janis/ma
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update profile.php

Browse Source
This commit is contained in:
jakani24
2024-01-15 16:59:06 +01:00
parent f1bdaa1d7d
commit 54de205b77
1 changed files with 36 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

37
src/server/cyberhex-code/system/secure_zone/php/profile.php
View File

@@ -12,7 +12,35 @@ $username = $_SESSION['username'];
$perms = $_SESSION["perms"]; $perms = $_SESSION["perms"];
$email = $_SESSION["email"]; $email = $_SESSION["email"];
?> ?>
<?php
//update the info, if provided.
if ($_SERVER["REQUEST_METHOD"] == "POST") {
//include db pw
include "../../../config.php";
$email=htmlspecialchars($_POST["email"]);
$username_new=htmlspecialchars($_POST["username"]);
// Create connection
$conn = new mysqli($DB_SERVERNAME, $DB_USERNAME, $DB_PASSWORD,$DB_DATABASE);
// Check connection
if ($conn->connect_error) {
$success=0;
die("Connection failed: " . $conn->connect_error);
}
$stmt = $conn->prepare("UPDATE users set email = ?, username = ? where username = ?");
$stmt->bind_param("ssss", $email, $username_new, $username);
$email=htmlspecialchars($_POST["email"]);
$username_new=htmlspecialchars($_POST["username"]);
$stmt->execute();
$stmt->close();
$conn->close();
$username=$username_new;
$_SESSION["username"]=$username;
$_SESSION["email"]=$email;
}
?>
<!DOCTYPE html> <!DOCTYPE html>
<html lang="en"> <html lang="en">
<head> <head>
@@ -30,7 +58,7 @@ $email = $_SESSION["email"];
<h4>Your Profile (<?php echo($username); ?>)</h4> <h4>Your Profile (<?php echo($username); ?>)</h4>
</div> </div>
<div class="card-body"> <div class="card-body">
<form action="profile.php" method="post"> <form action="profile.php?update=true" method="post">
<div class="form-group"> <div class="form-group">
<label for="username">Username:</label> <label for="username">Username:</label>
<input type="text" class="form-control" id="username" name="username" value="<?php echo($username); ?>" required> <input type="text" class="form-control" id="username" name="username" value="<?php echo($username); ?>" required>
@@ -44,6 +72,13 @@ $email = $_SESSION["email"];
<input type="text" class="form-control" id="perms" name="perms" value="<?php echo($perms); ?>" required readonly> <input type="text" class="form-control" id="perms" name="perms" value="<?php echo($perms); ?>" required readonly>
</div> </div>
<button type="submit" class="btn btn-primary btn-block">Update</button> <button type="submit" class="btn btn-primary btn-block">Update</button>
<?php
if(isset($_GET["update"])){
echo '<div class="alert alert-success" role="alert">
Information updated successfully!
</div>';
}
?>
</form> </form>
</div> </div>
</div> </div>