#include <phptools.inc>
#include "zeitungen.inc"
-<page func="Infodrom Oldenburg" title="Zeitungen">
-
-<sql_prepare>
<?
$date = date ("Y-m-j H:i");
$dbh = pg_pconnect ("<dbhost>", "<dbport>", "<dbname>")
or die("Unable to connect to SQL server");
+ if (isset($_GET["approve"]) && is_numeric($_GET["approve"])) {
+ $query = sprintf ("UPDATE zeitungen SET deleted = false WHERE oid = %d", $_GET["approve"]);
+ $sth = pg_exec ($dbh, $query) or die("Datenbank-Abfrage!");
+
+ $link = sprintf ('edit.php?oid=%d', $_GET["approve"]);
+ header ("Location: $link");
+ exit(0);
+ }
+?>
+<page func="Infodrom Oldenburg" title="Zeitungen">
+
+<sql_prepare>
+<?
<:
for $i (('name','description','url','city')) {
printf " \$%s=sql_prepare (\$_POST[%s]);\n", $i, $i;
addslashes ($_POST[type]))
. " WHERE oid = $_POST[oid]";
}
- } elseif (isset($_GET["approve"]) && is_numeric($_GET["approve"])) {
- $query = sprintf ("UPDATE zeitungen SET deleted = false WHERE oid = %d", $_GET["approve"]);
- printf ('<p><a href="edit.php?oid=%d">Edit</a></p>', $_GET["approve"]);
} elseif (isset($_GET["delete"]) && is_numeric($_GET["delete"])) {
$query = sprintf ("UPDATE zeitungen SET deleted = true WHERE oid = %d", $_GET["delete"]);
} else {