public function editOne($oneidf, $descf, $is_itemf, $is_photof)
{
$dbConn = new DbConnection();
$connection = $dbConn->connectToDB();
$id = $oneidf;
/*
* Upis u photo tabelu
*/
// 1. prepared SQL statement
if ($sqlup = $connection->prepare("UPDATE photo SET description = ?, is_item = ?, is_photo = ? WHERE id = {$id}")) {
// 3. params
/*
* Postovano kroz ulazne parametre method-a *
*
* $oneid, $desc
*/
//$id = $oneid;
$desc = $descf;
$is_item = $is_itemf;
$is_photo = $is_photof;
//2. binding params
$sqlup->bind_param('sii', $desc, $is_item, $is_photo);
//4. execute statement
$sqlup->execute();
// 5. Pre close() koraci 3. i 4. mogu ici vise puta!
$sqlup->close();
printf("Izmenjeni podaci o fotki <b>" . $id . " " . $desc . " </b>uspesno upisani u bazu podataka.");
} else {
$error = $connection->errno . ' ' . $connection->error;
echo $error;
// 1054 Unknown column 'foo' in 'field list'
}
$sqledit = "SELECT * FROM photo WHERE id = {$id};";
if (!($resultedit = $connection->query($sqledit))) {
die('Ne mogu da izvrsim upit editPhoto 2 zbog [' . $connection->error . "]");
}
$rowedit = $resultedit->fetch_assoc();
return $rowedit;
}
if (isset($_SESSION['login'])) {
$id = $_SESSION['id'];
$name = $_SESSION['name'];
$is_admin = $_SESSION['is_admin'];
} else {
$is_admin = 0;
}
if ($_SESSION['is_admin'] == 1) {
echo "Dobro dosao {$_SESSION['name']} na stranicu {$_SERVER['PHP_SELF']}";
} else {
header("Location:ouroffer.php");
}
include "headeradmin.php";
include "connection/DbConnection.php";
$dbConn = new DbConnection();
$connection = $dbConn->connectToDB();
if ($_SERVER["REQUEST_METHOD"] == "POST") {
$id = $_POST['id'];
echo "Id iznosi: " . $_POST['id'];
$title = $_POST['title'];
$desc = $_POST['description'];
$price = $_POST['price'];
$image_url = $_POST['image_url'];
//$menu = $_POST['menu'];
if (isset($_POST['menu'])) {
$menu = 1;
} else {
$menu = 0;
}
//$today_menu = $_POST['today_menu'];
if (isset($_POST['today_menu'])) {
public function disableOrder($do)
{
$dbConn = new DbConnection();
$connection = $dbConn->connectToDB();
$dt = new DateTime();
$today = $dt->format('Y-m-d H:i:s');
$sqldo = "UPDATE userorder SET orderstatus = 'Otkazano', finished = '{$today}' WHERE checkorder_id = {$do}";
if (!($results = $connection->query($sqldo))) {
die("Postoji problem prilikom confirm update userorder tabele zbog: [" . $connection->error . "]");
}
if ($results > 0) {
print_r($results);
var_dump($results);
return $confirmorder = "Uspešno je otkazana Vaša porudžbina!";
} else {
echo "Nije pronadjen niti jedan zapis!";
}
}
public function get_fullname($uid)
{
$dbConn = new DbConnection();
$connection = $dbConn->connectToDB();
$sql3 = "SELECT fullname FROM users WHERE id = {$uid}";
if (!($result = $connection->query($sql3))) {
die('Ne mogu da izvrsim upit zbog [' . $connection->error . "]");
}
$resultrow = $result->fetch_assoc();
echo $resultrow['name'];
}
public function deleteUser($id_user)
{
$dbConnDel = new DbConnection();
$connection = $dbConnDel->connectToDB();
$sqldelstaff = "DELETE FROM staff WHERE user_id = (SELECT id FROM user WHERE id = {$id_user});";
if (!($resultsstaff = $connection->query($sqldelstaff))) {
die('Ne mogu da izvrsim upit zbog [' . $connection->error . "]");
}
$sqldel = "DELETE FROM user WHERE id = {$id_user}";
if (!($results = $connection->query($sqldel))) {
die('Ne mogu da izvrsim upit zbog [' . $connection->error . "]");
}
}
