if ($_POST['voornaam'] == "" or $_POST['achternaam'] == "" or $_POST['leerling_id'] == "" or $_POST['emailadres'] == "") {
$_SESSION['message'] = "Je moet alle gegevens invullen!";
} else {
// overbodige ingevoerde spaties weghalen met functie trim
$voornaam = filter_var(trim($_POST['voornaam']), FILTER_SANITIZE_STRING);
$achternaam = filter_var(trim($_POST['achternaam']), FILTER_SANITIZE_STRING);
$tussenvoegsel = filter_var($_POST['tussenvoegsel'], FILTER_SANITIZE_STRING);
//tussenvoegsel mag spatie bevatten
$emailadres = filter_var(trim($_POST['emailadres']), FILTER_VALIDATE_EMAIL);
$leerling_id = filter_var(trim($_POST['leerling_id']), FILTER_SANITIZE_STRING);
$gebruiker_id = intval($_POST['gebruiker_id']);
if (!$emailadres) {
$_SESSION['message'] = 'Voer een geldig e-mailadres in.';
} else {
$gegevens = ["voornaam" => $voornaam, "tussenvoegsel" => $tussenvoegsel, "achternaam" => $achternaam, "emailadres" => $emailadres, "leerling_id" => $leerling_id];
updateStudent($gegevens, $gebruiker_id);
}
}
}
if (isset($_POST["submit_verwijder_leerling"])) {
$gebruiker_id = intval($_POST['gebruiker_id']);
deleteStudent($gebruiker_id);
}
}
}
$leerlingen = getLeerlingenKlas($klas);
$pagename = "klassen";
?>
<?php
<?php
session_start();
include_once 'student.php';
$body = file_get_contents('php://input');
if (isset($body)) {
$json = json_decode($body);
if (isset($json) && updateStudent($json->id, $json->name, $json->birthdate, $json->cellphone, $json->linkedin, $json->university)) {
$message = array('success' => 'Student was successfully edited');
} else {
$message = array('error' => 'Student was not edited');
}
$message = $json;
}
$JSONresponse = json_encode($message);
echo $JSONresponse;
<?php
include_once "database.php";
$inputJSON = file_get_contents('php://input');
$student = json_decode($inputJSON, TRUE);
//convert JSON into array
updateStudent($student["student_id"], $student["student_name"], $student["regno"], $student["cgpa"]);
}
if (empty($password)) {
$passwordError = 'Please enter Password';
$valid = false;
}
if (empty($email)) {
$emailError = 'Please enter Email Address';
$valid = false;
} else {
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
$emailError = 'Please enter a valid Email Address';
$valid = false;
}
}
if ($valid) {
updateStudent($cne, $nom, $prenom, $email, $password, $ville, $codePostale);
header("Location: admin.php");
} else {
$data = get_cne($_GET['cne']);
$cne = $date['cne'];
$nom = $date['nom'];
$prenom = $date['prenom'];
$email = $date['email'];
$password = $date['password'];
$ville = $date['ville'];
$codePostale = $date['codePostale'];
}
$data = get_cne($_GET['cne']);
} else {
echo "no";
}
<?php
include 'db_helper.php';
if ($_GET['f'] == 'add' && $_GET['name'] && $_GET['gender'] && $_GET['email'] && $_GET['phone']) {
addStudent($_GET['name'], $_GET['gender'], $_GET['email'], $_GET['phone']);
} elseif ($_GET['f'] == 'get' && $_GET['email']) {
getStudent($_GET['email']);
} elseif ($_GET['f'] == 'update' && $_GET['name'] && $_GET['gender'] && $_GET['phone'] && $_GET['sid']) {
updateStudent($_GET['name'], $_GET['gender'], $_GET['phone'], $_GET['sid']);
} elseif ($_GET['f'] == 'get' && $_GET['sid']) {
getStudentInfo($_GET['sid']);
}
function getStudent($email)
{
$dbQuery = sprintf("SELECT ID FROM Student WHERE email = '%s'", mysql_real_escape_string($email));
//
$result = getDBResultRecord($dbQuery);
//header("Content-type: application/json");
echo json_encode($result);
}
function addStudent($name, $gender, $email, $phone)
{
$dbQuery = sprintf("INSERT INTO Student (name,gender,email,phone) VALUES ('%s','%d','%s','%d')", mysql_real_escape_string($name), $gender, mysql_real_escape_string($email), $phone);
$result = getDBResultInserted($dbQuery, 'ID');
//header("Content-type: application/json");
echo json_encode($result);
}
function updateStudent($name, $gender, $phone, $sid)
{
$dbQuery = sprintf("UPDATE Student SET name = '%s',gender='%d',phone='%d' WHERE ID = '%d'", mysql_real_escape_string($name), $gender, $phone, $sid);
$result = getDBResultAffected($dbQuery);
