public function saveNewUser(User $user) { // These values should be sanitized // I believe this is fixed $query = "INSERT INTO users VALUES(:userid, :username, :hash, :salt, :email, :fullname, :address, :postcode, :age, :bio, :admin, NULL, 0, 0, 0)"; $stmt = $this->pdo->prepare($query); $userid = $user->getUserId(); $username = $user->getUsername(); $hash = $user->getHash(); $salt = $user->getSalt(); $email = $user->getEmail(); $age = $user->getAge(); $bio = $user->getBio(); $admin = $user->isAdmin(); $fullname = $user->getFullname(); $address = $user->getAddress(); $postcode = $user->getPostcode(); $stmt->bindParam(':userid', $userid); $stmt->bindParam(':username', $username); $stmt->bindParam(':hash', $hash); $stmt->bindParam(':salt', $salt); $stmt->bindParam(':email', $email); $stmt->bindParam(':age', $age); $stmt->bindParam(':bio', $bio); $stmt->bindParam(':admin', $admin); $stmt->bindParam(':fullname', $fullname); $stmt->bindParam(':address', $address); $stmt->bindParam(':postcode', $postcode); return $stmt->execute(); }
public function saveNewUser(User $user) { $query = sprintf(self::INSERT_QUERY, $user->getUsername(), $user->getHash(), $user->getFirstName(), $user->getLastName(), $user->getPhone(), $user->getCompany(), $user->isAdmin()); return $this->pdo->exec($query); }
public function saveNewUser(User $user) { $stmt = $this->pdo->prepare(self::INSERT_QUERY); $stmt->execute(array($user->getUsername(), $user->getHash(), $user->getEmail(), $user->getAge(), $user->getBio(), $user->isAdmin(), $user->getFullname(), $user->getAddress(), $user->getPostcode(), $user->getBankcard(), $user->getMoneyspent(), $user->getMoneyearned())); return $stmt->rowCount(); }
public function saveNewUser(User $user) { // Prepare SQL statement $stmt = $this->pdo->prepare("INSERT INTO users (user, pass, email, age, bio, isadmin, fullname, address, postcode) " . "VALUES (:user, :pass, :email, :age, :bio, :isadmin, :fullname, :address, :postcode)"); print_r($user->getUsername()); // Bind parameters to their respective values // Execute and bind values all in one return $stmt->execute(['user' => $user->getUsername(), 'pass' => $user->getHash(), 'email' => $user->getEmail(), 'age' => $user->getAge(), 'bio' => $user->getBio(), 'isadmin' => $user->isAdmin(), 'fullname' => $user->getFullname(), 'address' => $user->getAddress(), 'postcode' => $user->getPostcode()]); }
public function saveNewUser(User $user) { $query = self::INSERT_QUERY; $query_params = array(':username' => $user->getUsername(), ':password' => $user->getHash(), ':email' => $user->getEmail(), ':age' => $user->getAge(), ':bio' => $user->getBio(), ':role' => $user->isAdmin(), ':fullname' => $user->getFullname(), ':address' => $user->getAddress(), ':postcode' => $user->getPostcode(), ':bankcard' => $user->getBankCard()); try { $stmt = $this->pdo->prepare($query); $stmt->execute($query_params); return 1; } catch (PDOException $ex) { die("Failed to run query: " . $ex->getMessage()); } }
public function saveNewUser(User $user) { $query = sprintf(self::INSERT_QUERY, $user->getUsername(), $user->getHash(), $user->getEmail(), $user->getAge(), $user->getBio(), $user->isAdmin()); return $this->pdo->exec($query); }