remove old readme

[atutor.git] / mods / _standard / blogs / delete_post.php

<?php\r
/****************************************************************/\r
/* ATutor                                                                                                               */\r
/****************************************************************/\r
/* Copyright (c) 2002-2010                                      */\r
/* Inclusive Design Institute                                   */\r
/* http://atutor.ca                                                                                             */\r
/*                                                              */\r
/* This program is free software. You can redistribute it and/or*/\r
/* modify it under the terms of the GNU General Public License  */\r
/* as published by the Free Software Foundation.                                */\r
/****************************************************************/\r
// $Id$\r
define('AT_INCLUDE_PATH', '../../../include/');\r
require (AT_INCLUDE_PATH.'vitals.inc.php');\r
\r
// authenticate ot+oid ....\r
$owner_type = abs($_REQUEST['ot']);\r
$owner_id = abs($_REQUEST['oid']);\r
if (!($owner_status = blogs_authenticate($owner_type, $owner_id)) || !query_bit($owner_status, BLOGS_AUTH_WRITE)) {\r
        $msg->addError('ACCESS_DENIED');\r
        header('Location: index.php');\r
        exit;\r
}\r
\r
if (isset($_POST['submit_no'])) {\r
        $msg->addFeedback('CANCELLED');\r
        $id = abs($_POST['id']);\r
        header('Location: post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_POST['oid'].SEP.'id='.$id);\r
        exit;\r
} else if (isset($_POST['submit_yes'])) {\r
        $id = abs($_POST['id']);\r
\r
        $sql = "DELETE FROM ".TABLE_PREFIX."blog_posts WHERE owner_type=".BLOGS_GROUP." AND owner_id=$_REQUEST[oid] AND post_id=$id";\r
        mysql_query($sql, $db);\r
\r
        $msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');\r
\r
        header('Location: view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_POST['oid']);\r
        exit;\r
}\r
\r
$id = abs($_REQUEST['id']);\r
$sql = "SELECT title, body FROM ".TABLE_PREFIX."blog_posts WHERE owner_type=".BLOGS_GROUP." AND owner_id=$owner_id AND post_id=$id";\r
$result = mysql_query($sql, $db);\r
$post_row = mysql_fetch_assoc($result);\r
\r
$_pages['mods/_standard/blogs/delete_post.php']['parent']    = 'mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id'];\r
\r
\r
$_pages['mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id']]['children'] = array('mods/_standard/blogs/edit_post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id'], 'mods/_standard/blogs/delete_post.php');\r
$_pages['mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id']]['parent'] = 'mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'];\r
$_pages['mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id']]['title'] = $post_row['title'];\r
\r
\r
$_pages['mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid']]['title'] = blogs_get_blog_name(BLOGS_GROUP, $_REQUEST['oid']);\r
$_pages['mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid']]['parent']    = 'mods/_standard/blogs/index.php';\r
$_pages['mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid']]['children']  = array('mods/_standard/blogs/add_post.php');\r
\r
require (AT_INCLUDE_PATH.'header.inc.php');\r
\r
$hidden_vars = array('id' => $id, 'ot' => $_REQUEST['ot'], 'oid' => $_REQUEST['oid']);\r
//get the post title to print into the confirm box\r
$sql = 'SELECT title FROM '.TABLE_PREFIX.'blog_posts WHERE post_id='.$id;\r
$result = mysql_query($sql, $db);\r
$row = mysql_fetch_assoc($result);\r
$msg->addConfirm(array('DELETE', $row['title']), $hidden_vars);\r
$msg->printConfirm();\r
?>\r
\r
<?php require(AT_INCLUDE_PATH.'footer.inc.php'); ?>