|
Server : LiteSpeed System : Linux server51.dnsbootclub.com 4.18.0-553.62.1.lve.el8.x86_64 #1 SMP Mon Jul 21 17:50:35 UTC 2025 x86_64 User : nandedex ( 1060) PHP Version : 8.1.33 Disable Function : NONE Directory : /home/nandedex/public_html/wp-content/plugins/live-news/admin/view/ |
<?php
if ( !current_user_can(get_option( $this->shared->get('slug') . "_featured_menu_capability")) ) {
wp_die( esc_attr__( 'You do not have sufficient permissions to access this page.', 'daln' ) );
}
?>
<!-- process data -->
<?php
if( isset( $_POST['update_id'] ) or isset($_POST['form_submitted']) ){
extract($_POST);
$invalid_data_message = '';
//validation on "Title"
if( mb_strlen( trim($title) ) == 0 or mb_strlen($title) > 1000 ){
$invalid_data_message .= '<div class="error settings-error notice is-dismissible below-h2"><p>' . esc_attr__('Please enter a valid value in the "Title" field.', 'daln') . '</p></div>';
$invalid_data = true;
}
//validation on "Excerpt"
if( mb_strlen( trim($excerpt) ) == 0 or mb_strlen($excerpt) > 1000 ){
$invalid_data_message .= '<div class="error settings-error notice is-dismissible below-h2"><p>' . esc_attr__('Please enter a valid value in the "Excerpt" field.', 'daln') . '</p></div>';
$invalid_data = true;
}
//validation on "URL"
if( mb_strlen(trim($url)) > 2083 or
mb_strlen(trim($url)) > 0 and !preg_match($this->shared->url_regex, trim($url) ) ){
$invalid_data_message .= '<div class="error settings-error notice is-dismissible below-h2"><p>' . esc_attr__('Please enter a valid URL in the "URL" field.', 'daln') . '</p></div>';
$invalid_data = true;
}
}
//update ---------------------------------------------------------------
if( isset( $_POST['update_id'] ) and !isset($invalid_data) ){
//update the database
global $wpdb;
$table_name = $wpdb->prefix . $this->shared->get('slug') . "_featured_news";
$safe_sql = $wpdb->prepare("UPDATE $table_name SET
news_title = %s,
news_excerpt = %s,
url = %s,
ticker_id = %d
WHERE id = %d",
$title,
$excerpt,
$url,
$ticker,
$update_id);
$query_result = $wpdb->query( $safe_sql );
if($query_result !== false){
$process_data_message = '<div class="updated settings-error notice is-dismissible below-h2"><p>' . esc_attr__('The featured news has been successfully updated.', 'daln') . '</p></div>';
}
}else{
//add ------------------------------------------------------------------
if( isset($_POST['form_submitted']) and !isset($invalid_data) ){
//insert into the database
global $wpdb;
$table_name = $wpdb->prefix . $this->shared->get('slug') . "_featured_news";
$safe_sql = $wpdb->prepare("INSERT INTO $table_name SET
news_title = %s,
news_excerpt = %s,
url = %s,
ticker_id = %d",
$title,
$excerpt,
$url,
$ticker
);
$query_result = $wpdb->query( $safe_sql );
if($query_result !== false){
$process_data_message = '<div class="updated settings-error notice is-dismissible below-h2"><p>' . esc_attr__('The featured news has been successfully added.', 'daln') . '</p></div>';
}
}
}
//delete a featured news
if( isset( $_POST['delete_id']) ){
global $wpdb;
$delete_id = intval($_POST['delete_id'], 10);
//delete this game
$table_name = $wpdb->prefix . $this->shared->get('slug') . "_featured_news";
$safe_sql = $wpdb->prepare("DELETE FROM $table_name WHERE id = %d ", $delete_id);
$query_result = $wpdb->query( $safe_sql );
if($query_result !== false){
$process_data_message = '<div class="updated settings-error notice is-dismissible below-h2"><p>' . esc_attr__('The featured news has been successfully deleted.', 'daln') . '</p></div>';
}
}
//get the featured news data
$display_form = true;
if(isset($_GET['edit_id'])){
$edit_id = intval($_GET['edit_id'], 10);
global $wpdb;
$table_name = $wpdb->prefix . $this->shared->get('slug') . "_featured_news";
$safe_sql = $wpdb->prepare("SELECT * FROM $table_name WHERE id = %d ", $edit_id);
$featured_news_obj = $wpdb->get_row($safe_sql);
if($featured_news_obj === null){
$display_form = false;
