2 /****************************************************************/
\r
4 /****************************************************************/
\r
5 /* Copyright (c) 2002-2010 */
\r
6 /* Inclusive Design Institute */
\r
7 /* http://atutor.ca */
\r
9 /* This program is free software. You can redistribute it and/or*/
\r
10 /* modify it under the terms of the GNU General Public License */
\r
11 /* as published by the Free Software Foundation. */
\r
12 /****************************************************************/
\r
14 define('AT_INCLUDE_PATH', '../../../include/');
\r
15 require (AT_INCLUDE_PATH.'vitals.inc.php');
\r
17 // authenticate ot+oid ....
\r
18 $owner_type = abs($_REQUEST['ot']);
\r
19 $owner_id = abs($_REQUEST['oid']);
\r
20 if (!($owner_status = blogs_authenticate($owner_type, $owner_id)) || !query_bit($owner_status, BLOGS_AUTH_WRITE)) {
\r
21 $msg->addError('ACCESS_DENIED');
\r
22 header('Location: index.php');
\r
26 if (isset($_POST['submit_no'])) {
\r
27 $msg->addFeedback('CANCELLED');
\r
28 $id = abs($_POST['id']);
\r
29 header('Location: post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_POST['oid'].SEP.'id='.$id);
\r
31 } else if (isset($_POST['submit_yes'])) {
\r
32 $id = abs($_POST['id']);
\r
34 $sql = "DELETE FROM ".TABLE_PREFIX."blog_posts WHERE owner_type=".BLOGS_GROUP." AND owner_id=$_REQUEST[oid] AND post_id=$id";
\r
35 mysql_query($sql, $db);
\r
37 $msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');
\r
39 header('Location: view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_POST['oid']);
\r
43 $id = abs($_REQUEST['id']);
\r
44 $sql = "SELECT title, body FROM ".TABLE_PREFIX."blog_posts WHERE owner_type=".BLOGS_GROUP." AND owner_id=$owner_id AND post_id=$id";
\r
45 $result = mysql_query($sql, $db);
\r
46 $post_row = mysql_fetch_assoc($result);
\r
48 $_pages['mods/_standard/blogs/delete_post.php']['parent'] = 'mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id'];
\r
51 $_pages['mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id']]['children'] = array('mods/_standard/blogs/edit_post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id'], 'mods/_standard/blogs/delete_post.php');
\r
52 $_pages['mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id']]['parent'] = 'mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'];
\r
53 $_pages['mods/_standard/blogs/post.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid'].SEP.'id='.$_REQUEST['id']]['title'] = $post_row['title'];
\r
56 $_pages['mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid']]['title'] = blogs_get_blog_name(BLOGS_GROUP, $_REQUEST['oid']);
\r
57 $_pages['mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid']]['parent'] = 'mods/_standard/blogs/index.php';
\r
58 $_pages['mods/_standard/blogs/view.php?ot='.BLOGS_GROUP.SEP.'oid='.$_REQUEST['oid']]['children'] = array('mods/_standard/blogs/add_post.php');
\r
60 require (AT_INCLUDE_PATH.'header.inc.php');
\r
62 $hidden_vars = array('id' => $id, 'ot' => $_REQUEST['ot'], 'oid' => $_REQUEST['oid']);
\r
63 //get the post title to print into the confirm box
\r
64 $sql = 'SELECT title FROM '.TABLE_PREFIX.'blog_posts WHERE post_id='.$id;
\r
65 $result = mysql_query($sql, $db);
\r
66 $row = mysql_fetch_assoc($result);
\r
67 $msg->addConfirm(array('DELETE', $row['title']), $hidden_vars);
\r
68 $msg->printConfirm();
\r
71 <?php require(AT_INCLUDE_PATH.'footer.inc.php'); ?>