2017-01-23 13:25:08 +01:00
4 changed files with 124 additions and 32 deletions
--- a/website/public/styles/adminpanel.css
+++ b/website/public/styles/adminpanel.css
@@ -58,6 +58,10 @@
    float: right;
 }

+.usertitle {
+    width: 150px;
+}
+
 .usertable {
    width: 100%;
 }
--- a/website/queries/group_page.php
+++ b/website/queries/group_page.php
@@ -53,4 +53,33 @@ function select20GroupsByStatusFromN($db, $n, $status) {
    ");
 }

+function search20GroupsFromNByStatus($db, $n, $keyword, $status) {
+    $q = $db->prepare("
+    SELECT
+        `groupID`,
+        `name`,
+        `status`,
+        `description`
+    FROM
+        `group_page`
+    WHERE
+        `name` LIKE :keyword AND
+        FIND_IN_SET (`status`, :statuses)
+    ORDER BY
+        `name`
+    LIMIT
+        :n, 20
+    ");
+
+    $keyword = "%$keyword%";
+    $q->bindParam(':keyword', $keyword);
+    $q->bindParam(':n', $n, PDO::PARAM_INT);
+    $statuses = implode(',', $status);
+    $q->bindParam(':statuses', $statuses);
+    $q->execute();
+    return $q;
+}
+
+
+
 ?>
--- a/website/queries/user.php
+++ b/website/queries/user.php
@@ -68,5 +68,18 @@ function search20UsersFromNByStatus($db, $n, $keyword, $status) {
    return $q;
 }

+function changeUserStatusByID($db, $id, $status) {
+    $q = $db->query("
+    UPDATE
+        `user`
+    SET
+        `role` = $status
+    WHERE
+        `userID` = $id
+    ");
+
+    return $q;
+}
+

 ?>
--- a/website/views/adminpanel.php
+++ b/website/views/adminpanel.php
@@ -29,7 +29,10 @@
    }

    </script>
-    <?php include_once("../queries/user.php"); ?>
+    <?php
+        include_once("../queries/user.php");
+        include_once("../queries/group_page.php");
+    ?>
 </head>
 <body>

@@ -57,6 +60,9 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
        $groupstatus = $_POST["groupstatus"];
    }

+    if (!empty($_POST["actions"]) && !empty($_POST["userID"])) {
+        changeUserStatusByID($db, $_POST["userID"], $_POST["actions"]);
+    }

 }

@@ -153,7 +159,7 @@ function test_input($data) {
            <br>

            <div class="admin-users">
-                <h2>Users:</h2>
+                <h2 class="usertitle">Users:</h2>

                <div class="admin-userpage">
                    <input type="submit" name="prev" value="prev">
@@ -174,6 +180,7 @@ function test_input($data) {

                    <!-- Table construction via php PDO. -->
                    <?php
+                    if ($pagetype == 'user') {
                        $q = search20UsersFromNByStatus($db, $listnr, $search, $status);

                        while($user = $q->fetch(PDO::FETCH_ASSOC)) {
@@ -197,9 +204,9 @@ function test_input($data) {
                            action='$thispage'
                            method='post'>
                            <select class='action' name='actions'>
-                                            <option value='freeze'>Freeze</option>
-                                            <option value='ban'>Ban</option>
-                                            <option value='restore'>Restore</option>
+                            <option value='2'>Freeze</option>
+                            <option value='3'>Ban</option>
+                            <option value='1'>Restore</option>
                            </select>
                            <input type='hidden' name='userID' value='$userID'>
                            <input type='submit' value='Confirm'>
@@ -208,10 +215,49 @@ function test_input($data) {
                            </tr>
                            ");
                        }
+                    } else {
+                        $q = search20GroupsFromNByStatus($db, $listnr, $search, $groupstatus);
+
+                        while ($group = $q->fetch(PDO::FETCH_ASSOC)) {
+                            $groupID = $group['groupID'];
+                            $name = $group['name'];
+                            $role = $group['status'];
+                            $description = $group['description'];
+                            $thispage = htmlspecialchars($_SERVER['PHP_SELF']);
+
+                            echo("
+                            <tr>
+                            <td><input type='checkbox'
+                            name='checkbox-group[]'
+                            value='$groupID'>
+                            </td>
+                            <td>$name</td>
+                            <td>$role</td>
+                            <td>$description</td>
+                            <td>
+                            <form class='admin-groupaction'
+                            action='$thispage'
+                            method='post'>
+                            <select class='action' name='actions'>
+                            <option value='hide'>Hide</option>
+                            <option value='public'>Public</option>
+                            <option value='restore'>Restore</option>
+                            </select>
+                            <input type='hidden' name='groupID' value='$groupID'>
+                            <input type='submit' value='Confirm'>
+                            </form>
+                            </td>
+                            </tr>
+                            ");
+                        }
+                    }
                    ?>
                </table>
            </div>
        </form>
+        <pre>
+            <?php print_r($_POST); ?>
+        </pre>
    </div>
 </div>
 </body>