public function __construct()
{
$connect = new DB_connect();
$connect->set_charset("utf8");
$query = "SELECT id, name, lastname, address, phone, email, rank FROM users";
$statment = $connect->prepare($query);
$statment->execute();
$statment->bind_result($id_user, $name, $lastname, $address, $phone, $email, $rank);
while ($statment->fetch()) {
$this->addUser(new Users($id_user, $name, $lastname, $address, $phone, $email, null, $rank));
}
$statment->close();
$connect->close();
}
public function __construct()
{
$connect = new DB_connect();
$connect->set_charset("utf8");
$query = "SELECT id, name, lastname, location, dateOfBirth, dateOfDeath, religion FROM obituaries ORDER BY datePublished DESC";
$statment = $connect->prepare($query);
$statment->execute();
$statment->bind_result($id_obituary, $name, $lastname, $location, $dateOfBirth, $dateOfDeath, $religion);
while ($statment->fetch()) {
$this->addObituary(new Obituary($id_obituary, $name, $lastname, $location, $dateOfBirth, $dateOfDeath, $religion));
}
$statment->close();
$connect->close();
}
/**
* Конструктор вызывает конструктор родителя для подключения к БД
* Затем сохраняет все данные о кандидатах в массив $all_persons[номаер_строки][массив_столбцов]
*/
public function __construct()
{
parent::__construct();
$query = $this->db->prepare('SELECT * FROM `persons`');
$query->execute();
$this->all_persons = $query->fetchAll(PDO::FETCH_ASSOC);
}
/**
* синглтон соеденения с базой
*/
static function getDbh()
{
if (self::$dbh == null) {
try {
$dbh = "mysql:host=localhost;dbname=users_data";
self::$dbh = new Pdo($dbh, 'root', 'serj0531serj');
self::$dbh->exec("SET NAMES utf8");
return self::$dbh;
} catch (PDOException $e) {
echo $e->getMessage();
}
} else {
return self::$dbh;
}
}
public function update()
{
$connect = new DB_connect();
$connect->set_charset("utf8");
$address = $connect->real_escape_string(trim($this->address));
$phone = $connect->real_escape_string(trim($this->phone));
$email = $connect->real_escape_string(trim($this->email));
if ($this->pass == '') {
$query = "UPDATE users SET address=?, phone=?, email=? WHERE id=?";
$statment = $connect->prepare($query);
$statment->bind_param('sssi', $address, $phone, $email, $this->id);
} else {
$query = "UPDATE users SET address=?, phone=?, email=?, password=? WHERE id=?";
$statment = $connect->prepare($query);
$statment->bind_param('ssssi', $address, $phone, $email, $this->pass, $this->id);
}
$statment->execute();
$statment->close();
$connect->close();
}
public function delete()
{
$connect = new DB_connect();
$connect->set_charset("utf8");
$query = "DELETE FROM obituaries WHERE id=?";
$statment = $connect->prepare($query);
$statment->bind_param('i', $this->obituaryId);
$statment->execute();
$statment->close();
$connect->close();
}
if ($environment["kategorie"] != "" && $environment["kategorie"] != "index") {
$mapping["main"] = $environment["kategorie"];
}
} else {
if ($environment["katid"] != "" && $environment["katid"] != "index") {
$mapping["main"] = $environment["katid"];
}
}
// was steht in den post vars
foreach ($HTTP_POST_VARS as $name => $value) {
if ($debugging["html_enable"]) {
$debugging["ausgabe"] .= $name . " => " . $value . $debugging["char"];
}
}
// hallo zur datenbank
$db = new DB_connect();
$version = $db->getVERSION();
if ($debugging["html_enable"]) {
$debugging["ausgabe"] .= "db version: " . $version . $debugging["char"];
}
$connect = $db->connect();
if ($debugging["html_enable"]) {
$debugging["ausgabe"] .= "db connect: " . $connect . $debugging["char"];
}
// login verwalten ( muss erste funktion nach datenbank connect sein !!!)
