-ADD_DESCR("admin", __FILE__);
-
-if (empty($_GET['do'])) unset($_GET['do']);
-
-if (((empty($_POST['t_wait'])) || (empty($_POST['payment']))) && (!empty($_GET['do'])) && ($_GET['do'] == "add")) {
- unset($_POST['ok']);
-}
-
-if (isset($_POST['ok'])) {
- $SQL = array();
- switch ($_GET['do']) {
- case "add":
- $SQLs[] = "INSERT INTO `{!MYSQL_PREFIX!}_payments` (time, payment, mail_title, price) VALUES ('".$_POST['t_wait']."','".$_POST['payment']."','".$_POST['title']."','".$_POST['price']."')";
- $result = SQL_QUERY_ESC("SELECT id FROM `{!MYSQL_PREFIX!}_payments` WHERE time='%s' LIMIT 1",
- array($_POST['t_wait']), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1) {
- // Free memory
- $SQLs[0] = "";
- SQL_FREERESULT($result);
- }
- break;
-
- case "edit":
- foreach ($_POST['time'] as $id => $value) {
- $SQLs[] = "UPDATE `{!MYSQL_PREFIX!}_payments` SET time='".$value."', payment='".$_POST['pay'][$id]."', price='".$_POST['price'][$id]."', mail_title='".$_POST['title'][$id]."' WHERE id='".$id."' LIMIT 1";
- }
- break;
-
- case "del":
- foreach ($_POST['id'] as $id => $value) {
- $SQLs[] = "DELETE LOW_PRIORITY FROM `{!MYSQL_PREFIX!}_payments` WHERE id='".$id."' LIMIT 1";
- }
- break;
- }
+addYouAreHereLink('admin', __FILE__);
+
+if (((!isPostRequestElementSet('t_wait')) || (!isPostRequestElementSet('payment'))) && (isGetRequestElementSet('do')) && (getRequestElement('do') == 'add')) {
+ unsetPostRequestElement('ok');
+} // END - if
+
+// Init SQL array
+initSqls();
+
+if (isFormSent()) {
+ switch (getRequestElement('do')) {
+ case 'add':
+ if (countSumTotalData(postRequestElement('t_wait'), 'payments', 'id', 'time', TRUE) == 0) {
+ addSql("INSERT INTO
+ `{?_MYSQL_PREFIX?}_payments`
+(
+ `time`,
+ `payment`,
+ `mail_title`,
+ `price`
+) VALUES (
+ '" . postRequestElement('t_wait') . "',
+ '" . postRequestElement('payment') . "',
+ '" . postRequestElement('title') . "',
+ '" . postRequestElement('price') . "'
+)");
+ } // END - if
+ break;
+
+ case 'edit':
+ foreach (postRequestElement('time') as $id => $value) {
+ // Secure id
+ $id = bigintval($id);
+
+ // Add UPDATE
+ addSql("UPDATE
+ `{?_MYSQL_PREFIX?}_payments`
+SET
+ `time`='" . $value . "',
+ `payment`='" . postRequestElement('payment', $id) . "',
+ `price`='" . postRequestElement('price', $id) . "',
+ `mail_title`='" . postRequestElement('mail_title', $id) . "'
+WHERE
+ `id`='" . $id . "'
+LIMIT 1");
+ } // END - foreach
+ break;
+
+ case 'delete':
+ foreach (postRequestElement('id') as $id => $value) {
+ // Secure id
+ $id = bigintval($id);
+
+ // Add DELETE
+ addSql("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_payments` WHERE `id`=" . $id . " LIMIT 1");
+ } // END - foreach
+ break;
+ } // END - switch
+
+ // Nothing has changed by default
+ $content = '<span class="bad">{--SETTINGS_NOT_SAVED--}</span>';