optimization, begin refactor, basic reports
This commit is contained in:
80
profile.php
80
profile.php
@@ -4,7 +4,6 @@ require_once("config.inc.php");
|
||||
$yaptc_pagename = "Profile";
|
||||
require_once($yaptc_inc . "header.inc.php");
|
||||
require_once($yaptc_inc . "menu.inc.php");
|
||||
//********** BEGIN CONTENT **********//
|
||||
// Is user logged in? If not, they shouldn't be here - kill all variables and redirect to login...
|
||||
if (!isset($_SESSION['user_id']) || !isset($_SESSION['signature']) || !isset($_SESSION['loggedIn']) || $_SESSION['loggedIn'] != true || $_SESSION['signature'] != md5($_SESSION['user_id'] . $_SERVER['HTTP_USER_AGENT']))
|
||||
{
|
||||
@@ -16,43 +15,46 @@ echo "<h2 class=\"content-subhead\">You are not logged in!!!</h2>";
|
||||
}
|
||||
else
|
||||
{
|
||||
echo "<h2 class=\"content-subhead\">Profile Information</h2>";
|
||||
echo "<p>You may make changes to your user profile below if you wish. Updates will take effect immediately on pressing \"Save\".</p>";
|
||||
$query = "SELECT users.id, users.password, users.created, users.username, users.firstname, users.lastname, users.email, usertypes.typename AS usertype
|
||||
FROM users, usertypes
|
||||
WHERE users.id = :id";
|
||||
$stmt = $sql->prepare($query);
|
||||
$stmt->execute(array(':id' => $_SESSION['user_id']));
|
||||
$user = $stmt->fetchObject();
|
||||
echo "<form class=\"pure-form pure-form-aligned\" action=\"profile.php\" method=\"post\">";
|
||||
echo "<fieldset>";
|
||||
echo "<div class=\"pure-control-group\">";
|
||||
echo "<label for=\"username\">Username</label>";
|
||||
echo "<input class=\"pure-input-1-2\" type=\"text\" name=\"username\" maxlength=\"50\" value=\"$user->username\" readonly>";
|
||||
echo "</div>";
|
||||
echo "<div class=\"pure-control-group\">";
|
||||
echo "<label for=\"created\">Created</label>";
|
||||
echo "<input class=\"pure-input-1-2\" type=\"text\" name=\"created\" value=\"$user->created\" readonly>";
|
||||
echo "</div>";
|
||||
echo "<div class=\"pure-control-group\">";
|
||||
echo "<label for=\"usertype\">User Type</label>";
|
||||
echo "<input class=\"pure-input-1-2\" type=\"text\" name=\"usertype\" maxlength=\"50\" value=\"$user->usertype\" readonly>";
|
||||
echo "</div>";
|
||||
echo "<div class=\"pure-control-group\">";
|
||||
echo "<label for=\"firstname\">First Name</label>";
|
||||
echo "<input class=\"pure-input-1-2\" type=\"text\" name=\"firstname\" maxlength=\"50\" value=\"$user->firstname\">";
|
||||
echo "</div>";
|
||||
echo "<div class=\"pure-control-group\">";
|
||||
echo "<label for=\"lastname\">Last Name</label>";
|
||||
echo "<input class=\"pure-input-1-2\" type=\"text\" name=\"lastname\" maxlength=\"50\" value=\"$user->lastname\">";
|
||||
echo "</div>";
|
||||
echo "<div class=\"pure-control-group\">";
|
||||
echo "<label for=\"email\">Email</label>";
|
||||
echo "<input class=\"pure-input-1-2\" type=\"text\" name=\"email\" maxlength=\"100\" value=\"$user->email\">";
|
||||
echo "</div>";
|
||||
echo "<div class=\"pure-controls\">";
|
||||
echo "<button type=\"submit\" class=\"pure-button button-xlarge button-success\">Save</button>";
|
||||
echo "</div>";
|
||||
//********** BEGIN CONTENT **********//
|
||||
|
||||
$query = "SELECT users.id, users.password, users.created, users.username, users.firstname, users.lastname, users.email, usertypes.typename AS usertype FROM users, usertypes WHERE users.id = :id";
|
||||
$stmt = $sql->prepare($query);
|
||||
$stmt->execute(array(':id' => $_SESSION['user_id']));
|
||||
$user = $stmt->fetchObject();
|
||||
?>
|
||||
<h2 class\"content-subhead">Profile Information</h2>
|
||||
<p>You may make changes to your user profile below if you wish. Updates will take effect immediately on pressing "Save".</p>
|
||||
<form class="pure-form pure-form-aligned" action="profile.php" method="post">
|
||||
<fieldset>
|
||||
<div class="pure-control-group">
|
||||
<label for="username">Username</label>
|
||||
<input type="text" name="username" maxlength="50" value="<?php echo $user->username; ?>" readonly>
|
||||
</div>
|
||||
<div class="pure-control-group">
|
||||
<label for="created">Created</label>
|
||||
<input type="text" name="created" value="<?php echo $user->created; ?>" readonly>
|
||||
</div>
|
||||
<div class="pure-control-group">
|
||||
<label for="usertype">User Type</label>
|
||||
<input type="text" name="usertype" maxlength="50" value="<?php echo $user->usertype; ?>" readonly>
|
||||
</div>
|
||||
<div class="pure-control-group">
|
||||
<label for="firstname">First Name</label>
|
||||
<input type="text" name="firstname" maxlength="50" value="<?php echo $user->firstname; ?>">
|
||||
</div>
|
||||
<div class="pure-control-group">
|
||||
<label for="lastname">Last Name</label>
|
||||
<input type="text" name="lastname" maxlength="50" value="<?php echo $user->lastname; ?>">
|
||||
</div>
|
||||
<div class="pure-control-group">
|
||||
<label for="email">Email</label>
|
||||
<input type="text" name="email" maxlength="100" value="<?php echo $user->email; ?>">
|
||||
</div>
|
||||
<div class="pure-controls">
|
||||
<button type="submit" class="pure-button button-xlarge button-success">Save</button>
|
||||
</div>
|
||||
|
||||
<?php
|
||||
if (!empty($_POST)) {
|
||||
$query = "UPDATE users SET firstname = :firstname, lastname = :lastname, email = :email WHERE id = :userid";
|
||||
$stmt = $sql->prepare($query);
|
||||
@@ -67,10 +69,10 @@ exit;
|
||||
}
|
||||
echo "</fieldset>";
|
||||
echo "</form>";
|
||||
}
|
||||
|
||||
|
||||
|
||||
//********** END CONTENT **********//
|
||||
}
|
||||
require_once($yaptc_inc . "footer.inc.php");
|
||||
?>
|
||||
|
||||
Reference in New Issue
Block a user