misuzu/public/manage/news.php

<?php
require_once '../../misuzu.php';

$newsPerms = perms_get_user(MSZ_PERMS_NEWS, user_session_current('user_id', 0));

switch ($_GET['v'] ?? null) {
    default:
    case 'posts':
        if (!perms_check($newsPerms, MSZ_PERM_NEWS_MANAGE_POSTS)) {
            echo render_error(403);
            break;
        }

        $postTake = 15;
        $postOffset = (int)($_GET['o'] ?? 0);
        $posts = news_posts_get($postOffset, $postTake, null, false, true, false);
        $postsCount = news_posts_count(null, false, true, false);

        echo tpl_render('manage.news.posts', [
            'news_posts' => $posts,
            'posts_offset' => $postOffset,
            'posts_take' => $postTake,
            'posts_count' => $postsCount,
        ]);
        break;

    case 'categories':
        if (!perms_check($newsPerms, MSZ_PERM_NEWS_MANAGE_CATEGORIES)) {
            echo render_error(403);
            break;
        }

        $catTake = 15;
        $catOffset = (int)($_GET['o'] ?? 0);
        $categories = news_categories_get($catOffset, $catTake, true, false, true);
        $categoryCount = news_categories_count(true);

        echo tpl_render('manage.news.categories', [
            'news_categories' => $categories,
            'categories_offset' => $catOffset,
            'categories_take' => $catTake,
            'categories_count' => $categoryCount,
        ]);
        break;

    case 'category':
        $category = [];
        $categoryId = (int)($_GET['c'] ?? null);

        if (!empty($_POST['category']) && csrf_verify('news_category', $_POST['csrf'] ?? '')) {
            $originalCategoryId = (int)($_POST['category']['id'] ?? null);
            $categoryId = news_category_create(
                $_POST['category']['name'] ?? null,
                $_POST['category']['description'] ?? null,
                !empty($_POST['category']['hidden']),
                $originalCategoryId
            );

            audit_log(
                $originalCategoryId === $categoryId
                    ? MSZ_AUDIT_NEWS_CATEGORY_EDIT
                    : MSZ_AUDIT_NEWS_CATEGORY_CREATE,
                user_session_current('user_id'),
                [$categoryId]
            );
        }

        if ($categoryId > 0) {
            $category = news_category_get($categoryId);
        }

        echo tpl_render('manage.news.category', compact('category'));
        break;

    case 'post':
        $post = [];
        $postId = (int)($_GET['p'] ?? null);
        $categories = news_categories_get(0, 0, false, false, true);

        if (!empty($_POST['post']) && csrf_verify('news_post', $_POST['csrf'] ?? '')) {
            $originalPostId = (int)($_POST['post']['id'] ?? null);
            $currentUserId = user_session_current('user_id');
            $postId = news_post_create(
                $_POST['post']['title'] ?? null,
                $_POST['post']['text'] ?? null,
                (int)($_POST['post']['category'] ?? null),
                user_session_current('user_id'),
                !empty($_POST['post']['featured']),
                null,
                $originalPostId
            );
            audit_log(
                $originalPostId === $postId
                    ? MSZ_AUDIT_NEWS_POST_EDIT
                    : MSZ_AUDIT_NEWS_POST_CREATE,
                $currentUserId,
                [$postId]
            );
        }

        if ($postId > 0) {
            $post = news_post_get($postId);
        }

        echo tpl_render('manage.news.post', compact('post', 'categories'));
        break;
}
News but everything is a function. 2018-10-10 09:21:57 +00:00			`<?php`
			`require_once '../../misuzu.php';`

			`$newsPerms = perms_get_user(MSZ_PERMS_NEWS, user_session_current('user_id', 0));`

			`switch ($_GET['v'] ?? null) {`
Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`default:`
News but everything is a function. 2018-10-10 09:21:57 +00:00			`case 'posts':`
			`if (!perms_check($newsPerms, MSZ_PERM_NEWS_MANAGE_POSTS)) {`
			`echo render_error(403);`
			`break;`
			`}`

Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`$postTake = 15;`
			`$postOffset = (int)($_GET['o'] ?? 0);`
			`$posts = news_posts_get($postOffset, $postTake, null, false, true, false);`
			`$postsCount = news_posts_count(null, false, true, false);`

			`echo tpl_render('manage.news.posts', [`
			`'news_posts' => $posts,`
			`'posts_offset' => $postOffset,`
			`'posts_take' => $postTake,`
			`'posts_count' => $postsCount,`
			`]);`
News but everything is a function. 2018-10-10 09:21:57 +00:00			`break;`

			`case 'categories':`
			`if (!perms_check($newsPerms, MSZ_PERM_NEWS_MANAGE_CATEGORIES)) {`
			`echo render_error(403);`
			`break;`
			`}`

			`$catTake = 15;`
			`$catOffset = (int)($_GET['o'] ?? 0);`
Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`$categories = news_categories_get($catOffset, $catTake, true, false, true);`
			`$categoryCount = news_categories_count(true);`

			`echo tpl_render('manage.news.categories', [`
			`'news_categories' => $categories,`
			`'categories_offset' => $catOffset,`
			`'categories_take' => $catTake,`
			`'categories_count' => $categoryCount,`
			`]);`
			`break;`

			`case 'category':`
			`$category = [];`
			`$categoryId = (int)($_GET['c'] ?? null);`

			`if (!empty($_POST['category']) && csrf_verify('news_category', $_POST['csrf'] ?? '')) {`
Added more audit log events. 2018-12-15 21:16:12 +00:00			`$originalCategoryId = (int)($_POST['category']['id'] ?? null);`
Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`$categoryId = news_category_create(`
			`$_POST['category']['name'] ?? null,`
			`$_POST['category']['description'] ?? null,`
			`!empty($_POST['category']['hidden']),`
Added more audit log events. 2018-12-15 21:16:12 +00:00			`$originalCategoryId`
			`);`

			`audit_log(`
			`$originalCategoryId === $categoryId`
			`? MSZ_AUDIT_NEWS_CATEGORY_EDIT`
			`: MSZ_AUDIT_NEWS_CATEGORY_CREATE,`
			`user_session_current('user_id'),`
			`[$categoryId]`
Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`);`
			`}`

			`if ($categoryId > 0) {`
			`$category = news_category_get($categoryId);`
			`}`

			`echo tpl_render('manage.news.category', compact('category'));`
			`break;`

			`case 'post':`
			`$post = [];`
			`$postId = (int)($_GET['p'] ?? null);`
			`$categories = news_categories_get(0, 0, false, false, true);`

			`if (!empty($_POST['post']) && csrf_verify('news_post', $_POST['csrf'] ?? '')) {`
Added more audit log events. 2018-12-15 21:16:12 +00:00			`$originalPostId = (int)($_POST['post']['id'] ?? null);`
			`$currentUserId = user_session_current('user_id');`
Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`$postId = news_post_create(`
			`$_POST['post']['title'] ?? null,`
			`$_POST['post']['text'] ?? null,`
			`(int)($_POST['post']['category'] ?? null),`
			`user_session_current('user_id'),`
			`!empty($_POST['post']['featured']),`
			`null,`
Added more audit log events. 2018-12-15 21:16:12 +00:00			`$originalPostId`
			`);`
			`audit_log(`
			`$originalPostId === $postId`
			`? MSZ_AUDIT_NEWS_POST_EDIT`
			`: MSZ_AUDIT_NEWS_POST_CREATE,`
			`$currentUserId,`
			`[$postId]`
Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`);`
			`}`

			`if ($postId > 0) {`
			`$post = news_post_get($postId);`
			`}`
News but everything is a function. 2018-10-10 09:21:57 +00:00
Fixed news tables and finished the shoddy news management panel. 2018-10-11 21:43:52 +00:00			`echo tpl_render('manage.news.post', compact('post', 'categories'));`
News but everything is a function. 2018-10-10 09:21:57 +00:00			`break;`
			`}`