}
}
//Get the value of the custom filter
if( isset($_GET['cf']) and $_GET['cf'] != 'all' ){
$ticker_id_in_cf = intval($_GET['cf'], 10);
}else{
$ticker_id_in_cf = false;
}
?>
<!-- output -->
<div class="wrap">
<?php if ($this->shared->get_number_of_featured_news() > 0) : ?>
<div id="daext-header-wrapper" class="daext-clearfix">
<h2><?php esc_attr_e('Live News - Featured News', 'daln'); ?></h2>
<!-- Search Form -->
<form action="admin.php" method="get" id="daext-search-form">
<input type="hidden" name="page" value="daln-featured">
<p><?php esc_attr_e('Perform your Search', 'daln'); ?></p>
<?php
if (isset($_GET['s']) and strlen(trim($_GET['s'])) > 0) {
$search_string = $_GET['s'];
} else {
$search_string = '';
}
//Custom Filter
if($ticker_id_in_cf !== false){
echo '<input type="hidden" name="cf" value="' . $ticker_id_in_cf . '">';
}
?>
<input type="text" name="s" name="s"
value="<?php echo esc_attr(stripslashes($search_string)); ?>" autocomplete="off" maxlength="255">
<input type="submit" value="">
</form>
<!-- Filter Form -->
<form method="GET" action="admin.php" id="daext-filter-form">
<input type="hidden" name="page" value="<?php echo $this->shared->get('slug'); ?>-featured">
<p><?php esc_attr_e('Filter by News Ticker', 'daln'); ?></p>
<select id="cf" name="cf" class="daext-display-none">
<option value="all" <?php if(isset($_GET['cf'])){selected( $_GET['cf'], 'all' );} ?>><?php esc_attr_e('All', 'daln'); ?></option>
<?php
global $wpdb;
$table_name = $wpdb->prefix . $this->shared->get('slug') . "_tickers";
$safe_sql = "SELECT id, name FROM $table_name ORDER BY id DESC";
$tickers_a = $wpdb->get_results($safe_sql, ARRAY_A);
foreach ($tickers_a as $key => $ticker) {
if(isset($_GET['cf'])){
echo '<option value="' . $ticker['id'] . '" ' . selected( $_GET['cf'], $ticker['id'], false ) . '>' . esc_attr(stripslashes($ticker['name'])) . '</option>';
}else{
echo '<option value="' . $ticker['id'] . '">' . esc_attr(stripslashes($ticker['name'])) . '</option>';
}
}
?>
</select>
</form>
</div>
<?php else: ?>
<div id="daext-header-wrapper" class="daext-clearfix">
<h2><?php esc_attr_e('Live News - Featured News', 'daln'); ?></h2>
</div>
<?php endif; ?>
<?php
//do not display the menu if in the 'cf' url parameter is applied a filter based on a ticker that doesn't exist
if( isset($_GET['cf']) and $_GET['cf'] != 'all' and !$this->shared->ticker_exists($_GET['cf']) ){
echo '<p>' . esc_attr__("The filter can't be applied because this news ticker doesn't exist.", 'daln') . '</p>';
return;
}
//retrieve the url parameter that should be used in the linked URLs
if(isset($_GET['cf']) and $this->shared->ticker_exists($_GET['cf'])){
$ticker_url_parameter = '&cf=' . intval($_GET['cf'], 10);
}else{
$ticker_url_parameter = '';
}
//display a message and not the menu if there are no tickers
if($this->shared->get_number_of_tickers() == 0){
echo '<p>' . esc_attr__("There are no news tickers at the moment, please create at least one news ticker with the", 'daln') . ' ' . '<a href="admin.php?page=daln-tickers">' . esc_attr__('News Tickers', 'daln') . '</a> menu.' . '</p>';
return;
}
?>
<div id="daext-menu-wrapper">
<?php if(isset($invalid_data_message)){echo $invalid_data_message;} ?>
<?php if(isset($process_data_message)){echo $process_data_message;} ?>
<!-- table -->
<?php
//custom filter
if($ticker_id_in_cf === false){
$filter = '';
}else{
global $wpdb;
$filter = $wpdb->prepare("WHERE ticker_id = %d", $ticker_id_in_cf);
}
//create the query part used to filter the results when a search is performed
if (isset($_GET['s']) and strlen(trim($_GET['s'])) > 0) {
$search_string = $_GET['s'];
global $wpdb;
if(strlen(trim($filter)) > 0){
$filter .= $wpdb->prepare(' AND (news_title LIKE %s OR news_excerpt LIKE %s OR url LIKE %s)', '%' . $search_string . '%', '%' . $search_string . '%', '%' . $search_string . '%');
}else{
