include "../utilities/dbparam.inc"; include "../builder/builderutilities.php3"; //DMG 11.29.06: to avoid err such as SQL11.17.06 if (!is_numeric($page)) $page=1; //DMG 10.06.06: the next two functions added to avoid any query with no ID if(!isValidID($ID)) notExistingID(); $sql = "SELECT * FROM WIZARD_MAIN WHERE ID=$ID; "; $result = db_query($sql,$conn); $record=db_fetch_array($result); if ($record == false) notExistingID(); $sql2 = "SELECT * FROM WIZARD_CONTENT WHERE WORKSHEET_ID=$ID AND PAGENUM=$page; "; $result2 = db_query($sql2,$conn); $record2=db_fetch_array($result2); $sql3="SELECT URL,LINK FROM WIZARD_LINKS WHERE WORKSHEET_ID=$ID AND PAGENUM=$page ORDER BY link_id; "; $result3 = db_query($sql3,$conn); $links=array(); $randomChar ='a'; $linksWithExtraChar=1; while ($linkrecord=db_fetch_row($result3)) { // DMG Oct4,06: added an extra char at the begining to avoid duplication in the link (key of the array) //$links += array("$linkrecord[1]"=>"$linkrecord[0]"); $links += array($randomChar++ . "$linkrecord[1]"=>"$linkrecord[0]"); } $header=stripslashes($record2['HEADER']); $subheader=stripslashes($record2['SUBHEADER']); $image=$record2['IMAGEFILE']; $imagecaption=stripslashes($record2['IMAGECAPTION']); $body=stripslashes($record2['BODY'].$record2['BODY2'].$record2['BODY3']); $title=stripslashes($record['TITLE']); $author=stripslashes($record['AUTHOR']); $email=$record['EMAIL']; $email_yesno=$record['EMAIL_YESNO']; $bodytype=$record['BODYTYPE']; $headertype=$record['HEADERTYPE']; if ($preview!="5") { $HEADER_FONTSIZE=$record['HEADER_FONTSIZE']; $SUBHEADER_FONTSIZE=$record['SUBHEADER_FONTSIZE']; $BODY_FONTSIZE=$record['BODY_FONTSIZE']; $LINKS_FONTSIZE=$record['LINKS_FONTSIZE']; } if ($preview=="4") { $bodytype=$BODYTYPE; $headertype=$HEADERTYPE; } $record2=$record; //Preview with font color changes if ($preview=="5") { // echo "$SUBHEADER_FONTSIZE"; $record2=array("BODY_FONTSIZE"=>"$BODY_FONTSIZE", "BODY_FONTTYPE"=>"$BODY_FONTTYPE", "HEADER_FONTSIZE"=>"$HEADER_FONTSIZE", "HEADER_FONTTYPE"=>"$HEADER_FONTTYPE", "SUBHEADER_FONTSIZE"=>"$SUBHEADER_FONTSIZE", "SUBHEADER_FONTTYPE"=>"$SUBHEADER_FONTTYPE", "LINKS_FONTSIZE"=>"$LINKS_FONTSIZE", "LINKS_FONTTYPE"=>"$LINKS_FONTTYPE", "BGCOLOR"=>"$BGCOLOR", "TEXTCOLOR"=>"$TEXTCOLOR", "LINKCOLOR"=>"$LINKCOLOR", "VISITEDCOLOR"=>"$VISITEDCOLOR"); } html_header($title,$record2); if ($headertype==1) header1($header,$subheader,$image,$imagecaption,$HEADER_FONTSIZE,$SUBHEADER_FONTSIZE,$record2); else if ($headertype==2) header2($header,$subheader,$image,$imagecaption,$HEADER_FONTSIZE,$SUBHEADER_FONTSIZE,$record2); else header3($header,$subheader,$image,$imagecaption,$HEADER_FONTSIZE,$SUBHEADER_FONTSIZE,$record2); if ($bodytype==1) body1($links,$body,$BODY_FONTSIZE,$LINKS_FONTSIZE,$record2,$linksWithExtraChar); else if ($bodytype==2) body2($links,$body,$BODY_FONTSIZE,$LINKS_FONTSIZE,$record2,$linksWithExtraChar); else body3($links,$body,$BODY_FONTSIZE,$LINKS_FONTSIZE,$record2,$linksWithExtraChar); pagelinks($conn,$ID,$page,"preview.php3"); html_footer($email,$email_yesno,$author,$ID,$BODY_FONTSIZE); function isValidID($ID) { if(empty($ID) || !is_numeric($ID)) return false; return true; } function notExistingID() { ?>