<?php /*** begin our session ***/ session_start(); if (!isset($_SESSION['user_id'])) { header('Location:/secret_santa/controller/logout.php'); } if (isset($_POST["friendid"]) || isset($_POST["friendname"]) || isset($_POST["friendemail"])) { delete_friend($_POST["friendid"], $_POST["friendname"], $_POST["friendemail"]); } else { die("Solicitud no válida. Intentelo mas tarde"); } function delete_friend($friendid, $friendname, $friendemail) { try { require_once "../conexionDb.php"; $conn = new PDO("mysql:host={$mysql_hostname};dbname={$mysql_dbname}", $mysql_username, $mysql_password); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $stmt = $conn->prepare("DELETE FROM friend WHERE idfriend = :friend_id"); $stmt->bindParam(':friend_id', $friendid, PDO::PARAM_STR); $stmt->execute(); // require_once 'Mail.php'; // require_once 'Mail/mime.php'; // $destinario = $friendemail; // $from = '*****@*****.**'; // $asunto = 'Deleted from ' . $_SESSION['user_name'] . ' Secret Santa Game'; // $mensaje = '<html> // <head> // <title>'.$asunto.'</title> // </head>'. // "\n";
break; case 'get_requests': echo get_requests(); break; case 'accept_ignore_request': $friend_user_name = $_POST['username']; $note_id = $_POST['note_id']; if (isset($_POST['ignore']) && ($ignore = 'ignore')) { echo accept_ignore_request($friend_user_name, $note_id, $ignore); break; } echo accept_ignore_request($friend_user_name, $note_id); break; case 'get_all_friends': echo get_all_friends(); break; case 'delete_friend': $friend_user_name = $_POST['username']; echo delete_friend($friend_user_name); break; //ALL FRIENDS COUNT!!!! //ALL FRIENDS COUNT!!!! case 'get_new_friend_view': echo get_new_friend_view(); break; case 'autocomplete': $search_input = $_GET['search_input']; echo autocomplete_search($search_input); break; //default : redirect('../error.php'); }
public function delete_friend_request() { $result = ""; if (isset($_SESSION['user_id'])) { $user_id = $_SESSION['user_id']; } else { $user_id = 0; } $friend_id = $_POST["id"]; delete_friend($user_id, $friend_id); $this->http_response($result, 200); }
<?php require_once "../includes/session.php"; require_once "../includes/db_connection.php"; require_once "../includes/functions.php"; if (isset($_POST["submit"])) { $user_id = mysqli_real_escape_string($connection, $_POST["user_id"]); $friend_id_list = mysqli_real_escape_string($connection, $_POST["friend_id_list"]); $friend_id_array = explode(" ", $friend_id_list); if (check_existance_by_id("users", "id", $user_id)) { foreach ($friend_id_array as $id) { if (check_existance_by_id("users", "id", $id)) { delete_friend($user_id, $id); } } } }