\n"; }
if (!@$_REQUEST['link']) { $errorsAndAlerts .= "Post web site or youtube link ! \n"; }
if (!@$_REQUEST['summary']) { $errorsAndAlerts .= "Post Comments/Summary! \n"; }
// turn off strict mysql error checking for: STRICT_ALL_TABLES
mysqlStrictMode(false); // disable Mysql strict errors for when a field isn't defined below (can be caused when fields are added later)
// add record
if (!@$errorsAndAlerts) {
mysql_query("INSERT INTO `{$TABLE_PREFIX}news` SET
title = '".mysql_real_escape_string( $_REQUEST['title'] )."',
link = '".mysql_real_escape_string( $_REQUEST['link'] )."',
summary = '".mysql_real_escape_string( $_REQUEST['summary'] )."',
createdDate = NOW(),
updatedDate = NOW(),
createdByUserNum = '".mysql_escape($CURRENT_USER['num'])."',
updatedByUserNum = '".mysql_escape($CURRENT_USER['num'])."'")
or die("MySQL Error Creating Record: \n". htmlspecialchars(mysql_error()) . "\n");
$recordNum = mysql_insert_id();
}
// send email user
if (!$errorsAndAlerts) {
$from = @$CURRENT_USER['email'];
$to = "patricia@thenetgirl.com";
$subject = "News submitted from {$CURRENT_USER['fullname']}";
$message = <<<__TEXT__
You've received an email:
Title:{$_REQUEST['title']}
link:{$_REQUEST['link']}
City:{$_REQUEST['summary']}
The user who sent this message had the IP address {$_SERVER['REMOTE_ADDR']}.
__TEXT__;
// send message
$mailResult = mail($to,$subject,$message,$from);
if (!$mailResult) { die("Mail Error: $php_errormsg"); }
// display thanks message and clear form
$errorsAndAlerts = "Thanks, we've added your News! Click here to continue to your profile page!";
$_REQUEST = array();
}
}
?>