public function update(User $user)
{
$id = $user->getId();
// $login = mysqli_real_escape_string($this->db, $user->getLogin());
$login = $this->db->quote($user->getLogin());
// $password = mysqli_real_escape_string($this->db, $user->getHash());
$password = $this->db->quote($user->getHash());
// $email = mysqli_real_escape_string($this->db, $user->getEmail());
$email = $this->db->quote($user->getEmail());
// $name = mysqli_real_escape_string($this->db, $user->getName());
$name = $this->db->quote($user->getName());
// $surname = mysqli_real_escape_string($this->db, $user->getSurname());
$surname = $this->db->quote($user->getSurname());
$date_birth = $user->getDateBirth();
$query = "UPDATE user SET login="******", password="******", email=" . $email . ", name=" . $name . ", surname=" . $surname . ", date_birth=" . $date_birth . " WHERE id=" . $id . "";
// $res = mysqli_query($this->db, $query);
$res = $this->db->exec($query);
if ($res) {
return $this->findById($id);
} else {
return "Internal Server Error";
}
}
<?php
session_start();
$user = new User();
if ($user->selectByEmail(Database::sessionDecrypt($_SESSION['user']))) {
if ($_POST['update'] == 'true') {
$user->setNickname($_POST['nick']);
$user->setCellPhone($_POST['phone']);
$user->setName($_POST['name']);
$user->setSurname($_POST['surname']);
if ($user->update()) {
echo ReturnCode::$success;
} else {
echo ReturnCode::$error;
}
} else {
echo $user->getNickname() . PHP_EOL;
echo $user->getName() . PHP_EOL;
echo $user->getSurname() . PHP_EOL;
echo $user->getCellPhone();
}
} else {
echo ReturnCode::$userNotFound;
}
public function update(User $user)
{
$id = intval($user->getId());
$email = $this->db->quote($user->getEmail());
$name = $this->db->quote($user->getName());
$surname = $this->db->quote($user->getSurname());
$hash = $user->getHash();
$status = intval($user->getStatus());
$dateConnection = date('Y-m-d H:i:s', $user->getDateConnection());
$query = ' UPDATE user
SET email = ' . $email . ',
name = ' . $name . ',
surname = ' . $surname . ',
`hash` = "' . $hash . '",
`status` = ' . $status . ',
date_connection = "' . $dateConnection . '"
WHERE id = ' . $id;
$res = $this->db->exec($query);
if ($res) {
return $this->readById($id);
} else {
throw new Exception('Database error');
}
}
public function testUser()
{
$user = new User(123, 'Admin', '*****@*****.**', 'Colin', 'Rosen', false, UserPermission::ADMINISTRATOR, true, false, true, "MEH");
$this->assertEquals(123, $user->getID());
$this->assertEquals('Admin', $user->getUsername());
$this->assertEquals('*****@*****.**', $user->getEmail());
$this->assertEquals('Colin', $user->getFirstname());
$this->assertEquals('Rosen', $user->getSurname());
$this->assertEquals('Colin Rosen', $user->getName());
$this->assertEquals(false, $user->ForceOffline());
$this->assertEquals(UserPermission::ADMINISTRATOR, $user->getPermission());
$this->assertEquals(true, $user->isActive());
$this->assertEquals(false, $user->isBlocked());
$this->assertEquals(true, $user->isOnline());
$this->assertEquals("MEH", $user->getImage());
}
