"test"]; if ((isset($_REQUEST["prijava"]) && (empty($_SERVER["PHP_AUTH_USER"]) || $auth[$_SERVER['PHP_AUTH_USER']] != $_SERVER['PHP_AUTH_PW'])) || (isset($_SERVER['PHP_AUTH_USER']) && $auth[$_SERVER['PHP_AUTH_USER']] != $_SERVER['PHP_AUTH_PW'])) { header("WWW-Authenticate: Basic realm=inventar"); header("HTTP/1.0 401 Neprijavljen"); die("401"); } ?>

" />

prijava"; else echo ""; require_once "h.php"; $passed = []; if (!empty($_POST["izbriši"])) $db->exec("delete from stvari where lastnik = '{$_SERVER["PHP_AUTH_USER"]}' and id = '{$_POST["id"]}'"); if (!empty($_POST["dodaj"]) && !empty($_SERVER["PHP_AUTH_USER"])) $db->exec("insert into stvari (lastnik) values ('{$_SERVER["PHP_AUTH_USER"]}')"); foreach ($_POST as $k => $v) if (is_numeric($k)) { foreach ($_POST as $k2 => $v2) { $sp = strpos($k2, $k); if ($sp) { $passed[] = substr($k2, 0, $sp); } } $par = []; foreach ($passed as $p) { if (!str_contains(strtolower($p), "id")) $par[] = "'" . SQLite3::escapeString($p) . "' = '" . SQLite3::escapeString($_POST[$p . $k]) . "'"; } $s = "update stvari set " . implode(", ", $par) . " where lastnik='{$_SERVER["PHP_AUTH_USER"]}' and id={$k}"; $db->exec($s); } if (!empty($_REQUEST["q"])) $ret = $ro->query("select * from stvari where " . $_REQUEST["q"]); else $ret = $ro->query("select * from stvari"); $i = 0; foreach ($ret as $row) { if ($i == 0) foreach ($row as $k => $v) if ($k != "id" && !is_numeric($k)) echo ""; echo ""; foreach ($row as $k => $v) { if ($k == "id" || is_numeric($k)) continue; echo ""; } $last = true; if ($row["lastnik"] == $_SERVER['PHP_AUTH_USER'] && $k != "lastnik") { echo ""; $last = false; } else if ($last && $k != "slika") echo "$v"; } echo ""; $i++; }

$k
"; $ok = false; foreach (["input", "name"] as $w) if (!str_contains(strtolower($v), $w)) $ok = true; if ($k == "slika" && !empty($v)) echo ""; if ($k == "lastnik" && $v == $_SERVER['PHP_AUTH_USER']) { echo ""; echo ""; echo "