$where = '';
- if (strlen ($_POST[city])) {
+ if (strlen ($_POST['city'])) {
if (strlen ($where)) $where .= "AND ";
- $where .= sprintf ("city = '%s' ", $_POST[city]);
+ $where .= sprintf ("city = '%s' ", $_POST['city']);
}
- if (strlen ($_POST[country])) {
+ if (strlen ($_POST['country'])) {
if (strlen ($where)) $where .= "AND ";
- $where .= sprintf ("country = '%s' ", $_POST[country]);
+ $where .= sprintf ("country = '%s' ", $_POST['country']);
}
- if (strlen ($_POST[year])) {
+ if (strlen ($_POST['year'])) {
if (strlen ($where)) $where .= "AND ";
- $where .= sprintf ("( start >= '%d-01-01' AND start < '%d-01-01' ) ", $_POST[year], (integer)$_POST[year] + 1);
+ $where .= sprintf ("( start >= '%d-01-01' AND start < '%d-01-01' ) ", $_POST['year'], (integer)$_POST['year'] + 1);
}
- if (strlen ($_POST[key])) {
+ if (strlen ($_POST['key'])) {
if (strlen ($where)) $where .= "AND ";
- if (strlen ($_POST[city]) || strlen ($_POST[country])) {
+ if (strlen ($_POST['city']) || strlen ($_POST['country'])) {
$where .= sprintf ("( name ~* '%s' OR url ~* '%s' OR comment ~* '%s' ) ",
- addslashes ($_POST[key]), addslashes ($_POST[key]), addslashes ($_POST[key]));
+ addslashes ($_POST['key']), addslashes ($_POST['key']), addslashes ($_POST['key']));
} else {
$where .= sprintf ("( name ~* '%s' OR city ~* '%s' OR url ~* '%s' OR comment ~* '%s' ) ",
- addslashes ($_POST[key]), addslashes ($_POST[key]), addslashes ($_POST[key]), addslashes ($_POST[key]));
+ addslashes ($_POST['key']), addslashes ($_POST['key']), addslashes ($_POST['key']), addslashes ($_POST['key']));
}
}
if (!strlen ($where)) {
}
}
- bomb_if_empty ($_POST[name], "Name");
- bomb_if_empty ($_POST[country], "City");
- bomb_if_empty ($_POST[country], "Country");
- bomb_if_empty ($_POST[date], "Date");
+ bomb_if_empty ($_POST['name'], "Name");
+ bomb_if_empty ($_POST['country'], "City");
+ bomb_if_empty ($_POST['country'], "Country");
+ bomb_if_empty ($_POST['date'], "Date");
- $days = (int)$_POST[days];
+ $days = (int)$_POST['days'];
if ($days < 0) {
$days = 0;
} elseif ($days > 0) {
$days = "$days day";
}
- $date = convert_date($_POST[date]);
+ $date = convert_date($_POST['date']);
- $orig_name = $_POST[name];
+ $orig_name = $_POST['name'];
<:
for $i (('name','city','country','url','deburl','localurl','comment')) {
printf " \$%s=sql_prepare (\$_POST[%s]);\n", $i, $i;
$oid = 0;
if ($_POST['id'] > 0) {
if (isset($_POST['delete'])) {
- $query = sprintf ("DELETE FROM events WHERE oid = %d", $_POST[id]);
+ $query = sprintf ("DELETE FROM events WHERE oid = %d", $_POST['id']);
} else {
$oid = $_POST['id'];
$query = sprintf ("UPDATE events SET name='%s',start='%s',delta='%s',city='%s',country='%s',"
."VALUES ('%s','%s','%s','%s','%s',%d,%d,'%s','%s','%s','%s',%d,'now')",
$date, $days,
$name,
- $city, $country, $_POST[conference], $_POST[exhibition], $url, $deburl, $localurl,
+ $city, $country, $_POST['conference'], $_POST['exhibition'], $url, $deburl, $localurl,
$comment,
- $_POST[cancelled]);
+ $_POST['cancelled']);
}
//printf ("<pre>\n%s\n</pre>\n", $query);
$sth = pg_exec ($dbh, $query) or die("Datenbank-Abfrage!");