Portions created by the Initial Developer are Copyright (C) 2008-2012 the Initial Developer. All Rights Reserved. Contributor(s): Mark J Crane */ require_once "root.php"; require_once "includes/require.php"; require_once "includes/checkauth.php"; if (permission_exists('domain_add') || permission_exists('domain_edit')) { //access granted } else { echo "access denied"; exit; } //action add or update if (isset($_REQUEST["id"])) { $action = "update"; $domain_uuid = check_str($_REQUEST["id"]); } else { $action = "add"; } //get http post variables and set them to php variables if (count($_POST) > 0) { $domain_name = strtolower(check_str($_POST["domain_name"])); $domain_description = check_str($_POST["domain_description"]); } if (count($_POST) > 0 && strlen($_POST["persistformvar"]) == 0) { $msg = ''; if ($action == "update") { $domain_uuid = check_str($_POST["domain_uuid"]); } //check for all required data //if (strlen($domain_name) == 0) { $msg .= "Please provide: Domain
\n"; } //if (strlen($domain_description) == 0) { $msg .= "Please provide: Description
\n"; } if (strlen($msg) > 0 && strlen($_POST["persistformvar"]) == 0) { require_once "includes/header.php"; require_once "includes/persistformvar.php"; echo "

\n"; echo "

\n"; echo $msg."
"; echo "

\n"; persistformvar($_POST); echo "

\n"; require_once "includes/footer.php"; return; } //add or update the database if ($_POST["persistformvar"] != "true") { if ($action == "add" && permission_exists('domain_add')) { $sql = "select count(*) as num_rows from v_domains "; $sql .= "where domain_name = '$domain_name' "; $prep_statement = $db->prepare($sql); if ($prep_statement) { $prep_statement->execute(); $row = $prep_statement->fetch(PDO::FETCH_ASSOC); if ($row['num_rows'] == 0) { $sql = "insert into v_domains "; $sql .= "("; $sql .= "domain_uuid, "; $sql .= "domain_name, "; $sql .= "domain_description "; $sql .= ")"; $sql .= "values "; $sql .= "("; $sql .= "'".uuid()."', "; $sql .= "'$domain_name', "; $sql .= "'$domain_description' "; $sql .= ")"; $db->exec(check_sql($sql)); unset($sql); } } } if ($action == "update" && permission_exists('domain_edit')) { $sql = "update v_domains set "; $sql .= "domain_name = '$domain_name', "; $sql .= "domain_description = '$domain_description' "; $sql .= "where domain_uuid = '$domain_uuid' "; $db->exec(check_sql($sql)); unset($sql); } //upgrade the domains require_once "core/upgrade/upgrade_domains.php"; //clear the domains session array to update it unset($_SESSION["domains"]); unset($_SESSION["domain_uuid"]); unset($_SESSION["domain_name"]); unset($_SESSION['domain']); unset($_SESSION['switch']); //redirect the browser require_once "includes/header.php"; echo "\n"; echo "

\n"; if ($action == "update") { echo "Update Complete\n"; } if ($action == "add") { echo "Add Complete\n"; } echo "

\n"; require_once "includes/footer.php"; return; } //if ($_POST["persistformvar"] != "true") } //(count($_POST)>0 && strlen($_POST["persistformvar"]) == 0) //pre-populate the form if (count($_GET)>0 && $_POST["persistformvar"] != "true") { $domain_uuid = $_GET["id"]; $sql = "select * from v_domains "; $sql .= "where domain_uuid = '$domain_uuid' "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); $result = $prep_statement->fetchAll(PDO::FETCH_NAMED); foreach ($result as &$row) { $domain_name = strtolower($row["domain_name"]); $domain_description = $row["domain_description"]; } unset ($prep_statement); } //show the header require_once "includes/header.php"; //show the content echo "

"; echo "\n"; echo "\n"; echo " "; echo " "; echo "

\n"; echo "
"; echo "

"; echo "

"; //include the footer require_once "includes/footer.php"; ?>