if ($_POST['voornaam'] == "" or $_POST['achternaam'] == "" or $_POST['leerling_id'] == "" or $_POST['emailadres'] == "") { $_SESSION['message'] = "Je moet alle gegevens invullen!"; } else { // overbodige ingevoerde spaties weghalen met functie trim $voornaam = filter_var(trim($_POST['voornaam']), FILTER_SANITIZE_STRING); $achternaam = filter_var(trim($_POST['achternaam']), FILTER_SANITIZE_STRING); $tussenvoegsel = filter_var($_POST['tussenvoegsel'], FILTER_SANITIZE_STRING); //tussenvoegsel mag spatie bevatten $emailadres = filter_var(trim($_POST['emailadres']), FILTER_VALIDATE_EMAIL); $leerling_id = filter_var(trim($_POST['leerling_id']), FILTER_SANITIZE_STRING); $gebruiker_id = intval($_POST['gebruiker_id']); if (!$emailadres) { $_SESSION['message'] = 'Voer een geldig e-mailadres in.'; } else { $gegevens = ["voornaam" => $voornaam, "tussenvoegsel" => $tussenvoegsel, "achternaam" => $achternaam, "emailadres" => $emailadres, "leerling_id" => $leerling_id]; updateStudent($gegevens, $gebruiker_id); } } } if (isset($_POST["submit_verwijder_leerling"])) { $gebruiker_id = intval($_POST['gebruiker_id']); deleteStudent($gebruiker_id); } } } $leerlingen = getLeerlingenKlas($klas); $pagename = "klassen"; ?> <?php
<?php session_start(); include_once 'student.php'; $body = file_get_contents('php://input'); if (isset($body)) { $json = json_decode($body); if (isset($json) && updateStudent($json->id, $json->name, $json->birthdate, $json->cellphone, $json->linkedin, $json->university)) { $message = array('success' => 'Student was successfully edited'); } else { $message = array('error' => 'Student was not edited'); } $message = $json; } $JSONresponse = json_encode($message); echo $JSONresponse;
<?php include_once "database.php"; $inputJSON = file_get_contents('php://input'); $student = json_decode($inputJSON, TRUE); //convert JSON into array updateStudent($student["student_id"], $student["student_name"], $student["regno"], $student["cgpa"]);
} if (empty($password)) { $passwordError = 'Please enter Password'; $valid = false; } if (empty($email)) { $emailError = 'Please enter Email Address'; $valid = false; } else { if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $emailError = 'Please enter a valid Email Address'; $valid = false; } } if ($valid) { updateStudent($cne, $nom, $prenom, $email, $password, $ville, $codePostale); header("Location: admin.php"); } else { $data = get_cne($_GET['cne']); $cne = $date['cne']; $nom = $date['nom']; $prenom = $date['prenom']; $email = $date['email']; $password = $date['password']; $ville = $date['ville']; $codePostale = $date['codePostale']; } $data = get_cne($_GET['cne']); } else { echo "no"; }
<?php include 'db_helper.php'; if ($_GET['f'] == 'add' && $_GET['name'] && $_GET['gender'] && $_GET['email'] && $_GET['phone']) { addStudent($_GET['name'], $_GET['gender'], $_GET['email'], $_GET['phone']); } elseif ($_GET['f'] == 'get' && $_GET['email']) { getStudent($_GET['email']); } elseif ($_GET['f'] == 'update' && $_GET['name'] && $_GET['gender'] && $_GET['phone'] && $_GET['sid']) { updateStudent($_GET['name'], $_GET['gender'], $_GET['phone'], $_GET['sid']); } elseif ($_GET['f'] == 'get' && $_GET['sid']) { getStudentInfo($_GET['sid']); } function getStudent($email) { $dbQuery = sprintf("SELECT ID FROM Student WHERE email = '%s'", mysql_real_escape_string($email)); // $result = getDBResultRecord($dbQuery); //header("Content-type: application/json"); echo json_encode($result); } function addStudent($name, $gender, $email, $phone) { $dbQuery = sprintf("INSERT INTO Student (name,gender,email,phone) VALUES ('%s','%d','%s','%d')", mysql_real_escape_string($name), $gender, mysql_real_escape_string($email), $phone); $result = getDBResultInserted($dbQuery, 'ID'); //header("Content-type: application/json"); echo json_encode($result); } function updateStudent($name, $gender, $phone, $sid) { $dbQuery = sprintf("UPDATE Student SET name = '%s',gender='%d',phone='%d' WHERE ID = '%d'", mysql_real_escape_string($name), $gender, $phone, $sid); $result = getDBResultAffected($dbQuery);