<?php
session_start();
include('pdo.php');
require_once 'tools/HTMLPurifier.standalone.php';
$editFlag = $_POST['editFlag'] ?? false;
$contentID = $_POST['id'] ?? false;
$userContent = $_POST['userContent'] ?? false;
$section = 1;
$config = HTMLPurifier_Config::createDefault();
$purifier = new HTMLPurifier($config);
$clean_html = $purifier->purify($userContent);
if ($editFlag != "1"){
$stmt = $db->prepare("INSERT INTO userContent (section, author, content) VALUES (:section, :author, :content)");
$stmt->execute(['section' => $section, 'author' => $author, 'content' => $content]);
} else {
$stmt = $db->prepare("UPDATE userContent SET section=:section, author=:author, content=:content WHERE id=:contentID");
$stmt->execute(['section' => $section, 'author' => $author, 'content' => $content, 'contentID' => $contentID]);
}
?>
preferences:
51.15 ms | 402 KiB | 5 Q