mods/_core/users/master_list_edit.php

   1 <?php\r
   2 /****************************************************************************/\r
   3 /* ATutor                                                                                                                                       */\r
   4 /****************************************************************************/\r
   5 /* Copyright (c) 2002-2010                                                  */\r
   6 /* Inclusive Design Institute                                               */\r
   7 /* http://atutor.ca                                                                                                                     */\r
   8 /*                                                                                                                                                      */\r
   9 /* This program is free software. You can redistribute it and/or                        */\r
  10 /* modify it under the terms of the GNU General Public License                          */\r
  11 /* as published by the Free Software Foundation.                                                        */\r
  12 /****************************************************************************/\r
  13 // $Id$\r
  14 \r
  15 define('AT_INCLUDE_PATH', '../../../include/');\r
  16 require(AT_INCLUDE_PATH.'vitals.inc.php');\r
  17 admin_authenticate(AT_ADMIN_PRIV_USERS);\r
  18 \r
  19 $_REQUEST['id'] = $addslashes($_REQUEST['id']);\r
  20 \r
  21 if (isset($_POST['cancel'])) {\r
  22         $msg->addFeedback('CANCELLED');\r
  23         header('Location: '.AT_BASE_HREF.'mods/_core/users/master_list.php');\r
  24         exit;\r
  25 } else if (isset($_POST['submit'])) {\r
  26         $_POST['public_field'] = trim($_POST['public_field']);\r
  27         if ($_POST['public_field'] == '') {\r
  28                 $msg->addError(array('EMPTY_FIELDS', _AT('student_id')));\r
  29         }\r
  30 \r
  31         if (!$msg->containsErrors()) {\r
  32                 $_POST['public_field'] = $addslashes($_POST['public_field']);\r
  33 \r
  34                 $sql = "UPDATE ".TABLE_PREFIX."master_list SET public_field='$_POST[public_field]' WHERE public_field='$_POST[id]'";\r
  35                 $result = mysql_query($sql, $db);\r
  36 \r
  37                 write_to_log(AT_ADMIN_LOG_UPDATE, 'master_list', mysql_affected_rows($db), $sql);\r
  38 \r
  39                 $msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');\r
  40 \r
  41                 header('Location: '.AT_BASE_HREF.'mods/_core/users/master_list.php');\r
  42                 exit;\r
  43         }\r
  44 } \r
  45 \r
  46 require(AT_INCLUDE_PATH.'header.inc.php'); \r
  47 \r
  48 $sql = "SELECT * FROM ".TABLE_PREFIX."master_list WHERE public_field='$_REQUEST[id]'";\r
  49 $result = mysql_query($sql, $db);\r
  50 if (!($row = mysql_fetch_assoc($result))) {\r
  51         $msg->addError('USER_NOT_FOUND');\r
  52         $msg->printErrors();\r
  53         require(AT_INCLUDE_PATH.'footer.inc.php');\r
  54         exit;\r
  55 } else {\r
  56         $_POST = $row;\r
  57 }\r
  58 \r
  59 $savant->display('admin/users/master_list_edit.php');\r
  60 require(AT_INCLUDE_PATH.'footer.inc.php'); ?>