error_reporting(E_ALL);
ini_set('display_errors', TRUE);
+include_once 'auth.inc.php';
+$Edit = isset($_GET['edit']);
+
$Args = '';
$Page = preg_replace('/\?.*/', '', $_SERVER['REQUEST_URI']);
$Page = urldecode(trim($Page, '/')) ?: 'index';
if (file_exists("$Page.php")) {
# unformatted script override
require "$Page.php";
- break;
+ exit;
}
$up = strrpos($Page, '/');
if ($up === FALSE) {
+ if ($User['admin']) {
+ $Page = 'template';
+ break;
+ }
http_response_code(404);
$Page = '404';
break;
$Page = substr($Page, 0, $up);
}
-include 'head.inc.php';
+include 'page.inc.php';