host = $host; $this->username = $username; $this->password = $password; $this->table = $db; $this->connect(); } /** deletes all the comments in the blog database for the suppled id */ public function delete_thread($id){ $q = "DELETE FROM blog WHERE id = '$report'"; return mysql_query($q); } /** Display all comment entrys for the specified report */ public function get_blog() { /* Instantiate class */ require_once("pager.php"); $p = new Pager; /* Show many results per page? */ $limit = 5; /* Find the start depending on $_GET['page'] (declared if it's null) */ $start = $p->findStart($limit); /* Find the number of rows returned from a query; Note: Do NOT use a LIMIT clause in this query */ $count = mysql_num_rows(mysql_query("SELECT * FROM blog")); /* Find the number of pages based on $count and $limit */ $pages = $p->findPages($count, $limit); /* Now we use the LIMIT clause to grab a range of rows */ $r = mysql_query("SELECT * FROM blog ORDER BY id DESC LIMIT ".$start.", ".$limit); /* Now get the page list and echo it */ $pagelist = $p->pageList($_GET['page'], $pages); if ( $r !== false && mysql_num_rows($r) > 0 ) { while ( $a = mysql_fetch_assoc($r) ) { $title = stripslashes($a['title']); $bodytext = stripslashes($a['bodytext']); $username = $a['name']; $gravatar = 'http://www.gravatar.com/avatar/' . $a['email'] . '?s=48'; $date = $a['created']; $entry_display .= << $username : $title

$bodytext

Posted: $date


ENTRY_DISPLAY; } $entry_display .= '
'.$pagelist.'
'; } else { $entry_display .= << No entries have been made on this page.

ENTRY_DISPLAY; } /* $entry_display .= << Add a New Entry

ADMIN_OPTION; */ return $entry_display; } /* This function will be used to display the new comment entry form */ public function display_post() { return << New Blog Entry


ADMIN_FORM; } public function write($p) { if ( $p['title'] ) $title = mysql_real_escape_string(strip_tags($_POST['title'])); if ( $p['bodytext']) $bodytext = mysql_real_escape_string(strip_tags($_POST['bodytext'])); $name = $_SESSION['username']; $email = $_SESSION['email']; if ( $title && $bodytext ) { $created = date("g:iA M d, Y"); $sql = "INSERT INTO blog (title, bodytext, created, name, email)VALUES('$title','$bodytext','$created','$name', '$email' )"; return mysql_query($sql) or die("Could not select database. " . mysql_error()); } else { return false; } } /** This function connects to the database */ public function connect() { mysql_connect($this->host,$this->username,$this->password) or die("Could not connect. " . mysql_error()); mysql_select_db($this->table) or die("Could not select database. " . mysql_error()); return $this->buildDB(); } private function buildDB() { $sql = <<