summaryrefslogtreecommitdiff
path: root/includes/pages/user_wakeup.php
diff options
context:
space:
mode:
Diffstat (limited to 'includes/pages/user_wakeup.php')
-rw-r--r--includes/pages/user_wakeup.php44
1 files changed, 19 insertions, 25 deletions
diff --git a/includes/pages/user_wakeup.php b/includes/pages/user_wakeup.php
index b6955669..2c6940e7 100644
--- a/includes/pages/user_wakeup.php
+++ b/includes/pages/user_wakeup.php
@@ -10,11 +10,12 @@ function user_wakeup() {
$date = DateTime::createFromFormat("Y-m-d H:i", $_REQUEST['Date']);
if ($date != null) {
$date = $date->getTimestamp();
- $bemerkung = preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui", '', strip_tags($_REQUEST['Bemerkung']));
- $ort = preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}]{1,})/ui", '', strip_tags($_REQUEST['Ort']));
- $SQL = "INSERT INTO `Wecken` (`UID`, `Date`, `Ort`, `Bemerkung`) " .
- "VALUES ('" . $user['UID'] . "', '" . $date . "', '" . $ort . "', " .
- "'" . $bemerkung . "')";
+ $bemerkung = strip_request_item_nl('Bemerkung');
+ $ort = strip_request_item('Ort');
+ $SQL = "INSERT INTO `Wecken` (`UID`, `Date`, `Ort`, `Bemerkung`) "
+ . "VALUES ('" . sql_escape($user['UID']) . "', '"
+ . sql_escape($date) . "', '" . sql_escape($ort) . "', " . "'"
+ . sql_escape($bemerkung) . "')";
sql_query($SQL);
$html .= success(Get_Text(4));
} else
@@ -37,7 +38,8 @@ function user_wakeup() {
}
}
- $html .= "<p>" . Get_Text("Hello") . $user['Nick'] . ",<br />" . Get_Text("pub_wake_beschreibung") . "</p>\n\n";
+ $html .= "<p>" . Get_Text("Hello") . $user['Nick'] . ",<br />"
+ . Get_Text("pub_wake_beschreibung") . "</p>\n\n";
$html .= Get_Text("pub_wake_beschreibung2");
$html .= '
<table border="0" width="100%" class="border" cellpadding="2" cellspacing="1">
@@ -68,25 +70,17 @@ function user_wakeup() {
$html .= '</tr>';
}
- $html .= '</table><hr />' . Get_Text("pub_wake_Text2") . '
-<form action="' . page_link_to("user_wakeup") . '&action=create" method="post">
-<table>
- <tr>
- <td align="right">' . Get_Text("pub_wake_Datum") . ':</td>
- <td><input type="text" name="Date" value="' . date("Y-m-d H:i") . '"></td>
- </tr>
- <tr>
- <td align="right">' . Get_Text("pub_wake_Ort") . '</td>
- <td><input type="text" name="Ort" value="Tent 23"></td>
- </tr>
- <tr>
- <td align="right">' . Get_Text("pub_wake_Bemerkung") . '</td>
- <td><textarea name="Bemerkung" rows="5" cols="40">knock knock leo, follow the white rabbit to the blue tent</textarea></td>
- </tr>
-</table>
-<input type="submit" name="submit" value="' . Get_Text("pub_wake_bouton") . '" />
-</form>';
+ $html .= '</table><hr />' . Get_Text("pub_wake_Text2");
+ $html .= template_render('../templates/user_wakeup.html', array (
+ 'wakeup_link' => page_link_to("user_wakeup"),
+ 'date_text' => Get_Text("pub_wake_Datum"),
+ 'date_value' => date("Y-m-d H:i"),
+ 'place_text' => Get_Text("pub_wake_Ort"),
+ 'comment_text' => Get_Text("pub_wake_Bemerkung"),
+ 'comment_value' => "Knock knock Leo, follow the white rabbit to the blue tent",
+ 'submit_text' => Get_Text("pub_wake_bouton")
+ ));
return $html;
}
-?> \ No newline at end of file
+?>