private function deleteContact($recordId) { if (is_int((int) $recordId)) { $db = Index::DB(); $query = $db->prepare("DELETE FROM address_book WHERE id = ?"); $result = $query->execute([$recordId]); if ($result) { header("Location: " . Index::config()['url'] . 'address-book'); } else { self::$data['error'] = 'Błąd przy usuwaniu kontaktu.'; } } }
private function addPost($data) { try { $db = Index::DB(); $query = $db->prepare("INSERT INTO posts (title, text, author, date, categories_id) VALUES (?, ?, ?, ?, ?)"); $query->execute([htmlentities($_POST['title']), htmlentities($_POST['text']), $_SESSION['id'], (new DateTime())->format('Y-m-d H:i:s'), (int) $_POST['category']]); unset($_POST); return true; } catch (PDOException $p) { echo $p->getMessage(); self::$data['errorForm'] = 'Błąd przy wysyłaniu formularza.'; return false; } catch (Exception $e) { echo $e->getMessage(); } }
private function addComm($data) { try { if ((int) $data['answer'] == (int) $data['good-answer']) { try { $db = Index::DB(); $query = $db->prepare("INSERT INTO comms (email, text, post_id, date) VALUES (?, ?, ?, ?)"); $query->execute([htmlentities($_POST['email']), htmlentities($_POST['text']), $_POST['post_id'], (new DateTime())->format('Y-m-d H:i:s')]); header("Refresh:0"); unset($_POST); } catch (PDOException $s) { var_dump($s->getMessage()); } } else { self::$data['errorForm'] = 'Zła captcha.'; } } catch (Exception $e) { self::$data['errorForm'] = 'Błąd przy wysyłaniu formularza.'; } }
function __construct($_data = null) { $data = []; $email = $_data["email"]; if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $data['error']['email'] = "Zły format maila"; return false; } if (isset($data['error'])) { self::setFormResultsModel($data['error']); } else { $data['results'] = ['Nick' => $_data["nick"], 'Email' => $email, 'GG' => $_data['gg'], 'WWW' => $_data['www'], 'Komentarz' => $_data['kom']]; mail('*****@*****.**', 'Blog', $_data['kom']); self::setFormResultsModel($data); } try { $db = Index::DB(); $query = $db->prepare("SELECT * FROM posts WHERE id = ? LIMIT 1"); $query->execute([1]); } catch (PDOException $e) { echo $e->getMessage(); } }