admin/petitions.php

   1 <?PHP
   2 include_once('../slack.php');
   3 include_once('security.php');
   4 if ($_COOKIE['level'] == 'user'){
   5   slack_general('ADMIN: Redirect User Home ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
   6   header('Location: user_home.php');
   7 }
   8 include_once('header.php');
   9 slack_general('ADMIN: petition manager Loaded ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
  10 $group_id = $_COOKIE['group_id'];
  11 if(isset($_POST['web_short_name']) && isset($_POST['web_color']) && isset($_POST['petition_name']) ){
  12   $web_short_name = $petition->real_escape_string($_POST['web_short_name']);
  13   $web_color = $petition->real_escape_string($_POST['web_color']);
  14   $petition_name = $petition->real_escape_string($_POST['petition_name']);
  15   $petition->query("insert into petitions (web_short_name,web_color,group_id,petition_name) values ('$web_short_name','$web_color','$group_id','$petition_name') ");
  16 }
  17 ?>
  18
  19 <h1>Petitions</h1>
  20 <?PHP
  21 if($_COOKIE['level'] == 'admin'){
  22   $q="SELECT * FROM petitions";
  23 }else{
  24   $q="SELECT * FROM petitions where group_id = '$group_id'";
  25 }
  26 $r = $petition->query($q);
  27 while($d = mysqli_fetch_array($r)){
  28  echo "<li>$d[admin_status] $d[petition_id] $d[web_short_name] $d[web_color] $d[group_id] $d[petition_name] $d[eligibleVoterListField] $d[eligibleVoterListEquals] $d[eligibleVoterListEnforce]</li>";
  29 }
  30 ?>
  31 <h1>New Petition</h1>
  32 <form method='post'>
  33   web_short_name <input name='web_short_name' required>
  34   web_color <input name='web_color' required>
  35   petition_name <input name='petition_name' required>
  36   <input type='submit'>
  37 </form>
  38 <br><br><br>
  39 <?PHP
  40 include_once('footer.php');
  41 ?>