-if (isset($_POST['ok']))
-{
- $SQL = array();
- switch ($_GET['do'])
- {
- case "add":
- $SQL[] = "INSERT INTO "._MYSQL_PREFIX."_payments (time, payment, mail_title, price) VALUES ('".$_POST['t_wait']."','".$_POST['payment']."','".$_POST['title']."','".$_POST['price']."')";
- $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_payments WHERE time='%s' LIMIT 1",
- array($_POST['t_wait']), __FILE__, __LINE__);
- if (SQL_NUMROWS($result) == 1)
- {
- // Free memory
- $SQL[0] = "";
- SQL_FREERESULT($result);
- }
- break;
-
- case "edit":
- foreach ($_POST['time'] as $id => $value)
- {
- $SQL[] = "UPDATE "._MYSQL_PREFIX."_payments SET time='".$value."', payment='".$_POST['pay'][$id]."', price='".$_POST['price'][$id]."', mail_title='".$_POST['title'][$id]."' WHERE id='".$id."' LIMIT 1";
- }
- break;
-
- case "del":
- foreach ($_POST['id'] as $id => $value)
- {
- $SQL[] = "DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_payments WHERE id='".$id."' LIMIT 1";
- }
- break;
- }
- // Daten abspeichern
- if ((count($SQL) > 0) || (!empty($SQL[0])))
- {
- foreach ($SQL as $s)
- {
- if (!empty($s))
- {
- // Only run non-empty strings
- $result = SQL_QUERY(trim($s), __FILE__, __LINE__);
- if (empty($content))
- {
- if (SQL_AFFECTEDROWS() == 1)
- {
- $content = "<SPAN class=\"admin_done\">".SETTINGS_SAVED."</SPAN>";
- }
- else
- {
- $content = "<SPAN class=\"admin_failed\">".SETTINGS_NOT_SAVED."</SPAN>";
- }
- }
- }
- }
- }
- else
- {
- $content = "<SPAN class=\"admin_failed\">".SETTINGS_NOT_SAVED."</SPAN>";
- }
- LOAD_TEMPLATE("admin_settings_saved", false, $content);
-}
- elseif ((isset($_POST['del'])) && (SELECTION_COUNT($_POST['sel']) > 0))
-{
+// Add description as navigation point
+addYouAreHereLink('admin', __FILE__);
+
+if (((!isPostRequestElementSet('t_wait')) || (!isPostRequestElementSet('payment'))) && (isGetRequestElementSet('do')) && (getRequestElement('do') == 'add')) {
+ unsetPostRequestElement('ok');
+} // END - if
+
+// Init SQL array
+initSqls();
+
+if (isFormSent()) {
+ switch (getRequestElement('do')) {
+ case 'add':
+ if (countSumTotalData(postRequestElement('t_wait'), 'payments', 'id', 'time', TRUE) == 0) {
+ addSql("INSERT INTO
+ `{?_MYSQL_PREFIX?}_payments`
+(
+ `time`,
+ `payment`,
+ `mail_title`,
+ `price`
+) VALUES (
+ '" . postRequestElement('t_wait') . "',
+ '" . postRequestElement('payment') . "',
+ '" . postRequestElement('title') . "',
+ '" . postRequestElement('price') . "'
+)");
+ } // END - if
+ break;
+
+ case 'edit':
+ foreach (postRequestElement('time') as $id => $value) {
+ // Secure id
+ $id = bigintval($id);
+
+ // Add UPDATE
+ addSql("UPDATE
+ `{?_MYSQL_PREFIX?}_payments`
+SET
+ `time`='" . $value . "',
+ `payment`='" . postRequestElement('payment', $id) . "',
+ `price`='" . postRequestElement('price', $id) . "',
+ `mail_title`='" . postRequestElement('mail_title', $id) . "'
+WHERE
+ `id`='" . $id . "'
+LIMIT 1");
+ } // END - foreach
+ break;
+
+ case 'delete':
+ foreach (postRequestElement('id') as $id => $value) {
+ // Secure id
+ $id = bigintval($id);
+
+ // Add DELETE
+ addSql("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_payments` WHERE `id`=" . $id . " LIMIT 1");
+ } // END - foreach
+ break;
+ } // END - switch
+
+ // Nothing has changed by default
+ $content = '<span class="bad">{--SETTINGS_NOT_SAVED--}</span>';
+
+ // Save settings
+ if (countSqls() > 0) {
+ // Run all queries
+ runFilterChain('run_sqls');
+
+ // Purge cache
+ rebuildCache('payments', 'payments');
+
+ // Change message
+ $content = '<span class="good">{--SETTINGS_SAVED--}</span>';
+ } // END - if
+
+ // Output template
+ displayMessage($content);
+} elseif ((isFormSent('delete')) && (ifPostContainsSelections())) {