From 0b605746f80942fe0560369ea097283cf0ca05d1 Mon Sep 17 00:00:00 2001
From: R40fendt <r40test311@gmail.com>
Date: Mon, 5 Jan 2026 21:46:00 +0100
Subject: [PATCH] =?UTF-8?q?Event=20Backend=20f=C3=BCr=20das=20AdminPanel?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 admin/events/createEvent.php   | 15 +++++++++++
 admin/events/deleteEvent.php   | 18 +++++++++++++
 admin/events/editEvent.php     | 48 ++++++++++++++++++++++++++++++++++
 admin/formulare/updateForm.php |  1 -
 hits.txt                       |  2 +-
 5 files changed, 82 insertions(+), 2 deletions(-)
 create mode 100755 admin/events/createEvent.php
 create mode 100755 admin/events/deleteEvent.php
 create mode 100755 admin/events/editEvent.php

diff --git a/admin/events/createEvent.php b/admin/events/createEvent.php
new file mode 100755
index 0000000..c19e6c2
--- /dev/null
+++ b/admin/events/createEvent.php
@@ -0,0 +1,15 @@
+<?php
+include("../../../mysqlverbinden.php");
+include("../secret.php");
+include("../../vendor/autoload.php");
+
+include("../check.php");
+
+$payload=getUserInfo();
+
+$username=$payload->username;
+$id=$payload->id;
+
+mysqli_execute_query($db_id,"INSERT INTO `ritzenbergen-events` (`eventname`,`datum`,`type`,`content`,`minitext`) VALUES ('',CURDATE(),'markdown','','');");
+
+echo '{"success":true}';
diff --git a/admin/events/deleteEvent.php b/admin/events/deleteEvent.php
new file mode 100755
index 0000000..de2d298
--- /dev/null
+++ b/admin/events/deleteEvent.php
@@ -0,0 +1,18 @@
+<?php
+include("../../../mysqlverbinden.php");
+include("../secret.php");
+include("../../vendor/autoload.php");
+
+include("../check.php");
+
+$payload=getUserInfo();
+
+$username=$payload->username;
+$id=$payload->id;
+
+if(!isset($_GET["id"])) die("GET id fehlt");
+$eventid=$_GET["id"];
+
+mysqli_execute_query($db_id,"DELETE FROM `ritzenbergen-events` WHERE `id`=?;",[$eventid]);
+
+echo '{"success":true}';
diff --git a/admin/events/editEvent.php b/admin/events/editEvent.php
new file mode 100755
index 0000000..e447823
--- /dev/null
+++ b/admin/events/editEvent.php
@@ -0,0 +1,48 @@
+<?php
+include("../../../mysqlverbinden.php");
+include("../secret.php");
+include("../../vendor/autoload.php");
+
+include("../check.php");
+
+$payload=getUserInfo();
+
+$username=$payload->username;
+$id=$payload->id;
+
+$rawBody = file_get_contents('php://input');
+
+$_POSTBODY = json_decode($rawBody, true);
+
+if($_POSTBODY===null) die("Kein Body übertragen");
+
+
+if(!isset($_POSTBODY["eventname"])) die("POSTBODY eventname fehlt");
+$eventname=$_POSTBODY["eventname"];
+
+if(!isset($_POSTBODY["datum"])) die("POSTBODY datum fehlt");
+$datum=$_POSTBODY["datum"];
+
+if(!isset($_POSTBODY["type"])) die("POSTBODY type fehlt");
+$type=$_POSTBODY["type"];
+
+if(!isset($_POSTBODY["content"])) die("POSTBODY content fehlt");
+$content=$_POSTBODY["content"];
+
+if(!isset($_POSTBODY["minitext"])) die("POSTBODY minitext fehlt");
+$minitext=$_POSTBODY["minitext"];
+
+if(!isset($_POSTBODY["link"])) $link=null; 
+else $link=$_POSTBODY["link"];
+
+if(!isset($_POSTBODY["foto"])) die("POSTBODY foto fehlt");
+$foto=$_POSTBODY["foto"];
+
+if(!isset($_POSTBODY["id"])) die("POSTBODY id fehlt");
+$eventid=$_POSTBODY["id"];
+
+if(mysqli_execute_query($db_id,"SELECT COUNT(*) FROM `ritzenbergen-events` WHERE `id`=?;",[$eventid])->fetch_assoc()["COUNT(*)"]!=1) die("Dieses Event gibt es nicht");
+
+mysqli_execute_query($db_id,"UPDATE `ritzenbergen-events` SET `eventname`=?,`datum`=?,`type`=?,`content`=?,`minitext`=?, `link`=?, `foto`=? WHERE `id`=?;",[$eventname,$datum,$type,$content,$minitext,$link,$foto,$eventid]);
+
+echo '{"success":true}';
diff --git a/admin/formulare/updateForm.php b/admin/formulare/updateForm.php
index 341be7b..8627759 100755
--- a/admin/formulare/updateForm.php
+++ b/admin/formulare/updateForm.php
@@ -17,7 +17,6 @@ $data = json_decode($rawBody, true);
 if($data===null) die("Kein Body übertragen");
 
 
-var_dump($data);
 
 $formexists=mysqli_execute_query($db_id,"SELECT COUNT(*) FROM `formulare` WHERE `id`=?;",[$data["id"]])->fetch_assoc()["COUNT(*)"]==1;
 
diff --git a/hits.txt b/hits.txt
index f11c82a..9a03714 100755
--- a/hits.txt
+++ b/hits.txt
@@ -1 +1 @@
-9
\ No newline at end of file
+10
\ No newline at end of file