-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathcreate.php
More file actions
223 lines (160 loc) · 6.87 KB
/
create.php
File metadata and controls
223 lines (160 loc) · 6.87 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Document</title>
<link href="style.css?version=52" rel="stylesheet" type="text/css"media="screen" ></link>
</head>
<body>
<div ><a href="index.php">Strona Główna</a></div>
</form><?php
if(isset($_POST["logout"])){
unset($_COOKIE["user"]);
}
?>
<p class="h2 ">Użytkownik:<?php
//Ten kod wypisuje nazwę użytkownika i przekierowuje na stronę logowania, jeżeli nikt nie jest zalogowany.
if((isset($_COOKIE["user"])) && ($_COOKIE["user"]) != ""){
echo $_COOKIE["user"];
}
else{
header("Location:login.php");
}
?>
<form action="" method="POST"></p>
<input type='submit' class="sub" name='logout' value='Wyloguj się'> </input>
</form><?php
//Ten kod odpowiada za wylogowanie się.
if(isset($_POST["logout"])){
$_COOKIE["user"] = "";
header("Location:login.php");
}
?>
<form action= "create.php" method="post"><input type="text" name="series" placeholder="nazwa serii"></input>
<input type="text" name="name" placeholder="nazwa posta"></input>
<textarea name="content" placeholder="treść"></textarea>
<textarea name="bts" placeholder="za kulisami"></textarea>
<input type="submit" value="Utwórz"></input>
</form>
<?php
//zmienia nazwę na taką, która nadaje się do pliku.
function name_to_file($name){
$array1 = [' ',':','/'];
$array2 = ['_',"_",'/'];
return str_replace($array1,$array2,(strtolower($name)));
}
//Sprawdza czy POST zostało wysłane.
if(isset($_POST["name"]) &&isset($_POST["content"])){
if($_POST["name"] != '' && $_POST["content"]!= ''){
//Łączy się z bazą danych.
$db = mysqli_connect("localhost","root","","blog");
//Pobiera id serii z bazy danych.
$series_name = "";
$s_n = "";
$u_id = mysqli_fetch_array(mysqli_query($db,"SELECT id FROM users Where login1='".$_COOKIE["user"]."';"))["id"];
if(isset($_POST["series"]) && $_POST["series"]!= "" ){
$series_name = strval($_POST["series"]);
$s_n = name_to_file($series_name);
$id = mysqli_query($db,"SELECT id FROM series Where name='".$s_n."';");
//fetchuje id serii w tablicę.
$s = mysqli_fetch_array($id);
if(!isset($s) || $s == false){
$v =mysqli_query($db,"INSERT INTO series(name) values('".$s_n."');");
$id = mysqli_query($db,"SELECT id FROM series Where name='".$s_n."';");
$s = mysqli_fetch_array($id);
}
}
else{
$id = 1;
$s = mysqli_fetch_array(mysqli_query($db,"SELECT id FROM series Where name='one_shoty';"));
$s_n= 'one_shoty';
$series_name = $s_n;
}
mkdir($s_n);
//Sprawdza czy seria istnieje, a w przeciwnym wypadku ją tworzy (w bazie danych i folderach).
//sprawdza czy istnieje już strona o tym samym tytule w tej samej serii,
//$query_row1 = mysqli_fetch_row(mysqli_query($db,"SELECT 1 FROM posts where series_id LIKE ".$s["id"].";"));
$query_row1 = mysqli_fetch_row(mysqli_query($db,"SELECT 1 FROM posts where name LIKE '".$_POST["name"]."' and series_id LIKE ".$s["id"].";"));
if (isset($query_row1[0]) ){
echo "Taka strona już istnieje!";
}
else{
/*
if(is_dir($_POST["series"])){
$s = name_to_file($_POST["series"]);
}*/
//Tworzy plik, w którym będzie nowa strona.
$n = name_to_file(strval($_POST["name"]));
$new_file = fopen($s_n."/".$n.".php","w");
//Tworzy stronę.
function create_site($file,$db1,$s1,$u_id1){
$name =strval($_POST['name']);
$query3 = mysqli_query($db1,"INSERT INTO posts (series_id,name,user_id) values(".$s1[0].",'".$name."',".$u_id1.");");
$query4 = mysqli_query($db1,"SELECT id FROM posts where series_id=".$s1[0]." and name ='".$name."';");
$query5 = mysqli_query($db1,"SELECT login1 FROM users where id=".$u_id1[0].";");
fwrite($file,"<!DOCTYPE html>\n<html lang=\"en\">\n<head>\n<meta charset=\"UTF-8\">\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n<meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">\n<title>Document</title>\n<link href=\"../style.css?version=52\" rel=\"stylesheet\" type=\"text/css\"media=\"screen\" ></link>\n</head>\n<body>\n<div ><a href=\"../index.php\">Strona Główna</a></div><?php
//Ten kod wypisuje nazwę użytkownika i przekierowuje na stronę logowania, jeżeli nikt nie jest zalogowany.
\$db = mysqli_connect(\"localhost\",\"root\",\"\",\"blog\");
if((isset(\$_COOKIE[\"user\"])) && \$_COOKIE[\"user\"] != \"\"){\n
echo \"<p class='h2'>Użytkownik:\".\$_COOKIE[\"user\"].\"<form action='' method='POST'></p><input type='submit' class='sub' name='logout' value='Wyloguj się'></input>\";\n
if(\$_COOKIE[\"user\"] =='".mysqli_fetch_row($query5)[0]."'){
echo \"<input type='submit' class='sub' value='Usuń post' name='delete'> </input>\";}
else
{echo \"<a href='login.php'>Zaloguj się</a>\";}}
if(isset(\$_POST[\"delete\"])){
\$qu2 = mysqli_query(\$db,\"Delete from posts where id=".mysqli_fetch_row($query4)[0].";\");
unlink('".name_to_file($name).".php');
header(\"Location:index.php\");
}
?>
</form><?php
if(isset(\$_POST[\"logout\"])){
\$_COOKIE[\"user\"] = \"\";
}
?>");
}
create_site($new_file,$db,$s,$u_id);
//Wypełnia stronę treścią.
function create_info($file,$column,$name){
fwrite($file,"<b>".$name.":</b>");
fwrite($file,"<p>".$_POST[$column]."</p>");
}
create_info($new_file,"series","Seria");
create_info($new_file,"name","Tytuł");
create_info($new_file,"content","Treść");
create_info($new_file,"bts","Za kulisami");
//kończy stronę.
function end_site($file){
fwrite($file,"</body>\n</html>");
}
end_site($new_file);
/*$query4 = mysqli_query($db,"SELECT id from series where name = '".$s."';");
if(isset($query4)){
$query_row2 = mysqli_fetch_row(mysqli_query($db,"SELECT id from series where name = '".$s."';"));
}
else{
$query_row2 = mysqli_fetch_row(mysqli_query($db,"INSERT INTO series(name) values('".$s."');"));
}*/
//if(isset($query_row1['id'])){
/*}
else{
$query3andhalf = mysqli_query($db,"INSERT INTO series (name) values('".$s."');");
$query3andhalf2 = mysqli_fetch_array(mysqli_query($db,"Select id from series where name='".$s."');"));
$query3 = mysqli_query($db,"INSERT INTO works (series_id,name) values('".$query3andhalf2['id']."','".$n."');");
} */
//closes the database
mysqli_close($db);
//heads to newly created site.
header("Location:".$s_n."/".$n.".php");
}
//
}
else{
echo "<p class=\"warning\">Post musi zawierać tytuł i treść.</p>";
}
}
?>
</body>
</html>