Home Explore Help
Sign In
Medowar
/
psa-orderform
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 53944c08d6
Branches Tags
psa-orderform
/
admin
/
settings.php

settings.php 2.5 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182 
  1. <?php
    2. 

  2. require_once __DIR__ . "/../config.php";
    3. 

  3. require_once __DIR__ . "/../includes/functions.php";
    4. 

  4. 

  5. if (empty($_SESSION['admin_logged_in'])) {
    6. 

  6.     header("Location: login.php");
    7. 

  7.     exit();
    8. 

  8. }
    9. 

  9. 

  10. $pageTitle = "Einstellungen";
    11. 

  11. $message = "";
    12. 

  12. $messageType = "";
    13. 

  13. 

  14. if ($_SERVER['REQUEST_METHOD'] === "POST" && isset($_POST['save_settings'])) {
    15. 

  15.     // Validate CSRF token
    16. 

  16.     if (!validateCsrfToken($_POST['csrf_token'] ?? "")) {
    17. 

  17.         $message = "Ungültiges Token. Bitte versuchen Sie es erneut.";
    18. 

  18.         $messageType = "error";
    19. 

  19.     } else {
    20. 

  20.         $settings = [
    21. 

  21.             "order_recipient_email" => $_POST['order_recipient_email'] ?? "",
    22. 

  22.             "attach_order_pdf_to_admin_email" => isset(
    23. 

  23.                 $_POST['attach_order_pdf_to_admin_email'],
    24. 

  24.             ),
    25. 

  25.         ];
    26. 

  26. 

  27.         if (saveSystemSettings($settings)) {
    28. 

  28.             logAccess("Admin updated system settings");
    29. 

  29.             $message = "Einstellungen wurden gespeichert.";
    30. 

  30.             $messageType = "success";
    31. 

  31.         } else {
    32. 

  32.             $message = "Einstellungen konnten nicht gespeichert werden.";
    33. 

  33.             $messageType = "error";
    34. 

  34.         }
    35. 

  35.     }
    36. 

  36. }
    37. 

  37. 

  38. $settings = getSystemSettings();
    39. 

  39. 

  40. $bodyClass = "admin-page";
    41. 

  41. include __DIR__ . "/../includes/header.php";
    42. 

  42. ?>
    43. 

  43. 

  44. <div class="admin-header">
    45. 

  45.     <h2>Einstellungen</h2>
    46. 

  46.     <div>
    47. 

  47.         <a href="index.php" class="btn btn-secondary">Zurück zum Dashboard</a>
    48. 

  48.     </div>
    49. 

  49. </div>
    50. 

  50. 

  51. <?php if ($message !== ""): ?>
    52. 

  52.     <div class="alert alert-<?php echo escape($messageType); ?>">
    53. 

  53.         <?php echo escape($message); ?>
    54. 

  54.     </div>
    55. 

  55. <?php endif; ?>
    56. 

  56. 

  57. <div class="panel panel-lg">
    58. 

  58.     <form method="POST">
    59. 

  59.         <?php echo csrfField(); ?>
    60. 

  60.         <div class="form-group">
    61. 

  61.             <label for="order_recipient_email">Empfängeradresse für interne Bestellungen *</label>
    62. 

  62.             <input type="email" id="order_recipient_email" name="order_recipient_email" required value="<?php echo escape(
    63. 

  63.                 $settings["order_recipient_email"],
    64. 

  64.             ); ?>">
    65. 

  65.         </div>
    66. 

  66. 

  67.         <div class="form-group">
    68. 

  68.             <label class="checkbox-label">
    69. 

  69.                 <input type="checkbox" name="attach_order_pdf_to_admin_email" value="1" <?php echo !empty(
    70. 

  70.                     $settings["attach_order_pdf_to_admin_email"]
    71. 

  71.                 )
    72. 

  72.                     ? "checked"
    73. 

  73.                     : ""; ?>>
    74. 

  74.                 PDF an interne Bestell-E-Mails anhängen
    75. 

  75.             </label>
    76. 

  76.         </div>
    77. 

  77. 

  78.         <button type="submit" name="save_settings" class="btn">Speichern</button>
    79. 

  79.     </form>
    80. 

  80. </div>
    81. 

  81. 

  82. <?php include __DIR__ . "/../includes/footer.php"; ?>
    83.