$filter = $wpdb->prepare('WHERE (news_title LIKE %s OR news_excerpt LIKE %s OR url LIKE %s)', '%' . $search_string . '%', '%' . $search_string . '%', '%' . $search_string . '%');
}
}
//retrieve the total number of featured news
global $wpdb;
$table_name=$wpdb->prefix . $this->shared->get('slug') . "_featured_news";
$total_items = $wpdb->get_var( "SELECT COUNT(*) FROM $table_name $filter");
//Initialize the pagination class
require_once( $this->shared->get('dir') . '/admin/inc/class-daln-pagination.php' );
$pag = new daln_pagination();
$pag->set_total_items( $total_items );//Set the total number of items
$pag->set_record_per_page( 10 ); //Set records per page
$pag->set_target_page( "admin.php?page=" . $this->shared->get('slug') . "-featured" );//Set target page
$pag->set_current_page();//set the current page number from $_GET
?>
<!-- Query the database -->
<?php
$query_limit = $pag->query_limit();
$results = $wpdb->get_results("SELECT * FROM $table_name $filter ORDER BY id DESC $query_limit ", ARRAY_A); ?>
<?php if( count($results) > 0 ) : ?>
<div class="daext-items-container">
<!-- list of tables -->
<table class="daext-items">
<thead>
<tr>
<th>
<div><?php esc_attr_e('Title', 'daln'); ?></div>
<div class="help-icon" title="<?php esc_attr_e('The title of the featured news.', 'daln'); ?>"></div>
</th>
<th>
<div><?php esc_attr_e('Ticker', 'daln'); ?></div>
<div class="help-icon" title="<?php esc_attr_e('The news ticker associated with the featured news.', 'daln'); ?>"></div>
</th>
<th></th>
</tr>
</thead>
<tbody>
<?php foreach($results as $result) : ?>
<tr>
<td><?php echo esc_attr(stripslashes($result['news_title'])); ?></td>
<td><?php echo '<a href="admin.php?page=daln-tickers&edit_id=' . $result['ticker_id'] . '">' . esc_attr(stripslashes($this->shared->get_textual_ticker($result['ticker_id']))) . '</a>'; ?></td>
<td class="icons-container">
<a class="menu-icon edit" href="admin.php?page=<?php echo $this->shared->get('slug'); ?>-featured&edit_id=<?php echo $result['id']; ?><?php echo $ticker_url_parameter; ?>"></a>
<form method="POST" action="admin.php?page=<?php echo $this->shared->get('slug'); ?>-featured">
<input type="hidden" value="<?php echo $result['id']; ?>" name="delete_id" >
<input class="menu-icon delete" type="submit" value="">
</form>
</td>
</tr>
<?php endforeach; ?>
</tbody>
</table>
</div>
<!-- Display the pagination -->
<?php if($pag->total_items > 0) : ?>
<div class="daext-tablenav daext-clearfix">
<div class="daext-tablenav-pages">
<span class="daext-displaying-num"><?php echo $pag->total_items; ?> <?php esc_attr_e('items', 'daln'); ?></span>
<?php $pag->show(); ?>
</div>
</div>
<?php endif; ?>
<?php else : ?>
<?php
if(strlen(trim($filter)) > 0){
echo '<div class="error settings-error notice is-dismissible below-h2"><p>' . esc_attr__('There are no results that match your filter.', 'daln') . '</p></div>';
}
?>
<?php endif; ?>
<div id="featured-news-form-container">
<?php if( $display_form ) : ?>
<form method="POST" action="admin.php?page=<?php echo $this->shared->get('slug'); ?>-featured<?php echo $ticker_url_parameter; ?>" autocomplete="off">
<input type="hidden" value="1" name="form_submitted">
<?php if(isset($_GET['edit_id'])) : ?>
<!-- Edit a featured news -->
<div class="daext-form-container">
<h3 class="daext-form-title"><?php esc_attr_e('Edit Featured News', 'daln'); ?> <?php echo $featured_news_obj->id; ?></h3>
<table class="daext-form">
<input type="hidden" name="update_id" value="<?php echo $featured_news_obj->id; ?>" />
<!-- title -->
<tr valign="top">
<th scope="row"><label for="title"><?php esc_attr_e('Title', 'daln'); ?></label></th>
<td>
<input value="<?php echo esc_attr(stripslashes($featured_news_obj->news_title)); ?>" type="text" id="title" maxlength="1000" size="30" name="title" />
<div class="help-icon" title="<?php esc_attr_e('Enter the title of the featured news.', 'daln'); ?>"></div>
</td>
</tr>
<!-- excerpt -->
<tr valign="top">
