are we logged on?
$PhpAdMentor_SessionID = trim($PhpAdMentor_SessionID);
if ( $PhpAdMentor_SessionID == "" )
{
LoginForm();
}
//Try to log on
DBUserCheck2($PhpAdMentor_SessionID );
//AdPos
function AdPos()
{
global $id, $action, $g_fUser_Admin, $Save;
global $name, $descr;
$sError = "";
$sRet = "";
if ( $Save == "yes" )
{
//Lets update...
if ( $action == "deladpos")
{
$oRS = mysql_query("delete from adposition where adposid=$id" );
header("Location: index.php?action=adpos");
exit;
}
if ( $action == "editadpos")
{
if ( $sError == "" )
{
$sSQL = "update adposition set adposname='$name', adposdescr='$descr'";
$sSQL = $sSQL . " where adposid=$id ";
$oRS =mysql_query($sSQL );
header("Location: index.php?action=adpos");
}
}
if ( $action == "newadpos")
{
$sSQL = "insert into adposition ( adposname , adposdescr ) values('$name', '$descr')";
$oRS =mysql_query($sSQL );
$id = mysql_insert_ID();
header("Location: index.php?action=adpos");
}
}
if ( $sError == "" && $id <> "" )
{
$oRS = mysql_query("select * from adposition where adposid=$id" );
$row = mysql_fetch_array($oRS);
$name = $row["adposname"];
$descr = $row["adposdescr"];
}
$sRet = $sRet . "<table border=0 width=100%>";
if ( $Save == "yes" && $name != "" && $sError == "" )
{
$sRet = $sRet . "<tr><td width=22%></td><td width=78%><font color=#008000 size=1>Changes saved OK</font></td></tr>";
}
$sRet = $sRet . "<form method=POST action=index.php>";
$sRet = $sRet . "<input type=hidden name=id value=$id>";
$sRet = $sRet . "<input type=hidden name=Save value=yes>";
$sRet = $sRet . "<input type=hidden name=action value=$action>";
if ( $action=="deladpos" )
{
$sRet = $sRet . "<tr>
<td width=\"22%\"></td>
<td width=\"78%\"><font size=\"3\" color=\"#FF0000\">Delete: Are you sure???</font> </td>
</tr>";
}
else
{
$sRet = $sRet . "<tr>
<td width=\"22%\"><b>Name</b>:</td>
<td width=\"78%\"><input type=\"text\" name=\"name\" size=\"25\" value=\"$name\">
</td>
</tr>";
$sRet = $sRet . "<tr>
<td width=\"22%\"><b>Description</b>:</td>
<td width=\"78%\"><input type=\"text\" name=\"descr\" size=\"25\" value=\"$descr\">
</td>
</tr>";
}
$sRet = $sRet ."<tr><td colspan=2><p><input type=\"submit\" value=\"Submit\" name=\"B1\"></p></td></tr>";
$sRet = $sRet . "</form></table>";
// }
return $sRet;
}
//Zone
function Zone()
{
global $id, $action, $g_fUser_Admin, $Save;
global $name, $descr;
$sError = "";
$sRet = "";
if ( $Save == "yes" )
{
//Lets update...
