db = $db;
}//end function init
function deleteList($listname){
$deletestatement = "
DELETE FROM
`choices`
WHERE
`listname` = '".mysql_real_escape_string($listname)."' ";
$queryresult=$this->db->query($querystatement);
echo "ok";
}//end function deleteList
function addToList($listname, $value){
$insertstatement = "
INSERT INTO
`choices`(
`listname`,
`choices`
) VALUES (
'".mysql_real_escape_string($listname)."',
'".mysql_real_escape_string($value)."'
)";
$this->db->query($insertstatement);
echo "ok";
}//end function addToList
function displayList($queryresult, $blankvalue){
while($therecord = $this->db->fetchArray($queryresult)){
$display = $therecord["thevalue"];
$theclass = "";
if($therecord["thevalue"]==""){
$display = "<".$blankvalue.">";
$theclass = ' class="choiceListBlank" ';
}
?>","",$blankvalue);
$querystatement = "
SELECT
thevalue
FROM
choices
WHERE
listname='".mysql_real_escape_string($listname)."'
ORDER BY
thevalue";
$queryresult = $this->db->query($querystatement);
?>
displayBox($_GET["ln"],$_GET["bv"],$_GET["lid"]);
break;
case "del":
if(!isset($_GET["ln"]))
$error = new appError(200, "passed parameters not set");
$thelist->deleteList($_GET["ln"]);
break;
case "add":
if(!isset($_GET["ln"]) || !isset($_GET["val"]))
$error = new appError(200, "passed parameters not set");
$thelist->addToList($_GET["ln"], $_GET["val"]);
break;
}//endswitch
}//endif
?>