<?php header('Access-Control-Allow-Origin: *'); header('Access-Control-Allow-Methods: POST, GET, OPTIONS'); header('Access-Control-Max-Age: 1000'); require "libs/config.php"; require "libs/db_functions.php"; require "libs/common_functions.php"; require "libs/custom_functions.php"; $id = (int) isset($_REQUEST['id']) ? $_REQUEST['id'] : 0; $userid = (int) isset($_REQUEST['userid']) ? $_REQUEST['userid'] : 0; $info = isset($_REQUEST['info']) ? $_REQUEST['info'] : ''; $start = microtime(true); CONNECT_DB(); mysql_query("SET NAMES utf8"); update_userinfo($userid, $info); function update_userinfo($userid, $info) { $returnarray = array('status' => 500, 'content' => 'Update info fail!'); $userdata = json_decode($info); $full_name = clean_text($userdata->{'fullname'}); $id_pwc = (int) clean_text($userdata->{'pcid'}); $pcname = clean_text($userdata->{'pcname'}); $id_investor = (int) clean_text($userdata->{'investorid'}); $id_sub = (int) clean_text($userdata->{'subid'}); //$password = clean_text($userdata ->{'password'}); $office_name = clean_text($userdata->{'officename'}); //$department_name = clean_text($userdata ->{'fullname'}); $phone_number = clean_text($userdata->{'phone'}); $email = clean_text($userdata->{'email'}); $enable = (int) clean_text($userdata->{'enable'});
alert('Passwords do not match!'); else change_password($_POST['newpass']); } if(isset($_POST['editform-submit'])) { // user has at least tried to submit data $userinfo = array(); $userinfo['user_id'] = $_SESSION['user_id']; $userinfo['email'] = $_POST['email']; $userinfo['phone'] = $_POST['phone']; $userinfo['address'] = $_POST['address']; if(validate_data($userinfo)) { // data checks out update_userinfo($userinfo); $userinfo = get_user_info(); } else { // data doesn't check out $help=true; } } $userinfo = get_user_info($_SESSION['user_id']); open_page("Profile"); draw_page(); close_page();