summaryrefslogtreecommitdiffstats
path: root/includes/admin/views/_new_venue_form.php
diff options
context:
space:
mode:
Diffstat (limited to 'includes/admin/views/_new_venue_form.php')
-rw-r--r--includes/admin/views/_new_venue_form.php18
1 files changed, 17 insertions, 1 deletions
diff --git a/includes/admin/views/_new_venue_form.php b/includes/admin/views/_new_venue_form.php
index 13d70f6..ab02bbe 100644
--- a/includes/admin/views/_new_venue_form.php
+++ b/includes/admin/views/_new_venue_form.php
@@ -15,7 +15,7 @@ if ( !class_exists( "GiglogAdmin_NewVenueForm" ) )
. '<p><strong>VENUE DETAILS</strong></p>'
. '<form method="POST" action="" class="venue">'
. ' <fieldset>'
- . wp_nonce_field( plugin_basename( __FILE__ ), 'giglog_new_venue_nonce' )
+ . wp_nonce_field( 'edit-venue', 'nonce' )
. ' <div class="field venue_name_field">'
. ' <label for="venue">Venue Name:</label>'
. ' <input type="text" id="venuename" name="venuename">'
@@ -31,5 +31,21 @@ if ( !class_exists( "GiglogAdmin_NewVenueForm" ) )
. '</form>'
. '</div>';
}
+
+ static function update() : void
+ {
+ if (!isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'edit-venue')) {
+ header("{$_SERVER['SERVER_PROTOCOL']} 403 Forbidden");
+ wp_die('CSRF validation failed.', 403);
+ }
+
+ if (empty($_POST['venuename']) || empty($_POST['venuecity'])) {
+ echo '<script language="javascript">alert("You are missing a value, venue was not created"); </script>';
+ }
+ else {
+ GiglogAdmin_Venue::create($_POST['venuename'],$_POST['venuecity']);
+ echo '<script language="javascript">alert("Yey, venue created"); </script>';
+ }
+ }
}
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-04 02:32:20 +0000