mods/_standard/polls/tools/delete.php

   1 <?php\r
   2 /****************************************************************************/\r
   3 /* ATutor                                                                                                                                       */\r
   4 /****************************************************************************/\r
   5 /* Copyright (c) 2002-2010                                                  */\r
   6 /* Inclusive Design Institute                                               */\r
   7 /* http://atutor.ca                                                                                                                     */\r
   8 /*                                                                                                                                                      */\r
   9 /* This program is free software. You can redistribute it and/or                        */\r
  10 /* modify it under the terms of the GNU General Public License                          */\r
  11 /* as published by the Free Software Foundation.                                                        */\r
  12 /****************************************************************************/\r
  13 // $Id$\r
  14 \r
  15 define('AT_INCLUDE_PATH', '../../../../include/');\r
  16 require (AT_INCLUDE_PATH.'vitals.inc.php');\r
  17 \r
  18 authenticate(AT_PRIV_POLLS);\r
  19 \r
  20 if (isset($_POST['submit_no'])) {\r
  21         $msg->addFeedback('CANCELLED');\r
  22         Header('Location: index.php');\r
  23         exit;\r
  24 } else if (isset($_POST['submit_yes'])) {\r
  25         $_POST['pid'] = intval($_POST['pid']);\r
  26 \r
  27         $sql = "DELETE FROM ".TABLE_PREFIX."polls WHERE poll_id=$_POST[pid] AND course_id=$_SESSION[course_id]";\r
  28         $result = mysql_query($sql, $db);\r
  29 \r
  30         $sql = "DELETE FROM ".TABLE_PREFIX."polls_members WHERE poll_id=$_POST[pid] AND course_id=$_SESSION[course_id]";\r
  31         $result = mysql_query($sql, $db);\r
  32 \r
  33         $msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');\r
  34         header('Location: index.php');\r
  35         exit;\r
  36 }\r
  37 \r
  38 require(AT_INCLUDE_PATH.'header.inc.php');\r
  39 \r
  40 $msg->printErrors();\r
  41 \r
  42 $_GET['pid'] = intval($_GET['pid']); \r
  43 \r
  44 $sql = "SELECT * FROM ".TABLE_PREFIX."polls WHERE poll_id=$_GET[pid] AND course_id=$_SESSION[course_id]";\r
  45 \r
  46 $result = mysql_query($sql,$db);\r
  47 if (mysql_num_rows($result) == 0) {\r
  48         $msg->addError('ITEM_NOT_FOUND');\r
  49 } else {\r
  50         $row = mysql_fetch_assoc($result);\r
  51 \r
  52         $hidden_vars['delete_poll'] = TRUE;\r
  53         $hidden_vars['pid'] = $_GET['pid'];\r
  54 \r
  55         $confirm = array('DELETE_POLL', AT_print($row['question'], 'polls.question'));\r
  56         $msg->addConfirm($confirm, $hidden_vars);\r
  57         $msg->printConfirm();\r
  58 \r
  59 }\r
  60 \r
  61 require(AT_INCLUDE_PATH.'footer.inc.php');\r
  62 \r
  63 ?>