<?php

//echo "Submit.php <br>";
include "$DOCUMENT_ROOT/php/db.inc";
global $db;

$FORM_FileName = "article_form.php";
$Preview_form = "preview_form.php";
$Thankyou_form = "thankyou_form.php";

extract($_POST);
if (!$ArticleID) {
	echo "No article ID!  <a href='submit.html'>Click Here</a> to continue <br>";
	exit;
}

if (!$a || $a == "Edit") {
	$sql = "SELECT * FROM Articles WHERE id = $ArticleID";
	$result = mysql_query($sql,$db);
	$MyRow = mysql_fetch_array($result);

	if ($MyRow[Status] <> "New" && $MyRow[Status] <> "Pending" && $MyRow[Status] <> "Review") {
		echo "Wrong Status: $MyRow[Status]<bR><br>";
		echo "This is not a valid Article ID, or you do not have permission to edit it. <br>";
		echo " <a href='submit.html'>Click Here</a> to continue <br>";
		exit;
	}

	//echo "Article keyword: $MyRow[Keyword] <br>";
	$a = "Update";
	$vars = array( ArticleID=>$ArticleID );
	$vars = array_merge( $vars, array( Body=>$MyRow[Body] )); 
	$vars = array_merge( $vars, array( Headline=>$MyRow[Headline] ));
	$vars = array_merge( $vars, array( Description=>$MyRow[Description] ));
	$vars = array_merge( $vars, array( Keyword=>$MyRow[Keyword] ));
	echo DisplayForm( $FORM_FileName,$vars,$a);
}
elseif ($a == "Update")
{
	
	$sql = "UPDATE Articles SET 
			Headline = '$Headline',
			Body = '$Body',
			Description = '$Description',
			Title = '$Headline',
			WHERE id=$ArticleID";
	$result = mysql_query($sql,$db);
	if (!$result) {
		echo "UPDATE failed: $sql";
		exit;
	}
	
	$sql = "SELECT * FROM Articles WHERE id = $ArticleID";
	$result = mysql_query($sql,$db);
	$MyRow = mysql_fetch_array($result);

	$Body=$MyRow[Body]; 
	$Headline=$MyRow[Headline];

	include $Preview_form;

	echo $out;
	
	

}

elseif ($a == "Submit")
{
	$sql = "UPDATE Articles SET Status = 'Review' WHERE id=$ArticleID";
	$result = mysql_query($sql,$db);
	if (!$result) {
		echo "UPDATE failed: $sql";
		exit;
	}
	include $Thankyou_form;
	echo $out;
}
else {
	echo "What is going on $a <br>";
	echo "ArticleID is $ArticleID <br>";
	echo "Description is $Description <br>";
	echo "Keyword is $Keyword <br>";

}
//$Button = "Update Article";

function DisplayForm( $FORM_FileName,$vars,$a) {

global $HTTP_COOKIE_VARS;

	global $Website;
	global $Status;

   $Keyword  = $vars[Keyword];
   $Headline  = $vars[Headline];
   $Body  = $vars[Body];
   $Description  = $vars[Description];
   $ArticleID = $vars[ArticleID];
   $Button = $vars[Button];
  
   if( $FORM_Results ) { $err_msg=$FORM_Results; }

   // Display Form to User
   include $FORM_FileName;

   return $out;
}
?>