73 lines
1.9 KiB
PHP
73 lines
1.9 KiB
PHP
<?php
|
|
session_start();
|
|
require '../includes/db.php';
|
|
|
|
if (!isset($_SESSION['user_id'])) {
|
|
header('Location: login.php');
|
|
exit;
|
|
}
|
|
|
|
$message = '';
|
|
$article = null;
|
|
|
|
if (isset($_GET['id']) && is_numeric($_GET['id'])) {
|
|
$id = $_GET['id'];
|
|
|
|
$sql = "SELECT * FROM articles WHERE id = :id";
|
|
$stmt = $pdo->prepare($sql);
|
|
$stmt->bindParam(':id', $id, PDO::PARAM_INT);
|
|
$stmt->execute();
|
|
$article = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
|
|
if (!$article) {
|
|
die("Article introuvable.");
|
|
}
|
|
}
|
|
|
|
if (isset($_POST['titre']) && isset($_POST['contenu'])) {
|
|
$titre = $_POST['titre'];
|
|
$contenu = $_POST['contenu'];
|
|
|
|
$sql = "UPDATE articles SET titre = :titre, contenu = :contenu WHERE id = :id";
|
|
$stmt = $pdo->prepare($sql);
|
|
$stmt->bindParam(':titre', $titre);
|
|
$stmt->bindParam(':contenu', $contenu);
|
|
$stmt->bindParam(':id', $id, PDO::PARAM_INT);
|
|
|
|
if ($stmt->execute()) {
|
|
$message = "Article modifié avec succès !";
|
|
$stmt = $pdo->prepare("SELECT * FROM articles WHERE id = :id");
|
|
$stmt->bindParam(':id', $id, PDO::PARAM_INT);
|
|
$stmt->execute();
|
|
$article = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
} else {
|
|
$message = "Erreur lors de la modification.";
|
|
}
|
|
}
|
|
|
|
require '../includes/header.php';
|
|
?>
|
|
|
|
<main>
|
|
<h2>Modifier un article</h2>
|
|
|
|
<?php if($message) echo '<p>'.$message.'</p>'; ?>
|
|
|
|
<?php if($article): ?>
|
|
<form method="POST">
|
|
<label>Titre :</label><br>
|
|
<input type="text" name="titre" value="<?= htmlspecialchars($article['titre']) ?>" required><br><br>
|
|
|
|
<label>Contenu :</label><br>
|
|
<textarea name="contenu" rows="10" cols="50" required><?= htmlspecialchars($article['contenu']) ?></textarea><br><br>
|
|
|
|
<button type="submit">Modifier</button>
|
|
</form>
|
|
<?php else: ?>
|
|
<p>Aucun article sélectionné.</p>
|
|
<?php endif; ?>
|
|
</main>
|
|
|
|
<?php
|
|
require '../includes/footer.php';
|
|
?>
|