require $pathvars["config"] . "auth.cfg.php";
require $pathvars["libraries"] . "auth.inc.php";
if ($environment["katid"] == "cms") {
include $pathvars["libraries"] . "cms.inc.php";
} else {
if (strstr($_SERVER["REQUEST_URI"], "/auth/")) {
You may contact the author/development team at:
Chaos Networks
c/o Werner Ammon
Lerchenstr. 11c
86343 Königsbrunn
URL: http://www.chaos.de
*/
////////////////////////////////////////////////////////////////////////////////////////////////////////////////
if ($debugging[html_enable]) {
$debugging[ausgabe] .= "[ ** {$main_script_name} ** ]" . $debugging[char];
}
// hallo zur datenbank
$db = new DB_connect();
$connect = $db->connect();
if ($debugging[html_enable]) {
$debugging[ausgabe] .= "data connect: " . $connect . $debugging[char];
}
$sql = "SELECT * FROM site_text WHERE tname like '%.%' and crc32='0'";
$result = $db->query($sql, 2);
$update_count = 0;
while ($data = $db->fetch_array($result, 1)) {
echo "Found: " . $data[tid] . " " . $data[label] . " " . $data[tname] . "<br>";
$tname = explode(".", $data[tname]);
$newtname = crc32("/" . $tname[0]) . "." . $tname[1];
$sql = "UPDATE site_text SET tname='" . $newtname . "', crc32='-1' WHERE tid=" . $data[tid];
if (count($tname) > 2) {
echo "Daten von " . $data[label] . " - " . $data[tname] . " inkombatibel! - Konvertierung fehlgeschlagen!<br>";
} else {
<?php /* * Initialisation d'une class DB pour la connexion à la base de donnée * Initialisation d'une class CART pour l'interaction avec la base de donnée et le panier */ $DB = new DB_connect(); $CART = new Cart($DB); ?> <!-- Logo --> <a href="index.php"><img src="img/gcc2.png" class="img-responsive center-block" /></a> <!-- Barre de navigation utilisateur connecté --> <nav id="navbar-main" class="navbar" style="background-color: #FFFFFF; border-bottom: 2px solid #94be2e;"> <div class="container"> <div id="navbar"> <ul class="nav navbar-nav"> <li class="nav-font"><a href="index.php">ACCUEIL</a></li> <li class="nav-font"><a href="products.php">PRODUITS</a></li> </ul> <ul class="nav navbar-nav navbar-right"> <li class="dropdown"> <a href="#" class="nav-font dropdown-toggle" data-toggle="dropdown" role="button" aria-haspopup="true" aria-expanded="false">Bienvenue <?php echo $_SESSION['firstname_customer']; ?> <span class="caret"></span></a> <ul class="dropdown-menu"> <li><a href="account.php">Mon Compte</a></li> <li><a href="../model/logout.php">Déconnexion</a></li> </ul>
}
}
// was steht in den get vars
if ($debugging["html_enable"] && count($HTTP_GET_VARS) > 0) {
if ($debugging["html_enable"]) {
$debugging["ausgabe"] .= "form (get):" . $debugging["char"];
}
foreach ($HTTP_GET_VARS as $name => $value) {
if ($debugging["html_enable"]) {
$debugging["ausgabe"] .= $name . " => " . $value . $debugging["char"];
}
}
}
}
// hallo zur datenbank
$db = new DB_connect();
$version = $db->getVERSION();
if ($debugging["html_enable"]) {
$debugging["ausgabe"] .= "db version: " . $version . $debugging["char"];
}
$connect = $db->connect();
if ($debugging["html_enable"]) {
$debugging["ausgabe"] .= "db connect: " . $connect . $debugging["char"];
}
// subdir support
$pathvars["virtual"] = $pathvars["subdir"] . $pathvars["virtual"];
$pathvars["requested"] = $pathvars["subdir"] . $pathvars["requested"];
// login verwalten ( muss erste funktion nach datenbank connect sein !!!)
require $pathvars["config"] . "auth.cfg.php";
require $pathvars["libraries"] . "auth.inc.php";
// ueberschreiben von default werten
/**
* метод регистрации пользователей
* */
private function registration()
{
/*Проверяем содержимое массива POST[] на предмет наличия непозволительных символов*/
$name = htmlspecialchars($_POST['user']);
$name = trim($name);
$password = htmlspecialchars($_POST['password']);
$pasword = trim($password);
$db = new DB_connect();
/*есть ли пользователь в базе*/
if ($db->is_user($name, $password)) {
ob_start();
$msg = 'Пользователь с такими данными уже зарегистрирован';
require 'view/message.php';
$message = ob_get_contents();
ob_end_flush();
require 'view/login_page.php';
return;
}
//foreach($_POST as $k => $v) echo $k.' - '.$v.'<br>';
/**/
$registr = $db->user_input($name, $password);
if ($registr) {
ob_start();
$msg = 'Данные успешно внесены, можно вводить и входить..';
require 'view/message.php';
$message = ob_get_contents();
ob_end_flush();
require 'view/login_page.php';
} else {
echo 'Неудача, не удалось внести данные';
}
return $registr;
}
<?php
if (!isset($_SESSION)) {
session_start();
}
if (isset($_POST['login'])) {
require_once 'class/DB_connect.php';
$connect = new DB_connect();
$connect->set_charset("utf8");
$email = $connect->real_escape_string(trim($_POST["email"]));
$pass = md5($connect->real_escape_string(trim($_POST["pass"])));
$query = "SELECT id, name, lastname, password, rank FROM users WHERE email=?";
$statement = $connect->prepare($query);
$statement->bind_param('s', $email);
$statement->execute();
$statement->bind_result($id_user, $name, $lastname, $passwd, $rank);
$statement->fetch();
$statement->close();
$connect->close();
if ($pass == $passwd) {
$_SESSION['name'] = $name . " " . $lastname;
$_SESSION['email'] = $email;
$_SESSION['id_user'] = $id_user;
$_SESSION['rank'] = $rank;
$_SESSION['logged'] = true;
header("Location: index.php");
} else {
echo '<p>Username and password do not match!</p>';
}
}
