beenull/PHP-MySQL-Blog-Website-with-Admin-Panel
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
PHP-MySQL-Blog-Website-with.../admin/add-category-logic.php
Underemployed a834ee565c added session verification and admin check
2024-03-29 12:06:56 +05:30

40 lines
No EOL
1.4 KiB
PHP
Raw Permalink Blame History

<?php
require 'config/database.php';
if(!isset($_SESSION['user_is_admin'])){
header("location: " . ROOT_URL . "logout.php");
//destroy all sessions and redirect user to login page
session_destroy();
}
if(isset($_POST['submit'])){
//get form data
$title =filter_var($_POST['title'],FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$description=filter_var($_POST['description'],FILTER_SANITIZE_FULL_SPECIAL_CHARS);
if(!$title){
$_SESSION['add-category'] = "Enter title";
}elseif(!$description){
$_SESSION['add-category']="Enter description";
}
// redirect back to add category page if there was invalid input
if(isset($_SESSION['add-category'])){
$_SESSION['add-category-data'] = $_POST;
header('location: ' . ROOT_URL . 'admin/add-category.php');
die();
}else{
// insert category into database
$query = "INSERT INTO categories (title , description) VALUES ('$title','$description')";
$result = mysqli_query($connection, $query);
if(mysqli_errno($connection)){
$_SESSION['add-category'] = "Couldn't add category";
header('location: ' . ROOT_URL . 'admin/add-category.php');
die();
}else{
$_SESSION['add-category-success'] = "Category $title category added successfully";
header('location: ' . ROOT_URL . 'admin/manage-categories.php');
}
}
}
Reference in a new issue View git blame Copy permalink