-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathupdate_profile.php
More file actions
93 lines (76 loc) · 3.5 KB
/
update_profile.php
File metadata and controls
93 lines (76 loc) · 3.5 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
<?php
require_once 'init.php';
if (!isLogged() || !isset($_POST['name'])) {
redirect('index.php');
}
$query = "SELECT * FROM `services`";
$stmt = $GLOBALS['pdo']->prepare($query);
$stmt->execute();
$services = $stmt->fetchAll();
if (isset($_POST['name']) || isset($_POST['email'])) {
foreach ($services as $key => $service) {
$serv = str_replace(' ', '_', $service['service']);
if (isset(filter_input_array(INPUT_POST)[$serv])) {
$query = "SELECT * FROM `users_has_services` WHERE `user_id` = ? AND `service_id` = ?";
$stmt = $GLOBALS['pdo']->prepare($query);
$stmt->execute([$_SESSION['user']['id'], $service['id']]);
$rows = $stmt->rowCount();
if ($rows === 0) {
$query = "INSERT INTO `users_has_services` (`user_id`, `service_id`) VALUES (?, ?)";
$stmt = $GLOBALS['pdo']->prepare($query);
$stmt->execute([$_SESSION['user']['id'], $service['id']]);
}
} else if (!isset(filter_input_array(INPUT_POST)[$serv])) {
$query = "DELETE FROM `users_has_services` WHERE `user_id` = ? AND `service_id` = ?";
$stmt = $GLOBALS['pdo']->prepare($query);
$stmt->execute([$_SESSION['user']['id'], $service['id']]);
}
}
$data = [];
$data[] = addslashes(trim($_POST['name']));
$data[] = addslashes(trim($_POST['cpf_cnpj']));
$data[] = addslashes(trim($_POST['email']));
$data[] = addslashes(trim($_POST['phone']));
$data[] = addslashes(trim($_POST['address']));
$data[] = addslashes(trim($_POST['address_number']));
$data[] = addslashes(trim($_POST['address_complement']));
$data[] = addslashes(trim($_POST['neighborhood']));
$data[] = addslashes(trim($_POST['city']));
$data[] = addslashes(trim($_POST['state']));
$data[] = addslashes(trim($_POST['cep']));
$data[] = addslashes(trim($_POST['user_id']));
$query = "UPDATE `users` SET `name` = ?, `cpf_cnpj` = ?, `email` = ?, `phone` = ?, `address` = ?, `address_number` = ?, `address_complement` = ?, `neighborhood` = ?, `city` = ?, `state` = ?, `postal_code` = ? WHERE `id` = ?";
$stmt = $GLOBALS['pdo']->prepare($query);
$stmt->execute($data);
}
if (isset($_POST['about'])) {
$about = addslashes(trim($_POST['about']));
$query = "UPDATE `users` SET `description` = ? WHERE `id` = ?";
$stmt = $GLOBALS['pdo']->prepare($query);
$stmt->execute([$about, $_SESSION['user']['id']]);
}
if (isset($_POST['insta'])) {
$phone = addslashes(trim($_POST['phone']));
$insta = addslashes(trim($_POST['insta']));
$twitter = addslashes(trim($_POST['twitter']));
$instaAndTwitter = $insta . ";" . $twitter;
$queryUpdate = "UPDATE `users` SET `phone` = ? WHERE `id` = ?";
$stmt = $GLOBALS['pdo']->prepare($queryUpdate);
$stmt->execute([$phone, $_SESSION['user']['id']]);
$queryVerifyIfExists = "SELECT `social_media` FROM `users` WHERE `id` = ? ";
$stmt = $GLOBALS['pdo']->prepare($queryVerifyIfExists);
$stmt->execute([$_SESSION['user']['id']]);
$data = $stmt->fetch();
$row = $stmt->rowCount();
if($row === 1){
$queryUpdate = "UPDATE `users` SET `social_media` = ? WHERE `id` = ?";
$stmt = $GLOBALS['pdo']->prepare($queryUpdate);
$stmt->execute([$instaAndTwitter, $_SESSION['user']['id']]);
}else{
$queryInsert = "INSERT INTO `users` (`social_media`) VALUES (?) WHERE `id` = ?";
$stmt = $GLOBALS['pdo']->prepare($queryInsert);
$stmt->execute([$instaAndTwitter, $_SESSION['user']['id']]);
}
}
updateLoggedUser($_SESSION['user']['id']);
redirect('profile.php');