<th scope="row"><label for="news-excerpt"><?php esc_attr_e('Excerpt', 'daln'); ?></label></th>
<td>
<input value="<?php echo esc_attr(stripslashes($featured_news_obj->news_excerpt)); ?>" type="text" id="news-excerpt" maxlength="1000" size="30" name="excerpt" />
<div class="help-icon" title="<?php esc_attr_e('Enter the excerpt of the featured news.', 'daln'); ?>"></div>
</td>
</tr>
<!-- URL -->
<tr valign="top">
<th scope="row"><label for="url"><?php esc_attr_e('URL', 'daln'); ?></label></th>
<td>
<input value="<?php echo esc_attr(stripslashes($featured_news_obj->url)); ?>" type="text" id="url" maxlength="2083" size="30" name="url" />
<div class="help-icon" title="<?php esc_attr_e('Enter the URL of the featured news.', 'daln'); ?>"></div>
</td>
</tr>
<!-- Ticker -->
<tr>
<th scope="row"><?php esc_attr_e('Ticker', 'daln'); ?></th>
<td>
<select id="ticker" name="ticker" class="daext-display-none">
<?php
global $wpdb;
$table_name = $wpdb->prefix . $this->shared->get('slug') . "_tickers";
$safe_sql = "SELECT id, name FROM $table_name ORDER BY id DESC";
$tickers_a = $wpdb->get_results($safe_sql, ARRAY_A);
foreach ($tickers_a as $key => $ticker) {
echo '<option value="' . $ticker['id'] . '" ' . selected($featured_news_obj->ticker_id, $ticker['id']) . '>' . esc_attr(stripslashes($ticker['name'])) . '</option>';
}
?>
</select>
<div class="help-icon" title='<?php esc_attr_e('The news ticker associated with this featured news.', 'daln'); ?>'></div>
</td>
</tr>
</table>
<!-- submit button -->
<div class="daext-form-action">
<input class="button" type="submit" value="<?php esc_attr_e('Update Featured News', 'daln'); ?>" >
</div>
<?php else : ?>
<!-- Create New featured News -->
<div class="daext-form-container">
<div class="daext-form-title"><?php esc_attr_e('Create a Featured News', 'daln'); ?></div>
<table class="daext-form">
<!-- Title -->
<tr valign="top">
<th scope="row"><label for="title"><?php esc_attr_e('Title', 'daln'); ?></label></th>
<td>
<input type="text" id="title" maxlength="1000" size="30" name="title" />
<div class="help-icon" title="<?php esc_attr_e('Enter the title of the featured news.', 'daln'); ?>"></div>
</td>
</tr>
<!-- Excerpt -->
<tr valign="top">
<th scope="row"><label for="news-excerpt"><?php esc_attr_e('Excerpt', 'daln'); ?></label></th>
<td>
<input type="text" id="news-excerpt" maxlength="1000" size="30" name="excerpt" />
<div class="help-icon" title="<?php esc_attr_e('Enter the excerpt of the featured news.', 'daln'); ?>"></div>
</td>
</tr>
<!-- URL -->
<tr valign="top">
<th scope="row"><label for="url"><?php esc_attr_e('URL', 'daln'); ?></label></th>
<td>
<input type="text" id="url" maxlength="2083" size="30" name="url" />
<div class="help-icon" title="<?php esc_attr_e('Enter the URL of the featured news.', 'daln'); ?>"></div>
</td>
</tr>
<!-- Ticker -->
<tr>
<th scope="row"><?php esc_attr_e('Ticker', 'daln'); ?></th>
<td>
<select id="ticker" name="ticker" class="daext-display-none">
<?php
global $wpdb;
$table_name = $wpdb->prefix . $this->shared->get('slug') . "_tickers";
$safe_sql = "SELECT id, name FROM $table_name ORDER BY id DESC";
$tickers_a = $wpdb->get_results($safe_sql, ARRAY_A);
if($ticker_id_in_cf === false){
foreach ($tickers_a as $key => $ticker) {
echo '<option value="' . $ticker['id'] . '">' . esc_attr(stripslashes($ticker['name'])) . '</option>';
}
}else{
foreach ($tickers_a as $key => $ticker) {
echo '<option value="' . $ticker['id'] . '" ' . selected($ticker_id_in_cf, $ticker['id'], false) . '>' . esc_attr(stripslashes($ticker['name'])) . '</option>';
}
}
?>
</select>
<div class="help-icon" title='<?php esc_attr_e('The news ticker associated with this featured news', 'daln'); ?>'></div>
</td>
</tr>
</table>
<!-- submit button -->
<div class="daext-form-action">
<input class="button" type="submit" value="<?php esc_attr_e('Add Featured News', 'daln'); ?>" >
</div>
<?php endif; ?>
</div>
</form>
<?php endif; ?>
</div>
</div>
</div>