<?php
if (isset($_GET['apl'])) {
	switch ($_GET['apl']) {
		case 'del':
			if (isset($_GET['pageid'])) {
				if (preg_match("/^([0-9]*)$/i",$_GET['pageid']) && $_GET['pageid']!="") {
					$pageid=$_GET['pageid'];
					if (mysql_num_rows($sql=mysql_query("select * from menu where id=$pageid"))) {
						$line=mysql_fetch_array($sql);
						if (mysql_query("delete from menu where id=$pageid"))	echo " $line[name]($line[link])     !<br>";	
						else echo "      !<br>";
						if (rename("inc/".$line['name'],"inc/deleted/".$line['name'])) echo " $line[name]  !<br>";
						else echo "    $line[name] !<br>";
					} else echo "   !<br>";
				} else echo "<tt class=bold>   pageid !</tt>";
			} else echo "<h3 class=bold>   !</h3>";
			echo "<input type=button value='' onClick=location.href='index.php?page=code'>";
		break;
		case 'edit':
			if (isset($_POST['pageid']) && isset($_POST['oldname']) && isset($_POST['nname']) && isset($_POST['nlink']) && isset($_POST['nlvl']) && isset($_POST['ncode'])) {
				$pageid=preg_replace("/[^0-9]/i","",$_POST['pageid']);
				$nname=preg_replace("/[^a-z0-9]/i","",$_POST['nname']);
				$nlink=addslashes($_POST['nlink']);
				$nlvl=preg_replace("/[^0-9]/i","",$_POST['nlvl']);
				$filename="inc/".$_POST['oldname'];
				if (file_exists($filename) && is_writable($filename)) {
					$stream = fopen($filename, "w");
					$file = fwrite($stream, $_POST['ncode']);
					fclose($stream);
					$size=filesize($filename);
					echo "<li>  !</li>";
				} else echo "      ";
				if (mysql_query("update menu set name='$nname',link='$nlink',lvl=$nlvl,size='$size' where id=$pageid")) echo "<li>   </li>";
				else echo "<tt class=bold>     !</tt><br>";
			}	else echo "<h3 class=bold>ERROR !</h3>";
			echo "<input type=button value='' onClick=location.href='index.php?page=code'>";
		break;
		case 'new':
			if (isset($_POST['nname']) && isset($_POST['nlink']) && isset($_POST['nlvl']) && isset($_POST['ncode'])) {
				$nname=preg_replace("/[^a-z0-9]/i","",$_POST['nname']);
				$filename="inc/".$nname;
				$nlink=addslashes($_POST['nlink']);
				$nlvl=preg_replace("/[^0-9]/i","",$_POST['nlvl']);
				$stream = fopen($filename, "w");
				$file = fwrite($stream, $_POST['ncode']);
				fclose($stream);
				$size=filesize($filename);
				if (mysql_query("insert menu (name,link,edtime,lvl,size) values ('$nname','$nlink','$ctime','$nlvl','$size')")) echo "  !<br>";	
				else echo "<tt class=bold>     !</tt><br>";
			}	else echo "<h3 class=bold>ERROR !</h3>";
			echo "<input type=button value='' onClick=location.href='index.php?page=code'>";
		break;
	}
} else 
	if (isset($_GET['sform'])) {
		switch ($_GET['sform']) {
			case 'edit':
				if (isset($_GET['pageid'])) {
					if (preg_match("/^([0-9]*)$/i",$_GET['pageid']) && $_GET['pageid']!="") {
						$pageid=$_GET['pageid'];
						if (mysql_num_rows($sql=mysql_query("select * from menu where id=$pageid"))) {
							$line=mysql_fetch_array($sql);
							echo "<form action='index.php?page=edcode&apl=edit' method=POST>
							<input type=hidden name=pageid value='$line[id]'>
							<input type=hidden name=oldname value='$line[name]'>
							<table border=1 width=100%>
							<tr align=center><td align=50%>: <input type=text size=10 name=nname value='$line[name]'></td>
							<td align=50%>: <input type=text size=10 name=nlink value='$line[link]'></td>
							<td><input type=button value='' onClick=nlink.value='[HIDDEN]'></td>
							<td> <select name=nlvl>
								<option value=0";if ($line['lvl']==0) echo " selected";echo "> (0)
								<option value=1";if ($line['lvl']==1) echo " selected";echo ">- (1)
								<option value=2";if ($line['lvl']==2) echo " selected";echo "> (2)
								<option value=3";if ($line['lvl']==3) echo " selected";echo "> (3)
								<option value=4";if ($line['lvl']==4) echo " selected";echo ">Root (4)
							</select></td></tr>
							<tr align=center><td colspan=4><textarea name=ncode rows=25 cols=70>";
							$filename="inc/".$line['name'];
							if (file_exists($filename) && is_readable($filename))
							if (filesize($filename)>0) {
								$stream = fopen($filename, "r");
								$file = fread($stream, filesize($filename));
								fclose($stream);
							} else $file='    ';
							echo htmlspecialchars($file),"</textarea></td></tr>
							<tr align=center><td colspan=4><input type=submit value=''>&nbsp;<input type=button value='' onClick=location.href='index.php?page=code'></td></tr>
							</table></form>";
						} else echo "<tt class=bold>   !</tt>";
					} else echo "<tt class=bold>   pageid !</tt>";
				} else echo "<h3 class=bold>   !</h3>";
			break;
			case 'new':
				echo "<form action='index.php?page=edcode&apl=new' method=POST>
				<table border=1 width=100%>
				<tr align=center><td align=50%>: <input type=text size=10 name=nname></td>
				<td align=50%>: <input type=text size=10 name=nlink></td>
				<td><input type=button value='' onClick=nlink.value='[HIDDEN]'></td>
				<td>: <select name=nlvl>
					<option value=0> (0)
					<option value=1>- (1)
					<option value=2> (2)
					<option value=3> (3)
					<option value=4>Root (4)
				</select></td></tr>
				<tr align=center><td colspan=4><textarea name=ncode rows=25 cols=70></textarea></td></tr>
				<tr align=center><td colspan=4><input type=submit value=''></td></tr>
				</table></form>";
			break;
		}
	}