public function editOne($oneidf, $descf, $is_itemf, $is_photof) { $dbConn = new DbConnection(); $connection = $dbConn->connectToDB(); $id = $oneidf; /* * Upis u photo tabelu */ // 1. prepared SQL statement if ($sqlup = $connection->prepare("UPDATE photo SET description = ?, is_item = ?, is_photo = ? WHERE id = {$id}")) { // 3. params /* * Postovano kroz ulazne parametre method-a * * * $oneid, $desc */ //$id = $oneid; $desc = $descf; $is_item = $is_itemf; $is_photo = $is_photof; //2. binding params $sqlup->bind_param('sii', $desc, $is_item, $is_photo); //4. execute statement $sqlup->execute(); // 5. Pre close() koraci 3. i 4. mogu ici vise puta! $sqlup->close(); printf("Izmenjeni podaci o fotki <b>" . $id . " " . $desc . " </b>uspesno upisani u bazu podataka."); } else { $error = $connection->errno . ' ' . $connection->error; echo $error; // 1054 Unknown column 'foo' in 'field list' } $sqledit = "SELECT * FROM photo WHERE id = {$id};"; if (!($resultedit = $connection->query($sqledit))) { die('Ne mogu da izvrsim upit editPhoto 2 zbog [' . $connection->error . "]"); } $rowedit = $resultedit->fetch_assoc(); return $rowedit; }
if (isset($_SESSION['login'])) { $id = $_SESSION['id']; $name = $_SESSION['name']; $is_admin = $_SESSION['is_admin']; } else { $is_admin = 0; } if ($_SESSION['is_admin'] == 1) { echo "Dobro dosao {$_SESSION['name']} na stranicu {$_SERVER['PHP_SELF']}"; } else { header("Location:ouroffer.php"); } include "headeradmin.php"; include "connection/DbConnection.php"; $dbConn = new DbConnection(); $connection = $dbConn->connectToDB(); if ($_SERVER["REQUEST_METHOD"] == "POST") { $id = $_POST['id']; echo "Id iznosi: " . $_POST['id']; $title = $_POST['title']; $desc = $_POST['description']; $price = $_POST['price']; $image_url = $_POST['image_url']; //$menu = $_POST['menu']; if (isset($_POST['menu'])) { $menu = 1; } else { $menu = 0; } //$today_menu = $_POST['today_menu']; if (isset($_POST['today_menu'])) {
public function disableOrder($do) { $dbConn = new DbConnection(); $connection = $dbConn->connectToDB(); $dt = new DateTime(); $today = $dt->format('Y-m-d H:i:s'); $sqldo = "UPDATE userorder SET orderstatus = 'Otkazano', finished = '{$today}' WHERE checkorder_id = {$do}"; if (!($results = $connection->query($sqldo))) { die("Postoji problem prilikom confirm update userorder tabele zbog: [" . $connection->error . "]"); } if ($results > 0) { print_r($results); var_dump($results); return $confirmorder = "Uspešno je otkazana Vaša porudžbina!"; } else { echo "Nije pronadjen niti jedan zapis!"; } }
public function get_fullname($uid) { $dbConn = new DbConnection(); $connection = $dbConn->connectToDB(); $sql3 = "SELECT fullname FROM users WHERE id = {$uid}"; if (!($result = $connection->query($sql3))) { die('Ne mogu da izvrsim upit zbog [' . $connection->error . "]"); } $resultrow = $result->fetch_assoc(); echo $resultrow['name']; }
public function deleteUser($id_user) { $dbConnDel = new DbConnection(); $connection = $dbConnDel->connectToDB(); $sqldelstaff = "DELETE FROM staff WHERE user_id = (SELECT id FROM user WHERE id = {$id_user});"; if (!($resultsstaff = $connection->query($sqldelstaff))) { die('Ne mogu da izvrsim upit zbog [' . $connection->error . "]"); } $sqldel = "DELETE FROM user WHERE id = {$id_user}"; if (!($results = $connection->query($sqldel))) { die('Ne mogu da izvrsim upit zbog [' . $connection->error . "]"); } }