/** * @param $id * @param int $fetch * @return array */ public function oneRow($id, $fetch = DB::FETCH_ASSOC) { $sql = 'SELECT * FROM ' . $this->tableName . ' WHERE ' . $this->primaryKey . '=?'; return DB::oneRow($this->db, $sql, $id, $fetch); }
public function editAccountSave() { $uid = Request::get('fldUserID', G::get('fldUserID')); $messages = []; $sqls = []; $params = []; $pw = Request::get('fldPassword'); $pwCheck = Request::get('fldPassword_CHK'); $pwOld = Request::get('fldPassword_OLD'); if ($pw != '' && $pwCheck != '') { if (!$this->checkOldPassword($uid, $pwOld)) { $messages[] = '<font color=red>Old Password is not correct<font>'; } else { if ($pw != $pwCheck) { $messages[] = '<font color=red>Passwords are not the same<font>'; } else { if ($pwOld == $pw) { $messages[] = '<font color=red>No Change, old and new passwords same<font>'; } else { if (DB::driver() == DB::MYSQL) { $sqls[] = 'UPDATE tblUser SET fldPassword=PASSWORD(?),fldModified=UNIX_TIMESTAMP() WHERE fldUserID=?'; $params[] = [$pw, $uid]; } else { $sqls[] = 'UPDATE tblUser SET fldPassword=?,fldModified=strftime(\'%s\',\'now\') WHERE fldUserID=?'; $params[] = [hash('md5', $pw), $uid]; } } } } } $sqls[] = 'UPDATE tblUser SET fldSalutation=?,fldModified=' . time() . ' WHERE fldUserID=?'; $params[] = [Request::get('fldSalutation'), $uid]; if (Request::get('fldFirstName') == '') { $messages[] = '<font color=red>First name cannot be empty<font>'; } else { $sqls[] = 'UPDATE tblUser SET fldFirstName=?,fldModified=' . time() . ' WHERE fldUserID=?'; $params[] = [Request::get('fldFirstName'), $uid]; } if (Request::get('fldLastName') == '') { $messages[] = '<font color=red>Last name cannot be empty<font>'; } else { $sqls[] = 'UPDATE tblUser SET fldLastName=?,fldModified=' . time() . ' WHERE fldUserID=?'; $params[] = [Request::get('fldLastName'), $uid]; } if (Request::get('fldTimeZone') != '') { $sqls[] = 'UPDATE tblUser SET fldTimeZone=?,fldModified=' . time() . ' WHERE fldUserID=?'; $params[] = [Request::get('fldTimeZone'), $uid]; } if (Request::get('fldUser') != '') { $sqls[] = 'UPDATE tblUser SET fldUser=?,fldModified=' . time() . ' WHERE fldUserID=?'; $params[] = [Request::get('fldUser'), $uid]; } if (Request::get('fldLevel') != '') { $sqls[] = 'UPDATE tblUser SET fldLevel=?,fldModified=' . time() . ' WHERE fldUserID=?'; $params[] = [Request::get('fldLevel'), $uid]; } if (count($messages) != 0) { return join('<br>', $messages) . $this->editAccount(); } else { foreach ($sqls as $idx => $sql) { DB::exec(DB::DEF, $sql, $params[$idx]); } if ($uid == G::get('fldUserID')) { foreach (DB::oneRow(DB::DEF, 'SELECT * FROM tblUser WHERE fldUserID=?', $uid) as $key => $val) { G::set($key, $val); } } return 'Sucessfully updated user account details' . $this->editAccount(); } }