Файл: admins/red_ank.php
Строк: 85
<?
include_once $_SERVER['DOCUMENT_ROOT'].'/core/system.php';
$title='Редактирование Анкеты';
include_once $_SERVER['DOCUMENT_ROOT'].'/design/heads.php';
$us = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '" . intval($_GET['id']) . "' LIMIT 1"));
title($title);
nav();
only_reg();
access(1);
if (isset($_POST['create']))
{
$name=my_esc($_POST['name']);
$info=my_esc($_POST['info']);
$email=my_esc($_POST['email']);
$access=my_esc($_POST['access']);
$login=my_esc($_POST['login']);
$pass=my_esc($_POST['pass']);
$icq=my_esc($_POST['icq']);
$sex=my_esc($_POST['sex']);
if (strlen($name) > 20) $error .= 'В имени максимум 20 символов';
if (strlen($info) > 500) $error .= 'О себе максимум 500 символов';
if (strlen($email) > 25) $error .= 'Ошибка в emaik';
if (strlen($icq) > 11) $error .= 'ICQ максимум 11 символов';
if($error){
$_SESSION['err'] = ''.$error.'';
header('Location: red_ank.php?id='.$us['id'].'');
exit();
}
mysql_query("update `users` set `name` = '$name', `info`= '$info', `pass`='$pass', `email` = '$email', `access` = '$access',`login`='$login',`icq` ='$icq',`sex`='$sex' where `id` = '".$us['id']."'");
$_SESSION['msg'] = 'Успешно';
header('Location: red_ank.php?id='.$us['id'].'');
}
echo '<div class="blok3">
Редактирование Анкеты
</div><div class="white-block9 margin-min"><div class="site-box4"><div class="menu">
<form method="post" action="">
Ник:</br> <input type="text" value="'.$us['login'].'" name="login"></br>
Имя:</br> <input type="text" value="'.$us['name'].'" name="name"></br>
О себе:</br> <textarea name="info">'.$us['info'].'</textarea>
</br>E-Mail:</br> <input type="text" value="'.$us['email'].'" name="email">
</br>ICQ:</br> <input type="text" value="'.$us['icq'].'" name="icq">
';
echo "</br>Пол:<br />n<select name='sex'>n";
echo "<option value='0'".($us['sex']==0?" selected='selected'":null).">Мужской</option>n";
echo "<option value='1'".($us['sex']==1?" selected='selected'":null).">Женский</option>n";
echo "</select><br />n";
if($user['access'] == 2){
echo '</br>Пароль:</br> <input type="text" value="'.$us['pass'].'" name="pass">';
echo "</br>Права:<br />n<select name='access'>n";
echo "<option value='0'".($us['access']==0?" selected='selected'":null).">Пользователь</option>n";
echo "<option value='1'".($us['access']==1?" selected='selected'":null).">Модер</option>n";
echo "<option value='2'".($us['access']==2?" selected='selected'":null).">Админ</option>n";
echo "</select><br />n";
}
echo '</br><input name = "create" value="Сохранить" type="submit" />
</div></div></div> ';
include_once $_SERVER['DOCUMENT_ROOT'].'/design/footer.php';
?>