1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
|
<?php
/*
444444444
4::::::::4
4:::::::::4
4::::44::::4
4::::4 4::::4 Four Island
4::::4 4::::4
4::::4 4::::4 Written and maintained by Starla Insigna
4::::444444::::444
4::::::::::::::::4 admin/newPoll.php
4444444444:::::444
4::::4 Please do not use, reproduce or steal the
4::::4 contents of this file without explicit
4::::4 permission from Hatkirby.
44::::::44
4::::::::4
4444444444
*/
if (!defined('S_INCLUDE_FILE')) {define('S_INCLUDE_FILE',1);}
require('headerproc.php');
$category = 'polls';
$pageaid = 'newpoll';
$template = new FITemplate('admin/writePoll');
if (isset($_GET['submit']))
{
if (empty($_POST['question']))
{
$errors[] = array( 'field' => 'question',
'text' => 'Question is a required field');
}
if (empty($_POST['option1']))
{
$errors[] = array( 'field' => 'option1',
'text' => 'Option 1 is a required field');
}
if (empty($_POST['option2']))
{
$errors[] = array( 'field' => 'option2',
'text' => 'Option 2 is a required field');
}
if (empty($_POST['option3']))
{
$errors[] = array( 'field' => 'option3',
'text' => 'Option 3 is a required field');
}
if (empty($_POST['option4']))
{
$errors[] = array( 'field' => 'option4',
'text' => 'Option 4 is a required field');
}
if (isset($errors))
{
$template->adds_block('ISERROR',array('exi'=>1));
$eid = 0;
foreach ($errors as $error)
{
$template->adds_block('ERROR', array( 'ID' => $eid,
'TEXT' => $error['text']));
$template->add('IS' . strtoupper($error['field']) . 'ERROR', ' error');
$template->adds_block(strtoupper($error['field']) . 'ERROR', array( 'ID' => $eid,
'TEXT' => $error['text']));
$eid++;
}
$template->add('TITLE', 'New Poll');
$template->add('ACTION', '/admin/newPoll.php?submit=');
$template->add('QUESTIONVALUE', htmlentities($_POST['question']));
$template->add('OPTION1VALUE', htmlentities($_POST['option1']));
$template->add('OPTION2VALUE', htmlentities($_POST['option2']));
$template->add('OPTION3VALUE', htmlentities($_POST['option3']));
$template->add('OPTION4VALUE', htmlentities($_POST['option4']));
$template->add('TEXTVALUE', htmlentities($_POST['text']));
} else {
$inspoll = "INSERT INTO polloftheweek (question,option1,option2,option3,option4,text) VALUES (\"" . mysql_real_escape_string($_POST['question']) . "\",\"" . mysql_real_escape_string($_POST['option1']) . "\",\"" . mysql_real_escape_string($_POST['option2']) . "\",\"" . mysql_real_escape_string($_POST['option3']) . "\",\"" . mysql_real_escape_string($_POST['option4']) . "\",\"" . mysql_real_escape_string($_POST['text']) . "\")";
$inspoll2 = mysql_query($inspoll);
$id = mysql_insert_id();
$cleardid = "TRUNCATE TABLE didpollalready";
$cleardid2 = mysql_query($cleardid);
$template->add('QUESTIONVALUE', htmlentities($_POST['question']));
$template->add('OPTION1VALUE', htmlentities($_POST['option1']));
$template->add('OPTION2VALUE', htmlentities($_POST['option2']));
$template->add('OPTION3VALUE', htmlentities($_POST['option3']));
$template->add('OPTION4VALUE', htmlentities($_POST['option4']));
$template->add('TEXTVALUE', htmlentities($_POST['text']));
$template->add('TITLE', 'Edit Poll');
$template->add('ACTION', '/admin/editPoll.php?id=' . $id . '&submit=');
$template->adds_block('FLASH', array('TEXT' => 'Your poll has been sucessfully created. <a href="/poll/' . $id . '.php">View poll</a>.'));
}
} else {
$template->add('TITLE', 'New Poll');
$template->add('ACTION', '/admin/newPoll.php?submit=');
}
$template->display();
?>
|
