summaryrefslogtreecommitdiff
path: root/includes/pages/user_questions.php
diff options
context:
space:
mode:
Diffstat (limited to 'includes/pages/user_questions.php')
-rw-r--r--includes/pages/user_questions.php83
1 files changed, 45 insertions, 38 deletions
diff --git a/includes/pages/user_questions.php b/includes/pages/user_questions.php
index 35231e1a..d1a90292 100644
--- a/includes/pages/user_questions.php
+++ b/includes/pages/user_questions.php
@@ -8,51 +8,58 @@ function questions_title()
function user_questions()
{
global $user;
-
- if (! isset($_REQUEST['action'])) {
- $open_questions = sql_select("SELECT * FROM `Questions` WHERE `AID` IS NULL AND `UID`='" . sql_escape($user['UID']) . "'");
-
- $answered_questions = sql_select("SELECT * FROM `Questions` WHERE NOT `AID` IS NULL AND `UID`='" . sql_escape($user['UID']) . "'");
+
+ if (!isset($_REQUEST['action'])) {
+ $open_questions = sql_select(
+ "SELECT * FROM `Questions` WHERE `AID` IS NULL AND `UID`='" . sql_escape($user['UID']) . "'"
+ );
+
+ $answered_questions = sql_select(
+ "SELECT * FROM `Questions` WHERE NOT `AID` IS NULL AND `UID`='" . sql_escape($user['UID']) . "'"
+ );
foreach ($answered_questions as &$question) {
$answer_user_source = User($question['AID']);
$question['answer_user'] = User_Nick_render($answer_user_source);
}
-
+
return Questions_view($open_questions, $answered_questions, page_link_to("user_questions") . '&action=ask');
} else {
switch ($_REQUEST['action']) {
- case 'ask':
- $question = strip_request_item_nl('question');
- if ($question != "") {
- $result = sql_query("INSERT INTO `Questions` SET `UID`='" . sql_escape($user['UID']) . "', `Question`='" . sql_escape($question) . "'");
- if ($result === false) {
- engelsystem_error(_("Unable to save question."));
- }
- success(_("You question was saved."));
- redirect(page_link_to("user_questions"));
- } else {
- return page_with_title(questions_title(), [
- error(_("Please enter a question!"), true)
- ]);
- }
- break;
- case 'delete':
- if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {
- $question_id = $_REQUEST['id'];
- } else {
- return error(_("Incomplete call, missing Question ID."), true);
- }
-
- $question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
- if (count($question) > 0 && $question[0]['UID'] == $user['UID']) {
- sql_query("DELETE FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
- redirect(page_link_to("user_questions"));
- } else {
- return page_with_title(questions_title(), [
- error(_("No question found."), true)
- ]);
+ case 'ask':
+ $question = strip_request_item_nl('question');
+ if ($question != "") {
+ $result = sql_query("
+ INSERT INTO `Questions`
+ SET `UID`='" . sql_escape($user['UID']) . "', `Question`='" . sql_escape($question) . "'
+ ");
+ if ($result === false) {
+ engelsystem_error(_("Unable to save question."));
+ }
+ success(_("You question was saved."));
+ redirect(page_link_to("user_questions"));
+ } else {
+ return page_with_title(questions_title(), [
+ error(_("Please enter a question!"), true)
+ ]);
+ }
+ break;
+ case 'delete':
+ if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {
+ $question_id = $_REQUEST['id'];
+ } else {
+ return error(_("Incomplete call, missing Question ID."), true);
+ }
+
+ $question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
+ if (count($question) > 0 && $question[0]['UID'] == $user['UID']) {
+ sql_query("DELETE FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
+ redirect(page_link_to("user_questions"));
+ } else {
+ return page_with_title(questions_title(), [
+ error(_("No question found."), true)
+ ]);
+ }
+ break;
}
- break;
- }
}
}
generated by cgit v1.2.3-54-g00ecf (git 2.45.0) at 2024-05-20 19:37:45 +0000