Adding delete feature to my forum
Posted on
16th Feb 2014 07:03 pm by
admin
Hello I am currently trying to add a delete feature to my forum. I believe I have everything built right but I am having some problems when debugging. I do not have PHP Designer 2008 and I am using eclipse as my IDE so it may be something simple. Please give me some help if you can. Thanks! I have these two source files:
Code: <?php
if(!$_SESSION['uid']){
header("Location: index.php");
}
$actz = $_GET['act2'];
$actzz = array('reply','topic','admin','delete');
if($actz){
$admin = isa($_SESSION['uid']);
if($actz == 'admin'){
if($admin){
//
}else {
echo "You are not an administrator, so you cannot view this page!";
}
}
if($actz == 'reply'){
$id = mss($_GET['id']);
if($id){
$sql = "SELECT * FROM `alabama_forum_replies` WHERE `id`='".$id."'";
$res = mysql_query($sql) or die(mysql_error());
if(mysql_num_rows($res) == 0){
echo "This topic doesn't exist, so therefore you cannot edit it!";
}else {
$row = mysql_fetch_assoc($res);
$user_id = $row['uid'];
if($user_id == $_SESSION['uid'] || $admin == 1){
if(!$_POST['submit']){
echo "<form method="post" action="index.php?act=mod&act2=reply&id=".$id."">n";
echo "<table border="0" width="100%" cellspacing="3" cellpadding="3">n";
echo "<tr><td class="forum_header" align="center"><textarea style="width:90%;height:200px" name="reply">".htmlentities($row['message'])."</textarea></td></tr>n";
echo "<tr><td class="forum_header" align="center"><input type="submit" name="submit" value="Submit Edited Comment"></td></tr>n";
echo "</table></form>n";
}else {
$reply = mss($_POST['reply']);
if($reply){
$r = range(10,10000);
if(in_array(strlen($reply),$r)){
$sql2 = "UPDATE `alabama_forum_replies` SET `message`='".$reply."', `edit_time`='".time()."' WHERE `id`='".$id."'";
$res2 = mysql_query($sql2) or die(mysql_error());
header("Location: index.php?act=topic&id=".$row['tid']."");
}else {
echo "Your reply must be between 10 and 10,000 characters in length!n";
}
}
}
}else {
echo "This is not your reply to edit!";
}
}
}
}
if ($actz == 'deletereply'){
$id = mss($_GET['id']);
if($id){
$sql = "DELETE * FROM `alabama_forum_replies` WHERE `id`='".$id."'";
$res = mysql_query($sql) or die(mysql_error());
if(mysql_num_rows == 0){
echo "This topic doesn't exist";
}else {
$row = mysql_fetch_assoc($res);
$user_id = $row['uid'];
if(user_id == $_SESSION['uid'] || $admin == 1){
if(!$_POST[submit]){
echo "<form method="post" action="index.php?act=delete&act2=deletereply&id=".$id.">n";
echo "<table border="0" width="100%" cellspacing="3" cellpadding="3">n";
echo "<tr><td class="forum_header" align="center"><textarea style="width:90%;height:200px" name="deletethis">".htmlentities($row['message'])."</textarea></td></tr>n";
echo "<tr><td class="forum_header" align="center"><input type="submit" name="submit" value="Delete Comment"></td></tr>n";
echo "</table></form>n";
}else{
}
}else{
echo "This is not your reply to edit";
}
}
}
}
if($actz == 'topic'){
}
}else {
header("Location: index.php");
}
<?php
$id = mss($_GET['id']);
$page = (!$_GET['page'] || $_GET['page'] < 0) ? "1" : $_GET['page'];
$page = ceil($page);
$limit = 10;
$start = $limit;
$end = $page*$limit-($limit);
if($id){
$sql = "SELECT * FROM `alabama_forum_topics` WHERE `id`='".$id."'";
$res = mysql_query($sql) or die(mysql_error());
if(mysql_num_rows($res) == 0){
echo "This topic does not exist!";
}else {
$row = mysql_fetch_assoc($res);
$sql2 = "SELECT admin FROM `alabama_forum_sub_cats` WHERE `id`='".$row['cid']."'";
$res2 = mysql_query($sql2) or die(mysql_error());
$row2 = mysql_fetch_assoc($res2);
if($row2['admin'] == 1 && $admin_user_level == 0){
echo "You cannot view this topic!";
}else {
$a = (isa($row['uid'])) ? "<font style="color:#800000;">ADMIN</font>" : "";
echo "<table border="0" width="100%" cellspacing="3" cellpadding="3">n";
echo "<tr><td colspan="2" align="left" class="forum_header"><b>".$row['title']."</b> - Posted On: <em>".$row['date']."</em></td></tr>n";
echo "<tr><td align="left" width="15%" valign="top" class="forum_header">".uid($row['uid'], true)."
