perm->checkRight($user->getUserId(), 'addglossary') ||
$user->perm->checkRight($user->getUserId(), 'editglossary') ||
$user->perm->checkRight($user->getUserId(), 'delglossary')) {
$glossary = new Glossary($faqConfig);
if ('saveglossary' == $action && $user->perm->checkRight($user->getUserId(), 'addglossary') && $csrfCheck) {
$item = Filter::filterInput(INPUT_POST, 'item', FILTER_SANITIZE_SPECIAL_CHARS);
$definition = Filter::filterInput(INPUT_POST, 'definition', FILTER_SANITIZE_SPECIAL_CHARS);
if ($glossary->addGlossaryItem($item, $definition)) {
echo '
×';
echo $PMF_LANG['ad_glossary_save_success'] . '
';
} else {
echo '
×';
echo $PMF_LANG['ad_glossary_save_error'];
echo '
' . $PMF_LANG['ad_adus_dberr'] . '
';
echo $faqConfig->getDb()->error() . '
';
}
}
if ('updateglossary' == $action && $user->perm->checkRight($user->getUserId(),
'editglossary') && $csrfCheck) {
$id = Filter::filterInput(INPUT_POST, 'id', FILTER_VALIDATE_INT);
$item = Filter::filterInput(INPUT_POST, 'item', FILTER_SANITIZE_SPECIAL_CHARS);
$definition = Filter::filterInput(INPUT_POST, 'definition', FILTER_SANITIZE_SPECIAL_CHARS);
if ($glossary->updateGlossaryItem($id, $item, $definition)) {
echo '
×';
echo $PMF_LANG['ad_glossary_update_success'] . '
';
} else {
echo '
×';
echo $PMF_LANG['ad_glossary_update_error'];
echo '
' . $PMF_LANG['ad_adus_dberr'] . '
';
echo $faqConfig->getDb()->error() . '
';
}
}
if ('deleteglossary' == $action && $user->perm->checkRight($user->getUserId(),
'editglossary') && $csrfCheckDelete) {
$id = Filter::filterInput(INPUT_GET, 'id', FILTER_VALIDATE_INT);
if ($glossary->deleteGlossaryItem($id)) {
echo '
×';
echo $PMF_LANG['ad_glossary_delete_success'] . '
';
} else {
echo '
×';
echo $PMF_LANG['ad_glossary_delete_error'];
echo '
' . $PMF_LANG['ad_adus_dberr'] . '
';
echo $faqConfig->getDb()->error() . '
';
}
}
$glossaryItems = $glossary->getAllGlossaryItems();
echo '
';
printf(
'| %s | %s | |
|---|
',
$PMF_LANG['ad_glossary_item'],
$PMF_LANG['ad_glossary_definition']
);
foreach ($glossaryItems as $items) {
echo '';
printf(
'| %s | ',
'?action=editglossary&id=',
$items['id'],
$items['item']
);
printf(
'%s | ',
$items['definition']
);
printf(
'',
$PMF_LANG['ad_user_del_3'],
'?action=deleteglossary&id=',
$items['id'],
'&csrf=',
$user->getCsrfTokenFromSession()
);
printf(
' | ',
$PMF_LANG['ad_entry_delete']
);
echo '
';
}
echo '
';
} else {
echo $PMF_LANG['err_NotAuth'];
}
?>