public function execute(SuxxRequest $request, SuxxResponse $response)
{
$db = $this->factory->getDatabase(DSN);
$res = $db->query('select * from products limit %s, 3', $request->getValue('start', 0));
$response->products = $res->getAll();
return new SuxxStaticView(__DIR__ . $this->viewFile);
}
public function execute(SuxxRequest $request, SuxxResponse $response)
{
$db = $this->factory->getDatabase(DSN);
$res = $db->query('select * from products where PID="%s"', $request->getValue('pid'));
$response->product = $res->fetch_object();
$res = $db->query('select * from comments where PID="%s"', $request->getValue('pid'));
$response->comments = $res->getAll();
return new SuxxStaticView(__DIR__ . '/../pages/product.xhtml');
}
public function execute(SuxxRequest $request, SuxxResponse $response)
{
$db = $this->factory->getDatabase(DSN);
$picture = isset($_FILES['picture']) ? $_FILES['picture']['name'] : '';
$res = $db->query('insert into comments (PID,AUTHOR,COMMENT,PICTURE) values ("%s","%s","%s","%s")', $request->getValue('product'), $request->getValue('user')->NAME, $request->getValue('comment'), $picture);
if ($picture) {
$cid = $res->getInsertId();
$path = __DIR__ . '/../comments/' . $cid . '_' . $picture;
move_uploaded_file($_FILES['picture']['tmp_name'], $path);
}
header('Location: /suxx/product?pid=' . $request->getValue('product'), 302);
die;
}
public function execute(SuxxRequest $request, SuxxResponse $response)
{
$db = $this->factory->getDatabase(DSN);
if ($request->getValue('SuxxUser')) {
$_SESSION['user'] = unserialize($request->getValue('SuxxUser'));
} else {
$res = $db->query('select * from user where username="******" and passwd="%s"', $request->getValue('username'), $request->getValue('passwd'));
if ($res->num_rows != 1) {
return new SuxxStaticView(__DIR__ . '/../pages/loginfailed.xhtml');
}
$_SESSION['user'] = $res->fetch_object();
setcookie('SuxxUser', serialize($_SESSION['user']), time() + 60 * 60 * 24 * 31, '/');
}
header('Location: /suxx/home', 302);
die;
}
public function execute(SuxxRequest $request, SuxxResponse $response)
{
$db = $this->factory->getDatabase(DSN);
$res = $db->query('insert into user (USERNAME,PASSWD,EMAIL,NAME) values ("%s","%s","%s","%s")', $request->getValue('username'), $request->getValue('passwd'), $request->getValue('email'), $request->getValue('name'));
$msg = 'Welcome ' . $request->getValue('name') . "\n";
$msg .= 'Your Login: '******'username') . "\n";
$msg .= 'Your Password: '******'passwd') . "\n";
$msg .= "\n\nEnjoy your stay!";
//mail($request->getValue('email'), 'welcome to SuXX', $msg, 'From: housekeeping@suxx.mobile');
header('Location: /suxx/home?message=Welcome,%20please%20login!', 302);
die;
}
