-
Notifications
You must be signed in to change notification settings - Fork 4
Expand file tree
/
Copy pathDeleteCinema.php
More file actions
129 lines (99 loc) · 2.64 KB
/
DeleteCinema.php
File metadata and controls
129 lines (99 loc) · 2.64 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
<?php
/*|-------------------------------------------------------------------------
*| CMPS 460 Spring 2015
*| Ryan Adair
*| 4/28/15
*|
*| The following code is the work of the author named above.
*|-----------------------------------------------------------------------
*| This script generates a webpage with the appropriate fields
*| displayed to allow an admin to delete a cinema from the
*| Cinema table in the database.
*|-----------------------------------------------------------------------*/
include "login.php";
if(isset($_SESSION["userType"]) == false)
{
echo "Not logged in!";
echo '<br><br>';
echo '<a href ="LoginPage.php">Go Log In</a>';
die();
}
?>
<html>
<head>
<title>
Delete a Cinema
</title>
</head>
<h3>
Delete a Cinema
</h3>
<body>
<?php
$sessionUser = $_SESSION['userType'];
// restrict access only to certain userTypes
if($sessionUser != "admin")
{
echo 'Not logged in as an admin!';
echo '<br><br>';
echo '<a href ="LoginPage.php">Go Log In</a>';
die();
}
echo "Logged in as: $sessionUser";
if($sessionUser == "member")
{
echo "<br>Membership ID: " . $_SESSION['memberID'] . "<br>";
}
$date = $_SESSION["today"];
echo "<br>";
echo "Today's date: $date";
?>
<br>
<br>
<?php
if(isset($_POST['cinemaToDelete']))
{
$cinemaID = $_POST['cinemaToDelete'];
$deleteCinemaQuery = "delete from Cinema where ID=$cinemaID;";
if(mysql_query($deleteCinemaQuery) or die(mysql_error()))
{
echo "Cinema $cinemaID successfully deleted!";
}
else
{
echo "Cinema could not be deleted.";
echo '<br><a href ="DeleteCinema.php">Go Back</a>';
}
}
else
{
$cinemasExistResult = mysql_query("select * from Cinema;") or die(mysql_error());
if(mysql_num_rows($cinemasExistResult))
{
echo "<form action='DeleteCinema.php' method='post'>";
echo "Delete Cinema: ";
echo "<select name='cinemaToDelete'>";
while($cinemaRow = mysql_fetch_array($cinemasExistResult))
{
$cinemaID = $cinemaRow['ID'];
$cinemaName = $cinemaRow['Name'];
$cinemaAddress = $cinemaRow['Address'];
echo "<option value='$cinemaID'>($cinemaID) $cinemaName, $cinemaAddress</option>";
}
echo "</select>";
echo "<br><br>";
echo "<input type='submit' value='Delete Cinema'>";
echo "</form>";
}
else
{
echo "No existing cinemas.<br>";
}
}
echo "<br>";
echo "<form action ='index.php'>";
echo "<input type ='submit' value = 'Go back to index' >";
echo "</form>";
?>
</body>
</html>