if ( $action == "delzone")
{
$oRS = mysql_query("delete from zone where zoneid=$id" );
header("Location: index.php?action=zones");
exit;
}
if ( $action == "editzone")
{
if ( $sError == "" )
{
$sSQL = "update zone set zonename='$name', zonedescr='$descr'";
$sSQL = $sSQL . " where zoneid=$id ";
$oRS =mysql_query($sSQL );
header("Location: index.php?action=zones");
}
}
if ( $action == "newzone")
{
$sSQL = "insert into zone ( zonename , zonedescr ) values('$name', '$descr')";
$oRS =mysql_query($sSQL );
$id = mysql_insert_ID();
$action="editzone";
header("Location: index.php?action=zones");
}
}
if ( $sError == "" && $id <> "" )
{
$oRS = mysql_query("select * from zone where zoneid=$id" );
$row = mysql_fetch_array($oRS);
$name = $row["zonename"];
$descr = $row["zonedescr"];
}
$sRet = $sRet . "<table border=0 width=100%>";
if ( $Save == "yes" && $name != "" && $sError == "" )
{
$sRet = $sRet . "<tr><td width=22%></td><td width=78%><font color=#008000 size=1>Changes saved OK</font></td></tr>";
}
$sRet = $sRet . "<form method=POST action=index.php>";
$sRet = $sRet . "<input type=hidden name=id value=$id>";
$sRet = $sRet . "<input type=hidden name=Save value=yes>";
$sRet = $sRet . "<input type=hidden name=action value=$action>";
if ( $action=="delzone" )
{
$sRet = $sRet . "<tr>
<td width=\"22%\"></td>
<td width=\"78%\"><font size=\"3\" color=\"#FF0000\">Delete: Are you sure???</font> </td>
</tr>";
}
else
{
$sRet = $sRet . "<tr>
<td width=\"22%\"><b>Name</b>:</td>
<td width=\"78%\"><input type=\"text\" name=\"name\" size=\"25\" value=\"$name\">
</td>
</tr>";
$sRet = $sRet . "<tr>
<td width=\"22%\"><b>Description</b>:</td>
<td width=\"78%\"><input type=\"text\" name=\"descr\" size=\"25\" value=\"$descr\">
</td>
</tr>";
}
$sRet = $sRet ."<tr><td colspan=2><p><input type=\"submit\" value=\"Submit\" name=\"B1\"></p></td></tr>";
$sRet = $sRet . "</form></table>";
// }
return $sRet;
}
function MyAccount()
{
global $id, $action, $g_fUser_Admin, $Save, $g_sUser_FldAuto;
global $name, $pwdnew, $pwdnew2, $emailaddress, $fullname, $admin, $oldname;
$sError = "";
$sRet = "";
$id = $g_sUser_FldAuto;
if ( $Save == "yes" )
{
//Lets update...
//Verify
if (( trim($pwdnew)<>"" || trim($pwdnew2)<>"") && ( $pwdnew2 != $pwdnew ))
$sError = "PasswordError";
if ( $sError == "" )
{
$sSQL = "update user set ";
if ( isset($name) && $g_fUser_Admin )
$sSQL = $sSQL . " name='$name', ";
if ( trim($pwdnew)<>"" )
$sSQL = $sSQL . " pwd='$pwdnew', ";
$sSQL = $sSQL . " emailaddress='$emailaddress', ";
if ( $admin == "" )
$admin = 0;
$sSQL = $sSQL . " fullname='$fullname ' ";
$sSQL = $sSQL . " where fldAuto=$id ";
// echo($sSQL);
$oRS =mysql_query($sSQL );
}
}
if ( $sError == "" && $id <> "" )
{
$oRS = mysql_query("select * from user where fldAuto=$id" );
$row = mysql_fetch_array($oRS);
$name = $row["name"];
$oldname = $name;
$pwd = $row["pwd"];
$admin = $row["admin"];
$emailaddress = $row["emailaddress"];
$fullname = $row["fullname"];
}
$sRet = $sRet . "<table border=0 width=100%>";
if ( $Save == "yes" && $name != "" && $sError == "" )
{
$sRet = $sRet . "<tr><td width=22%></td><td width=78%><font color=#008000 size=1>Changes saved OK</font></td></tr>";
}
$sRet = $sRet . "<form method=POST action=index.php>";
$sRet = $sRet . "<input type=hidden name=id value=$id>";
$sRet = $sRet . "<input type=hidden name=Save value=yes>";
$sRet = $sRet . "<input type=hidden name=action value=$action>";
$sRet = $sRet . "<input type=hidden name=oldname value=\"$oldname\">";
$sRet = $sRet . "<tr><td width=22%><b>Userid</b>:</td>";
$sRet = $sRet . "<td width=78%>$name</td>";
$sRet = $sRet . "</tr>";
if ( $sError == "PasswordError" )
$sRet = $sRet . "<tr>
<td width=\"22%\"></td>
<td width=\"78%\"><font size=\"1\" color=\"#FF0000\">Password
and password again not identical</font> </td>
</tr>";
$sRet = $sRet . "<tr>
<td width=\"22%\"><b>New password</b>:</td>
<td width=\"78%\"><input type=\"password\" name=\"pwdnew\" size=\"15\">
<font size=\"1\">(Leave empty if you want to
keep your old password )</font></td>
</tr>";
$sRet = $sRet ."<tr>
<td width=\"22%\"><b>New password again</b>:</td>
<td width=\"78%\"><input type=\"password\" name=\"pwdnew2\" size=\"15\"><font size=\"1\">(Leave
empty if you want to keep your old
password )</font></td></tr>";
$sRet = $sRet ."<tr>
<td width=\"22%\"><b>Email address:</b></td>
File to large so it's splitted to many pages:[Part 1] [
Part 2]