threadr.lostcave.ddnss.de/threadr/boards/index.php

67 lines
2.3 KiB
PHP
Raw Normal View History

2020-02-24 04:43:53 +01:00
<?php
session_start();
%SET_LOGIN_VARIABLE%
%PLEAZE_NO_CACHE%
2020-02-24 04:43:53 +01:00
%NO_CHEAP_SESSION_STEALING%
$navbar="boards";
2020-02-24 04:43:53 +01:00
?>
2020-02-19 22:16:27 +01:00
<!DOCTYPE html>
<html>
2020-02-19 22:26:06 +01:00
<head>
2020-02-19 22:53:56 +01:00
<title>ThreadR - Boards</title>
2020-03-05 04:56:06 +01:00
%STYLESHEET%
2020-02-23 20:18:18 +01:00
<link rel="icon" type="image/png" href="%CONTENT_DIR%/img/favicon-32x32.png" sizes="32x32" />
<meta name="viewport" content="width=device-width, initial-scale=1.0">
2020-02-19 22:26:06 +01:00
</head>
2020-02-19 22:16:27 +01:00
<body>
%NAVBAR%
2020-02-19 22:36:46 +01:00
<div class="container">
<div class="item-1">
<h1><center>ThreadR Boards</center></h1>
</div>
2020-03-02 08:40:56 +01:00
<div class="item-2">
2020-03-02 08:42:30 +01:00
<ul class="list">
<?php
2020-03-02 08:40:56 +01:00
$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!');
$error = false;
$error_message = "";
if (!$error) {
2020-03-06 10:33:13 +01:00
echo '<center><h2 class="beige">Public Boards</h2></center>';
$statement = $pdo->prepare("SELECT * FROM boards WHERE private='0' ORDER BY id asc");
2020-02-19 22:20:25 +01:00
$statement->execute();
foreach($statement->fetchAll() as $ROW) {
2020-03-07 19:29:33 +01:00
echo "<li><a href='%CONTENT_DIR%/board/?id=$ROW[id]'>$ROW[name]</a></li>";
2020-02-19 22:20:25 +01:00
}
2020-03-02 08:40:56 +01:00
}
if (!$result) {
2020-02-19 22:20:25 +01:00
$error_message = "Error: SQL error.\n" . $statement->queryString . "\n" . $statement->errorInfo()[2];
2020-03-02 08:40:56 +01:00
}
2020-03-06 10:46:34 +01:00
?>
</ul>
</div>
<div class="item-3">
<ul class="list">
<?php
2020-03-04 10:59:51 +01:00
if ($login) {
$error = false;
$error_message = "";
2020-03-04 10:59:51 +01:00
if (!$error) {
2020-03-06 10:46:34 +01:00
echo '<center><h2 class="beige">Private Boards</h2></center>';
$statement = $pdo->prepare("SELECT * FROM boards WHERE private='1' ORDER BY id asc");
2020-03-04 10:59:51 +01:00
$statement->execute();
foreach($statement->fetchAll() as $ROW) {
2020-03-07 19:29:33 +01:00
echo "<li><a href='%CONTENT_DIR%/board/?id=$ROW[id]'>$ROW[name]</a></li>";
2020-03-04 10:59:51 +01:00
}
}
2020-03-04 11:01:59 +01:00
if (!$result) {
$error_message = "Error: SQL error.\n" . $statement->queryString . "\n" . $statement->errorInfo()[2];
}
2020-03-04 10:59:51 +01:00
}
2020-03-02 08:40:56 +01:00
?>
2020-03-02 08:42:30 +01:00
</ul>
2020-02-19 22:43:26 +01:00
</div>
</div>
2020-03-09 12:22:13 +01:00
%BANNER_COOKIES%
2020-02-19 22:16:27 +01:00
</body>
</html>