public function update(User $user) { $id = $user->getId(); // $login = mysqli_real_escape_string($this->db, $user->getLogin()); $login = $this->db->quote($user->getLogin()); // $password = mysqli_real_escape_string($this->db, $user->getHash()); $password = $this->db->quote($user->getHash()); // $email = mysqli_real_escape_string($this->db, $user->getEmail()); $email = $this->db->quote($user->getEmail()); // $name = mysqli_real_escape_string($this->db, $user->getName()); $name = $this->db->quote($user->getName()); // $surname = mysqli_real_escape_string($this->db, $user->getSurname()); $surname = $this->db->quote($user->getSurname()); $date_birth = $user->getDateBirth(); $query = "UPDATE user SET login="******", password="******", email=" . $email . ", name=" . $name . ", surname=" . $surname . ", date_birth=" . $date_birth . " WHERE id=" . $id . ""; // $res = mysqli_query($this->db, $query); $res = $this->db->exec($query); if ($res) { return $this->findById($id); } else { return "Internal Server Error"; } }
<?php session_start(); $user = new User(); if ($user->selectByEmail(Database::sessionDecrypt($_SESSION['user']))) { if ($_POST['update'] == 'true') { $user->setNickname($_POST['nick']); $user->setCellPhone($_POST['phone']); $user->setName($_POST['name']); $user->setSurname($_POST['surname']); if ($user->update()) { echo ReturnCode::$success; } else { echo ReturnCode::$error; } } else { echo $user->getNickname() . PHP_EOL; echo $user->getName() . PHP_EOL; echo $user->getSurname() . PHP_EOL; echo $user->getCellPhone(); } } else { echo ReturnCode::$userNotFound; }
public function update(User $user) { $id = intval($user->getId()); $email = $this->db->quote($user->getEmail()); $name = $this->db->quote($user->getName()); $surname = $this->db->quote($user->getSurname()); $hash = $user->getHash(); $status = intval($user->getStatus()); $dateConnection = date('Y-m-d H:i:s', $user->getDateConnection()); $query = ' UPDATE user SET email = ' . $email . ', name = ' . $name . ', surname = ' . $surname . ', `hash` = "' . $hash . '", `status` = ' . $status . ', date_connection = "' . $dateConnection . '" WHERE id = ' . $id; $res = $this->db->exec($query); if ($res) { return $this->readById($id); } else { throw new Exception('Database error'); } }
public function testUser() { $user = new User(123, 'Admin', '*****@*****.**', 'Colin', 'Rosen', false, UserPermission::ADMINISTRATOR, true, false, true, "MEH"); $this->assertEquals(123, $user->getID()); $this->assertEquals('Admin', $user->getUsername()); $this->assertEquals('*****@*****.**', $user->getEmail()); $this->assertEquals('Colin', $user->getFirstname()); $this->assertEquals('Rosen', $user->getSurname()); $this->assertEquals('Colin Rosen', $user->getName()); $this->assertEquals(false, $user->ForceOffline()); $this->assertEquals(UserPermission::ADMINISTRATOR, $user->getPermission()); $this->assertEquals(true, $user->isActive()); $this->assertEquals(false, $user->isBlocked()); $this->assertEquals(true, $user->isOnline()); $this->assertEquals("MEH", $user->getImage()); }