setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $userManager = new \pvv\admin\UserManager($pdo); require_once(__DIR__ . '/../../../vendor/simplesamlphp/simplesamlphp/lib/_autoload.php'); $as = new SimpleSAML_Auth_Simple('default-sp'); $as->requireAuth(); $attrs = $as->getAttributes(); $uname = $attrs['uid'][0]; if(!$userManager->hasGroup($uname, 'aktiviteter')){ echo 'Her har du ikke lov\'t\'å\'værra!!!'; exit(); } if(!isset($_POST['title']) or !isset($_POST['desc']) or !isset($_POST['start']) or !isset($_POST['end']) or !isset($_POST['organiser']) or !isset($_POST['location'])){ header('Location: ' . $_SERVER['HTTP_REFERER']); exit(); } $id = 0; if(isset($_POST['id'])){ $id = $_POST['id']; } $title = $_POST['title']; $desc = $_POST['desc']; $start = $_POST['start']; $stop = $_POST['end']; $organiser = $_POST['organiser']; $location = $_POST['location']; $statement; if($id == 0){ $query = 'INSERT INTO events (name, start, stop, organiser, location, description) VALUES (:title, :start, :stop, :organiser, :loc, :desc)'; $statement = $pdo->prepare($query); $statement->bindParam(':title', $title, PDO::PARAM_STR); $statement->bindParam(':desc', $desc, PDO::PARAM_STR); $statement->bindParam(':start', $start, PDO::PARAM_STR); $statement->bindParam(':stop', $stop, PDO::PARAM_STR); $statement->bindParam(':organiser', $organiser, PDO::PARAM_STR); $statement->bindParam(':loc', $location, PDO::PARAM_STR); }else{ $query = 'UPDATE events SET name=:title, start=:start, stop=:stop, organiser=:organiser, location=:loc, description=:desc WHERE id=:id'; $statement = $pdo->prepare($query); $statement->bindParam(':title', $title, PDO::PARAM_STR); $statement->bindParam(':desc', $desc, PDO::PARAM_STR); $statement->bindParam(':start', $start, PDO::PARAM_STR); $statement->bindParam(':stop', $stop, PDO::PARAM_STR); $statement->bindParam(':organiser', $organiser, PDO::PARAM_STR); $statement->bindParam(':loc', $location, PDO::PARAM_STR); $statement->bindParam(':id', $id, PDO::PARAM_INT); } $statement->execute(); header('Location: .'); ?> Om du ikke ble automatisk omdirigert tilbake klikk her