function my_unescape($ar) { if (is_array($ar)) { foreach ($ar as $i => $v) { $ar[$i] = my_unescape($v); } } else { $ar = convert_unicode($ar); } return $ar; }
protected function action_ajax_change_profile() { $formData = my_strip_tags(my_unescape($_REQUEST["formData"])); if (!$formData || !is_array($formData)) { throw new Exception("<!--[No_formdata]-->"); } if (!$formData["birth_day"] || !$formData["birth_month"] || !$formData["birth_year"]) { throw new Exception("<!--[Enter_birth_date]-->"); } if ((!$formData["fname"] || !$formData["lname"]) && !$formData["nick"]) { throw new Exception("<!--[Enter_name_or_nick]-->"); } if ($formData["nick"] && DB::f1("select * from users where nick=:nick and id!=:id", array("nick" => $formData["nick"], "id" => $this->app->getUser("id")))) { throw new Exception("<!--[This_nick_is_already_taken]-->"); } $formData["sex"] = (int) $formData["sex"]; $query = "update users set fname=:fname,lname=:lname,about=:about,contact_email=:contact_email,nick=:nick,birth=:birth,sex=:sex where id=:id"; DB::q($query, array("fname" => $formData["fname"], "lname" => $formData["lname"], "about" => $formData["about"], "contact_email" => $formData["contact_email"], "nick" => $formData["nick"], "birth" => $formData["birth_year"] . "-" . $formData["birth_month"] . "-" . $formData["birth_day"], "sex" => $formData["sex"], "id" => $this->app->getUser("id"))); $success = "<!--[Changes_saved]-->"; if ($formData["sex"] == 1 && $this->app->getUser("sex") == 2) { $success = "<!--[Oh_man_howre_you_feel]-->"; } if ($formData["sex"] == 2 && $this->app->getUser("sex") == 1) { $success = "<!--[Oh_woman_howre_you_feel]-->"; } return array("success" => $success); }