cms/index.php at main · melhadou/cms · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
<?php

include "includes/db.php";
?>

<?php include "includes/header.php"; ?>

<!-- Navigation -->
<?php include "includes/nav.php"; ?>

<!-- Page Content -->
<div class="container">

    <div class="row">

        <!-- Blog Entries Column -->
        <div class="col-md-8">
            <?php
            // define  how much post you want to show in the front page;
            $pre_page = 5;

            if (isset($_GET['page'])) {
                $page = mysqli_real_escape_string($connection, $_GET['page']);
            } else {
                $page = '';
            }

            if ($page == '' || $page == '1') {
                $page_1 = '0';
            } else {
                $page_1 = mysqli_real_escape_string($connection, ($page * $pre_page) - $pre_page);
            }
            $query = "SELECT * FROM posts WHERE post_status = 'published'";
            $count_all_posts_querys = mysqli_query($connection, $query);
            $count = mysqli_real_escape_string($connection, mysqli_num_rows($count_all_posts_querys));
            $count = ceil($count / $pre_page);

            if (isset($_SESSION['user_role']) && $_SESSION['user_role'] == 'admin') {
                $query = "SELECT * FROM posts ORDER BY post_id DESC LIMIT $page_1,$pre_page";
            } else {
                $query = "SELECT * FROM posts WHERE post_status = 'published'  ORDER BY post_id DESC LIMIT $page_1,$pre_page";
            }
            $select_all_posts_querys = mysqli_query($connection, $query);
            if (mysqli_num_rows($select_all_posts_querys) < 1) {
                echo "<h1 class='text-center'>No Posts Yet</h1>";
            } else {

                while ($row = mysqli_fetch_assoc($select_all_posts_querys)) {
                    $post_title = mysqli_real_escape_string($connection, $row['post_title']);
                    $post_id = mysqli_real_escape_string($connection, $row['post_id']);
                    $post_author = mysqli_real_escape_string($connection, $row['post_author']);
                    $post_date = mysqli_real_escape_string($connection, $row['post_date']);
                    $post_image = mysqli_real_escape_string($connection, $row['post_image']);
                    $post_status = mysqli_real_escape_string($connection, $row['post_status']);
                    $post_content = mysqli_real_escape_string($connection, substr($row['post_content'], 0, 400));

            ?>
                    <h1 class="page-header">
                        Page Heading
                        <small>Secondary Text</small>
                    </h1>


                    <!-- First Blog Post -->


                    <h2>
                        <a href="post.php?p_id=<?php echo $post_id;
                                                ?>"><?php echo $post_title;
                                                    ?></a>
                    </h2>
                    <p class="lead">
                        <?php
                        //selecting post author from db
                        $user_id = $post_author;

                        $query = "SELECT * FROM users WHERE user_id = $post_author";
                        $select_user_query = mysqli_query($connection, $query);
                        while ($row = mysqli_fetch_assoc($select_user_query)) {

                            $post_author = mysqli_real_escape_string($connection, $row['user_firstname'] . " " . $row['user_lastname']);
                        }
                        ?>
                        by <a href="author_posts.php?p_author=<?php echo $user_id; ?>"><?php echo $post_author; ?></a>
                    </p>
                    <p><span class="glyphicon glyphicon-time"></span> Posted on <?php echo $post_date; ?></p>
                    <hr>
                    <a href="post.php?p_id=<?php echo $post_id;
                                            ?>">
                        <img class="img-responsive" src="images/<?php echo $post_image; ?>" alt="<?php echo $post_image; ?>">
                    </a>
                    <hr>
                    <p><?php echo $post_content; ?></p>
                    <a class="btn btn-primary" href="post.php?p_id=<?php echo $post_id ?>">Read More <span class="glyphicon glyphicon-chevron-right"></span></a>
            <?php
                }
            }

            ?>


        </div>

        <!-- Blog Sidebar Widgets Column -->

        <?php include "includes/sidebar.php"; ?>
    </div>
    <!-- /.row -->

    <hr>
    <ul class="pager">
        <?php

        for ($i = 1; $i <= $count; $i++) {
            if ($i == $page)
                echo "<li><a class='active_link' href='index.php?page={$i}'>{$i}</a></li>";
            else
                echo "<li><a href='index.php?page={$i}'>{$i}</a></li>";
        }

        ?>

    </ul>

    <?php include "includes/footer.php"; ?>