Post Count: ".post($row['uid'])."
".$a."</td>";
echo "<td align="left" valign="top" class="forum_header">n";
echo topic($row['message']);
echo "</td>n";
echo "</tr>n";
$amount_check = "SELECT * FROM `alabama_forum_replies` WHERE `tid`='".$id."'";
$amount_check_res = mysql_query($amount_check) or die(mysql_error());
$amount_count = mysql_num_rows($amount_check_res);
$pages = ceil($amount_count/$limit);
$previous = ($page-1 <= 0) ? "« Prev" : "<a href="./index.php?act=topic&id=".$id."&page=".($page-1)."">« Prev</a>";
$nextpage = ($page+1 > $pages) ? "Next »" : "<a href="./index.php?act=topic&id=".$id."&page=".($page+1)."">Next »</a>";
echo "<tr><td align="right" colspan="2" class="forum_header">n";
echo "Pages: ";
echo $previous;
for($i=1;$i<=$pages;$i++){
$href = ($page == $i) ? " ".$i." " : " <a href="./index.php?act=topic&id=".$id."&page=".$i."">".$i."</a> ";
echo $href;
}
echo $nextpage;
echo "</td></tr>n";
$select_sql = "SELECT * FROM `alabama_forum_replies` WHERE `tid`='".$id."' ORDER BY id ASC LIMIT ".$end.",".$start."";
$select_res = mysql_query($select_sql) or die(mysql_error());
echo "</table>n";
echo "<table border="0" width="100%" cellspacing="3" cellpadding="3" class="reply">n";
while($rowr = mysql_fetch_assoc($select_res)){
$b = (isa($rowr['uid'])) ? "<font style="color:#800000;">ADMIN</font>" : "";
echo "<tr><td colspan="2" align="left" class="forum_header">Posted On: <em>".$rowr['date']."</em></td></tr>n";
echo "<tr><td align="left" width="15%" valign="top" class="forum_header">".uid($rowr['uid'], true)."
Post Count: ".post($rowr['uid'])."
".$b."</td>";
echo "<td align="left" valign="top" class="forum_header">n";
echo topic($rowr['message']);
if($rowr['edit_time'] > 0){
echo "<tr><td colspan="2" align="right"><em>Last Edit: ".date("M d, Y",$rowr['edit_time']) . " at " . date("h:i:s",$rowr['edit_time'])."</em></td></tr>n";
}
$adminz = isa($_SESSION['uid']);
if($adminz == 1 || $rowr['uid'] == $_SESSION['uid']){
echo "<tr><td align="left" colspan="2"><a href="index.php?act=mod&act2=reply&id=".$rowr['id']."">Edit This Reply</a></td></tr>n";
}
if($adminz == 1 || $rowr['uid'] == $_SESSION['uid']){
echo "<tr><td align="left" colspan="2"><a href="index.php?act=delete&act2=deletereply&id=".$rowr['id']."">Delete This Reply</a></td></tr>n";
}
echo "</td>n";
echo "</tr>n";
}
echo "<form method="post" action="./index.php?act=reply&id=".$row['id']."">n";
echo "<tr><td colspan="2" align="center"><textarea style="width:90%" name="reply"></textarea>
<input type="submit" name="submit" value="Add Reply" style="width:90%"></td></tr>n";
echo "</table>n";
}
}
}else {
echo "Please view a valid topic!";
}
?>
Your Answer:
Login to answer
200 
7 
Other forums
how to get different value in second view of webdynpro?
hello guys,
In ABAP webdynpro I am trying to create one application having two views.
Grouping and sorting results
Please help with this query.
I have 2 tables in a database, countires and cities. states look
pull content
I have an existing page, domain/adverts.php which has a good PR. I've just rebuilt my site and the n
Why doesn't this work? (SSH2)
This is my script:
Code: <?php
$connection = ssh2_connect('213.251.167.109', 22);how to export excel file in same server
My first post - php newbie, so appreciate your support.
I'm currently using headers to save w
Any meaningful project for a new C++ programmer?
I want to do some meaningful program, so I can help myself to learn
Assume I know the fol
Uploading Filetypes and placing them in seperate folders.
Hello,
first post , and asking for help im afraid. Very new to PHP, was making good progress
Regular expression tips or resources
Hello! I'm having some issues implementing the appropriate regex patter to eliminate unwanted charac
Dynamically allocating the number of rows in a table based on a variable value
Hi,
I have situation here which i cannot resolve, I have a variable temp which stores the num
I think i'm using the syntax incorrectly
Hi Everyone!
I'm new to this forum and a newbie with PHP - I'm glad I found this site - I hop
