trojans-trophy-room/admin/index.php

<?php 
session_start();
?>

<!DOCTYPE html>

<html>
    <head>
        <meta charset="UTF-8" />
        <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />
        <link rel="stylesheet" href="../styles/primary.css" />
        <link rel="stylesheet" href="../styles/admin.css" />
        <script src="../scripts/trojan.js"></script>
        <title>ADMIN PANEL - Trojan's Trophy Room</title>
    </head>

    <body id="body">
    <script>getURL();</script>
        <div id="contentFrame">
            <h1>Trojan's Trophy Room</h1>
            <h2 id="adminHeader">ADMIN PANEL</h2>

            <?php
            /*   This little bit of code is going to check whether or not we have
               at least one "safe admin" user - this is someone who isn't gonna be 
               deleted by the (re)initialization script, a 'master administrator' 
               for the program if you like.
            */

            include ("db_config.php");
            
            try {  // Try opening the SQL database connection
                $conn = new PDO("mysql:host=$servername; dbname=$dbName", $username, $password);
                // set the PDO error mode to exception
                $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
            } catch (PDOException $e) { // failed connection
                echo "SQL connection failed: " . $e->getMessage();
            }

            // Check if the admin table exists
            $sqlCheckAdminTable = $conn->prepare("SHOW TABLES LIKE '" . $adminUserTableName . "'");
          
            // Run the query
            $sqlCheckAdminTable->execute();
          
            //Check if any rows exist
            $count = $sqlCheckAdminTable->rowCount();

            
            /* This if-statement controls the display of the admin page
            //  First we check if there's actually gonna be an admin user
            //   - we do this by checking the safe-admin database, because
            //     if there's at least one user there, they would have been
            //     copied into the primary user database upon initialization
            //
            //  Then we check if the person is logged in or not - if not,
            //    we re-direct them to the login page, where we'll be 
            //    brought back after logging in
            //
            //  We are also checking if the person is an admin user -
            //    if they are NOT, then we show the 'not_admin' page, 
            //    telling the user they're not allowed to view the content
            */

            if ($count == 0) { // If no safe admins are found, we'll force creation of one
                echo "<iframe src=\"user_management/create_safe_admin.php\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";
            } else { // Otherwise we'll show the nav page
                if (!isset($_SESSION["userID"])){
                    echo "<iframe src=\"../login_page.php?redirect=admin\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";
                } else if (isset($_SESSION["userID"]) && $_SESSION["isAdmin"] == 1) {
                    echo "<iframe src=\"admin_nav.php\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";
                } else {
                    echo "<iframe src=\"not_admin.php\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";
                }
            }
            ?>

            
            <div class="subNav">
                <?php
                if (isset($_SESSION["isAdmin"]) && $_SESSION["isAdmin"] == 1) {
                    echo "<a href=\"./\" class=\"subNavLink\" id=\"adminHomeButton\">ADMIN HOME</a>";
                }
                ?>
                <a href="../" class="subNavLink" id="mainHomeButton">MAIN HOME</a>
                <p class="newLine"></p>
                <?php 
                if (isset($_SESSION["userID"])){
                    echo "<a href=\"../logout.php?redirect=admin\" class=\"subNavLink\" id=\"loginButton\">LOGOUT</a>";
                }
                ?>
            </div>
        </div>
    </body>
</html>
Login finally works So does logout 2025-03-01 16:02:45 -05:00			`<?php`
			`session_start();`
			`?>`

BIG UPDATE - Added admin panel - Added user creation form - Now connects to SQL - Added option for DB (re)initialization - Capable of writing user form to SQL 2025-03-01 07:43:59 -05:00			`<!DOCTYPE html>`

			`<html>`
			`<head>`
			`<meta charset="UTF-8" />`
			`<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />`
Login finally works So does logout 2025-03-01 16:02:45 -05:00			`<link rel="stylesheet" href="../styles/primary.css" />`
BIG UPDATE - Added admin panel - Added user creation form - Now connects to SQL - Added option for DB (re)initialization - Capable of writing user form to SQL 2025-03-01 07:43:59 -05:00			`<link rel="stylesheet" href="../styles/admin.css" />`
			`<script src="../scripts/trojan.js"></script>`
			`<title>ADMIN PANEL - Trojan's Trophy Room</title>`
			`</head>`

			`<body id="body">`
Login finally works So does logout 2025-03-01 16:02:45 -05:00			`<script>getURL();</script>`
BIG UPDATE - Added admin panel - Added user creation form - Now connects to SQL - Added option for DB (re)initialization - Capable of writing user form to SQL 2025-03-01 07:43:59 -05:00			`<div id="contentFrame">`
			`<h1>Trojan's Trophy Room</h1>`
			`<h2 id="adminHeader">ADMIN PANEL</h2>`
- Added 'safe' admins; these accounts will persist across database resets 2025-03-01 09:58:27 -05:00
			`<?php`
			`/* This little bit of code is going to check whether or not we have`
			`at least one "safe admin" user - this is someone who isn't gonna be`
			`deleted by the (re)initialization script, a 'master administrator'`
			`for the program if you like.`
			`*/`

