threadr.lostcave.ddnss.de/threadr/board/submit.php

17 lines
771 B
PHP

<?php
%REQUIRE_LOGIN%
$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!')
$error = false;
$error_message = "";
if (!$error) {
$statement = $pdo->prepare("INSERT INTO posts (board_id, user_id, title, content,) VALUES (:bid,:uid,:title,:content)");
$result = $statement->execute(array('bid'=>$id, 'uid'=>$_SESSION[user_id], 'title'=>$_POST['title'], 'content'=>$_POST['content']));
}
if (!$result) {
$error_message = "<p>Error: SQL error.</p><pre>" . $statement->queryString . "</pre><pre>" . $statement->errorInfo()[2] . "</pre>";
}
echo "<div class='margin'><a href='%CONTENT_DIR%/board/?id=$id&action=edit'><button> Edit your post </button></a><a href='%CONTENT_DIR%/board/?id=$id'><button> Done </button></a></div>";
?>