<body> <?php session_start(); include_once '../classes/profile.php'; include_once '../classes/address.php'; include_once '../funcs.php'; include_once '../conf.php'; if (!isset($_POST['submit'])) { echo '<h1>You have done it again, you silly!</h1>'; exit; } $disease = $_POST['desc']; $json = getProfiles(); $profiles = json_decode($json); foreach ($profiles as $profile) { if ($profile->profileID == $_POST['profileID']) { array_push($profile->diseases, $disease); $profile->token = $_SESSION['token']; echo $insert = editProfile($profile); break; } } if (empty($insert)) { header("Location: http://" . redirectLink() . "/SafeFront/index.php?action=profileDiseases&profileID=" . $_POST['profileID'] . "&method=Disease%20added%20Sucessfully"); } else { echo $insert; } ?> </body> </html>
if (!$_SESSION) { header("location:index.php"); } $UserName = $_SESSION['username']; if (!empty($_POST['infoSubmit'])) { if (isset($_POST['first']) || isset($_POST['last']) || !empty($_POST['gender']) || isset($_POST['quote'])) { $firstname = sanitizeString($_POST['first']); $lastname = sanitizeString($_POST['last']); $gender = sanitizeString($_POST['gender']); $quote = $_POST['quote']; $result = queryMysql("SELECT * FROM profile WHERE username='******'"); //check if the user already exists if ($result->num_rows) { queryMysql("DELETE FROM profile WHERE username='******'"); } editProfile($connection, $firstname, $lastname, $gender, $UserName, $quote); } } else { if (!empty($_POST['imageSubmit'])) { $time = $_SERVER['REQUEST_TIME']; $file_name = $time . '.jpg'; if ($_FILES) { $tmp_name = $_FILES['upload']['name']; //file on local host if ($tmp_name == NULL) { $file_name = NULL; } $dstFolder = 'users'; move_uploaded_file($_FILES['upload']['tmp_name'], $dstFolder . DIRECTORY_SEPARATOR . $file_name); } queryMysql("UPDATE users SET FILENAME = '{$file_name}' WHERE USERNAME='******'");
include "leftwidget.php"; ?> <div class="center_table"> <table align="center" width="800" border="0" cellspacing="0" cellpadding="0"> <tr> <th scope="col"></th> </tr> <tr> <td> <!-----------------------Server Side Scripting begins---------------------------> <?php if ($action == "showprofile") { showProfile(); } else { if ($action == "editprofile") { editProfile(); } else { if ($action == "updateprofile") { updateProfile(); } else { verify(); } } } function verify() { global $tname, $t; include "dbconnect.php"; $query = "select * from team " . "where tname=\"{$tname}\""; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result);
//file_put_contents($userImageBaseURL.'/profile_pics/'.$image, $data); $IMAGEURL = $IMAGEURLBASEURL . $username . '/profile_pics/' . $image; $getUpdateProfilePic['profile_pic_f'] = $IMAGEURL; } //echo $getUpdateProfilePic['profile_pic_f']; $getUpdateProfilePic['pet_type_f'] = $petType; $getUpdateProfilePic['pet_name_f'] = $petName; $getUpdateProfilePic['pet_dob_f'] = $petDob; $getUpdateProfilePic['description_f'] = $petBio; $getUpdateProfilePic['species_f'] = $petSpecies; $updateResult = $rm->update_record($getUpdateProfilePic, 'user_details_t', 'user_id', $userId); if ($updateResult > 0) { $result = $rm->userRegisterSuccessJson($userId); return $result; } else { $result = $rm->userUpdateProfileFail(); return $result; } } // end of else first } else { $result = $rm->ssl_error(); return $result; } } else { $result = $rm->ssl_error(); return $result; } } echo editProfile();