cacert-webdb/pages/account/53.php

113 lines
4.7 KiB
PHP
Raw Normal View History

<? /*
2008-04-06 19:45:09 +00:00
LibreSSL - CAcert web application
Copyright (C) 2004-2008 CAcert Inc.
2008-04-06 19:45:09 +00:00
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; version 2 of the License.
2008-04-06 19:45:09 +00:00
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
2008-04-06 19:45:09 +00:00
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
*/ ?>
<?
2008-09-19 18:59:35 +00:00
$town = array_key_exists('town',$_REQUEST)?mysql_escape_string(stripslashes($_REQUEST['town'])):"";
$regid = array_key_exists('regid',$_REQUEST)?intval($_REQUEST['regid']):0;
$ccid = array_key_exists('ccid',$_REQUEST)?intval($_REQUEST['ccid']):0;
$start = array_key_exists('start',$_REQUEST)?intval($_REQUEST['start']):0;
$limit = 25;
echo "<div id='listshow'><ul class='top'>\n<li>";
echo "<a href='account.php?id=53'>"._("Home")."</a>\n";
$display = "";
2006-03-05 11:18:16 +00:00
if($regid > 0)
{
2006-03-05 11:18:16 +00:00
$reg = mysql_fetch_assoc(mysql_query("select * from `regions` where `id`='$regid'"));
$display = "<ul class='top'>\n<li>\n".
2008-09-03 17:43:31 +00:00
"<a href='account.php?id=53&amp;regid=$regid'>$reg[name]</a> - <a href='account.php?action=add&amp;id=54&amp;regid=$regid'>Add</a>\n".
$display;
2008-09-03 17:43:31 +00:00
$ccid = $_REQUEST['ccid'] = intval($reg['ccid']);
}
2006-03-05 11:18:16 +00:00
if($ccid > 0)
{
2006-03-05 11:18:16 +00:00
$cnt = mysql_fetch_assoc(mysql_query("select * from `countries` where `id`='$ccid'"));
$display = "<ul class='top'>\n<li>\n".
2008-09-03 17:43:31 +00:00
"<a href='account.php?id=53&amp;ccid=$ccid'>$cnt[name]</a> - <a href='account.php?action=add&amp;id=54&amp;ccid=$ccid'>Add</a>\n".
$display;
}
if($display)
echo $display;
2006-03-05 11:18:16 +00:00
if($ccid <= 0)
{
echo "<ul>\n";
$query = "select * from `countries` order by `name`";
$res = mysql_query($query);
while($row = mysql_fetch_assoc($res))
2008-09-04 11:23:06 +00:00
echo "<li><a href='account.php?id=53&amp;ccid=".intval($row['id'])."'>".sanitizeHTML($row['name'])."</a></li>\n";
echo "</ul>\n</li>\n</ul></div>\n<br>\n";
2006-03-05 11:18:16 +00:00
} elseif($regid <= 0) {
echo "<ul>\n";
2006-03-05 11:18:16 +00:00
$query = "select * from `regions` where `ccid`='$ccid' order by `name`";
$res = mysql_query($query);
while($row = mysql_fetch_assoc($res))
2005-12-04 21:04:05 +00:00
{
2008-09-03 17:43:31 +00:00
echo "<li>( <a href='account.php?action=edit&amp;id=54&regid=".intval($row['id'])."'>edit</a> |";
echo " <a href='account.php?action=delete&amp;id=53&regid=".intval($row['id'])."'";
2005-12-04 21:04:05 +00:00
echo " onclick=\"return confirm('Are you sure you want to delete this region and all connected locations?');\">delete</a> )";
2008-09-03 17:43:31 +00:00
echo " <a href='account.php?id=53&amp;regid=".intval($row['id'])."'>".sanitizeHTML($row['name'])."</a></li>\n";
2005-12-04 21:04:05 +00:00
}
echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n";
2005-12-04 21:04:05 +00:00
} elseif(intval($_REQUEST['locid']) <= 0) {
echo "<ul>\n";
if($town != "")
{
2006-03-05 11:18:16 +00:00
$query = "select * from `locations` where `regid`='$regid' and `name` < '$town'";
$start = mysql_num_rows(mysql_query($query));
}
2006-03-05 11:18:16 +00:00
$query = "select * from `locations` where `regid`='$regid' order by `name` limit $start, $limit";
$res = mysql_query($query);
while($row = mysql_fetch_assoc($res))
2005-12-04 21:04:05 +00:00
{
2008-09-03 17:43:31 +00:00
echo "<li>( <a href='account.php?action=move&amp;id=54&amp;locid=".intval($row['id'])."'>move</a> |";
echo " <a href='account.php?action=aliases&amp;id=54&amp;locid=".intval($row['id'])."'>aliases</a> |";
echo " <a href='account.php?action=edit&amp;id=54&amp;locid=".intval($row['id'])."'>edit</a> |";
echo " <a href='account.php?action=delete&amp;id=53&amp;locid=".intval($row['id'])."'";
echo " onclick=\"return confirm('Are you sure you want to delete this location?');\">delete</a> ) ".sanitizeHTML($row['name'])." (".sanitizeHTML($row['lat']).",".sanitizeHTML($row['long']).")</li>\n";
2005-12-04 21:04:05 +00:00
}
echo "</ul>\n</li>\n</ul>\n</li>\n</ul></div>\n<br>\n";
2006-03-05 11:18:16 +00:00
$rc = mysql_num_rows(mysql_query("select * from `locations` where `regid`='$regid'"));
if($start > 0)
{
$prev = $start - $limit;
if($prev < 0)
$prev = 0;
2008-09-03 17:43:31 +00:00
$st = "[ <a href='account.php?id=53&amp;regid=$regid'><< Start</a> ] ";
$prev = "[ <a href='account.php?id=53&amp;regid=$regid&amp;start=$prev'>< Previous $limit</a> ] ";
}
if($start < $rc - $limit)
{
$next = $start + $limit;
$last = $rc - $limit;
2008-09-03 17:43:31 +00:00
$next = "[ <a href='account.php?id=53&amp;regid=$regid&amp;start=$next'>Next $limit ></a> ] ";
$end = "[ <a href='account.php?id=53&amp;regid=$regid&amp;start=$last'>End >></a> ]";
}
echo "<div id='search1'>$st</div><div id='search3'>$end</div>\n";
echo "<div id='search2'>$prev</div><div id='search4'>$next</div>\n";
2005-12-04 21:04:05 +00:00
}
?>