			`include ("db_config.php");`

			`try { // Try opening the SQL database connection`
			`$conn = new PDO("mysql:host=$servername; dbname=$dbName", $username, $password);`
			`// set the PDO error mode to exception`
			`$conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);`
			`} catch (PDOException $e) { // failed connection`
			`echo "SQL connection failed: " . $e->getMessage();`
			`}`

			`// Check if the admin table exists`
			`$sqlCheckAdminTable = $conn->prepare("SHOW TABLES LIKE '" . $adminUserTableName . "'");`

			`// Run the query`
			`$sqlCheckAdminTable->execute();`

			`//Check if any rows exist`
			`$count = $sqlCheckAdminTable->rowCount();`

THE BIG "I need to commit more" UPDATE! - Can now create users - Can now create tournaments - Has (temporary) link to giveaway - Removed dev_db_config that was added by mistake (the db pw has been changed!) - Tons of other little changes 2025-03-02 21:14:28 -05:00
			`/* This if-statement controls the display of the admin page`
			`// First we check if there's actually gonna be an admin user`
			`// - we do this by checking the safe-admin database, because`
			`// if there's at least one user there, they would have been`
			`// copied into the primary user database upon initialization`
			`//`
			`// Then we check if the person is logged in or not - if not,`
			`// we re-direct them to the login page, where we'll be`
			`// brought back after logging in`
			`//`
			`// We are also checking if the person is an admin user -`
			`// if they are NOT, then we show the 'not_admin' page,`
			`// telling the user they're not allowed to view the content`
			`*/`
- Added 'safe' admins; these accounts will persist across database resets 2025-03-01 09:58:27 -05:00
			`if ($count == 0) { // If no safe admins are found, we'll force creation of one`
			`echo "<iframe src=\"user_management/create_safe_admin.php\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";`
			`} else { // Otherwise we'll show the nav page`
Login finally works So does logout 2025-03-01 16:02:45 -05:00			`if (!isset($_SESSION["userID"])){`
			`echo "<iframe src=\"../login_page.php?redirect=admin\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";`
			`} else if (isset($_SESSION["userID"]) && $_SESSION["isAdmin"] == 1) {`
			`echo "<iframe src=\"admin_nav.php\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";`
			`} else {`
Added warning to logged in user without admin permissions trying to view admin options 2025-03-01 16:26:23 -05:00			`echo "<iframe src=\"not_admin.php\" name=\"dataFrame\" class=\"dataFrame\" id=\"dataFrame\" onload=\"resizeIframe(this);\"></iframe>";`
Login finally works So does logout 2025-03-01 16:02:45 -05:00			`}`
- Added 'safe' admins; these accounts will persist across database resets 2025-03-01 09:58:27 -05:00			`}`
			`?>`


THE BIG "I need to commit more" UPDATE! - Can now create users - Can now create tournaments - Has (temporary) link to giveaway - Removed dev_db_config that was added by mistake (the db pw has been changed!) - Tons of other little changes 2025-03-02 21:14:28 -05:00			`<div class="subNav">`
Added warning to logged in user without admin permissions trying to view admin options 2025-03-01 16:26:23 -05:00			`<?php`
			`if (isset($_SESSION["isAdmin"]) && $_SESSION["isAdmin"] == 1) {`
THE BIG "I need to commit more" UPDATE! - Can now create users - Can now create tournaments - Has (temporary) link to giveaway - Removed dev_db_config that was added by mistake (the db pw has been changed!) - Tons of other little changes 2025-03-02 21:14:28 -05:00			`echo "<a href=\"./\" class=\"subNavLink\" id=\"adminHomeButton\">ADMIN HOME</a>";`
Added warning to logged in user without admin permissions trying to view admin options 2025-03-01 16:26:23 -05:00			`}`
			`?>`
THE BIG "I need to commit more" UPDATE! - Can now create users - Can now create tournaments - Has (temporary) link to giveaway - Removed dev_db_config that was added by mistake (the db pw has been changed!) - Tons of other little changes 2025-03-02 21:14:28 -05:00			`<a href="../" class="subNavLink" id="mainHomeButton">MAIN HOME</a>`
Login finally works So does logout 2025-03-01 16:02:45 -05:00			`<p class="newLine"></p>`
			`<?php`
			`if (isset($_SESSION["userID"])){`
THE BIG "I need to commit more" UPDATE! - Can now create users - Can now create tournaments - Has (temporary) link to giveaway - Removed dev_db_config that was added by mistake (the db pw has been changed!) - Tons of other little changes 2025-03-02 21:14:28 -05:00			`echo "<a href=\"../logout.php?redirect=admin\" class=\"subNavLink\" id=\"loginButton\">LOGOUT</a>";`
Login finally works So does logout 2025-03-01 16:02:45 -05:00			`}`
			`?>`
BIG UPDATE - Added admin panel - Added user creation form - Now connects to SQL - Added option for DB (re)initialization - Capable of writing user form to SQL 2025-03-01 07:43:59 -05:00			`</div>`
			`</div>`
			`</body>`
			`</html>`