session_start();
require_once 'DB.php';
require_once 'seekerTable.php';
require_once 'employerTable.php';
//Set and sanitize the user inputs
$email = filter_var($_POST['email'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$pass = filter_var($_POST['password'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
//if data has been set
if ($email && $pass) {
try {
ini_set("display_errors", 1);
ob_start();
$connection = DB::getConnection(DB::host, DB::database, DB::user, DB::password);
$seekerTable = new seekerTable($connection);
$employerTable = new employerTable($connection);
$seekers = $seekerTable->showAll();
$employers = $employerTable->showAll();
foreach ($seekers as $seeker) {
$dbSeekerEmail = $seeker->getEmail();
$dbPassWord = $seeker->getPassword();
$dbSeekerName = $seeker->getFName();
$dbTheme = $seeker->getTheme();
$dbId = $seeker->getId();
// if match has been found, session will be created with the user's username (first name) ELSE return to login page
if (strpos(strtoupper($email), strtoupper($dbSeekerEmail)) !== false && $pass == $dbPassWord) {
$_SESSION['seeker'] = $dbSeekerName;
$_SESSION['id'] = $dbId;
$_SESSION['theme'] = $dbTheme;
header("Location: sControlPanel.php");
die;
}
//variables used to store the POST values from the employer
$fName = $_POST['fName'];
$lName = $_POST['surname'];
$company = $_POST['company'];
$email = $_POST['email'];
$bio = $_POST['bio'];
$password = $_POST['password'];
//location can be updated in "Edit Profile"
$location = "Update";
//default image used
$pic = "noImage.jpeg";
try {
ini_set("display_errors", 1);
//establish a connection
$connection = DB::getConnection(DB::host, DB::database, DB::user, DB::password);
//instantiate a new employer table, passing the connection details as a parameter
$table = new employerTable($connection);
//instantiate a new employer object
$employer = new employer(-1, $fName, $lName, $company, $email, $location, $bio, $pic, $password);
//addEmployer will add the newly created employer object into the database and return the id which will be stored.
$id = $table->addEmployer($employer);
//the employer object's id will be set.
$employer->setId($id);
//redirect to login page
header("Location: login.php");
} catch (PDOException $e) {
//if a problem occurs, close the connection
$connection = null;
exit("Connection failed: " . $e->getMessage());
}
if (file_exists($file)) {
$result = $pic2["name"];
} else {
if (move_uploaded_file($pic2["tmp_name"], $file)) {
$result = $pic2["name"];
}
}
}
return $result;
}
try {
ini_set("display_errors", 1);
$connection = DB::getConnection(DB::host, DB::database, DB::user, DB::password);
//gets the user id and searches the member table for matching id
$id = $_SESSION["id"];
$table = new employerTable($connection);
$employer = $table->findById($id);
if (isset($_POST['submit'])) {
$company = filter_var($_POST['company'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$fName = filter_var($_POST['fName'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$lName = filter_var($_POST['lName'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$email = filter_var($_POST['email'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$location = filter_var($_POST['location'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$bio = filter_var($_POST['bio'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$password = filter_var($_POST['password'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
$picture = $_FILES['picture'];
if ($picture === null) {
$picture = $employer->getPicture();
} else {
$picture = uploadPicture($picture);
}
