-
Notifications
You must be signed in to change notification settings - Fork 0
/
categories.php
executable file
·126 lines (94 loc) · 4.07 KB
/
categories.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
<?php include "includes/db.php";?>
<?php include "includes/header.php";?>
<!-- Navigation -->
<?php include "includes/nav.php";?>
<!-- Page Content -->
<div class="container">
<div class="row">
<!-- Blog Entries Column -->
<div class="col-md-8">
<?php
if (isset($_GET['c_id'])) {
$c_id = mysqli_real_escape_string($connection, $_GET['c_id']);
$stmt = mysqli_prepare($connection, "SELECT * FROM categories WHERE cat_id = ?");
mysqli_stmt_bind_param($stmt, 'i', $c_id);
mysqli_stmt_execute($stmt);
mysqli_stmt_store_result($stmt);
$is_cat_exist = mysqli_stmt_num_rows($stmt);
if ($is_cat_exist != '0') {
//show posts in category to admin
if (isAdmin($_SESSION['username'])) {
// $query = "SELECT * FROM posts WHERE post_category_id = {$c_id}";
$stmt1 = mysqli_prepare($connection, "SELECT post_title, post_id , post_author, post_date, post_image ,post_content FROM posts WHERE post_category_id = ?");
} else {
// $query = "SELECT * FROM posts WHERE post_category_id = {$c_id} AND post_status = 'published'";
$stmt2 = mysqli_prepare($connection, "SELECT post_title, post_id , post_author, post_date, post_image ,post_content FROM posts WHERE post_category_id = ? AND post_status = ?");
$published = 'published';
}
// checking which query we are getting back based on session logedin user
if (isset($stmt1)) {
mysqli_stmt_bind_param($stmt1, "i", $c_id);
mysqli_stmt_execute($stmt1);
mysqli_stmt_bind_result($stmt1, $post_title, $post_id, $post_author, $post_date, $post_image, $post_content);
// to get know which stmt has been exectude;
$stmt = $stmt1;
} else {
mysqli_stmt_bind_param($stmt2, "is", $c_id, $published);
mysqli_stmt_execute($stmt2);
mysqli_stmt_bind_result($stmt2, $post_title, $post_id, $post_author, $post_date, $post_image, $post_content);
// to get know which stmt has been exectude;
$stmt = $stmt2;
}
// store returned data to be abel to count rows
mysqli_stmt_store_result($stmt);
if (mysqli_stmt_num_rows($stmt1) < 1) {
echo "<h1 class='text-center'>No Posts In This Category Yet</h1>";
}
while (mysqli_stmt_fetch($stmt)):
?>
<!-- First Blog Post -->
<h2>
<a href="post.php?p_id=<?php echo $post_id ?>"><?php echo $post_title; ?></a>
</h2>
<p class="lead">
<?php
//selecting post author from db
$user_id = $post_author;
$stmt3 = mysqli_prepare($connection, "SELECT user_firstname,user_lastname FROM users WHERE user_id = ?");
mysqli_stmt_bind_param($stmt3, 'i', $post_author);
mysqli_stmt_execute($stmt3);
mysqli_stmt_bind_result($stmt3, $user_firstname, $user_lastname);
mysqli_stmt_store_result($stmt3);
while (mysqli_stmt_fetch($stmt3)):
$post_author = $user_firstname . " " . $user_lastname;
endwhile;
?>
by <a href="author_posts.php?p_author=<?php echo $user_id; ?>"><?php echo $post_author; ?></a>
</p>
<p><span class="glyphicon glyphicon-time"></span> Posted on <?php echo $post_date; ?></p>
<hr>
<a href="post.php?p_id=<?php echo $post_id;
?>">
<img class="img-responsive" src="images/<?php echo $post_image; ?>" alt="<?php echo $post_image; ?>">
</a>
<hr>
<p><?php echo $post_content; ?></p>
<a class="btn btn-primary" href="post.php?p_id=<?php echo $post_id ?>">Read More <span
class="glyphicon glyphicon-chevron-right"></span></a>
<?php
endwhile;
} else {
header("Location: index.php");
}
}
?>
</div>
<!-- Blog Sidebar Widgets Column -->
<?php include "includes/sidebar.php";?>
</div>
<!-- /.row -->
<hr>
<?php include "includes/footer.php";
//closing stmt
mysqli_stmt_close($stmt);
?>