<?php

require_once 'includes/all.php';

if (!is_logged_in()) {

header("Location: signin.php");

exit(0);

}

$db = connect_db();

$user = get_user($db, get_logged_in_user_id());

if (!$user) {

header('Status: 404');

die('no such user');

}

$errors = array();

$name = $user['name'];

$phone = $user['phone'];

if ($_SERVER['REQUEST_METHOD'] == 'POST') {

if ($_REQUEST["collegeselect"] === "") {

$errors['college'] = "Please choose college";

} elseif ($_REQUEST["campus"] === "") {

$errors['campus'] = "Please choose campus";

}

if ($_REQUEST['name'] !== '') {

$name = $_REQUEST["name"];

}

if ($_REQUEST['phone'] !== '') {

$phone = $_REQUEST['phone'];

}

if (!preg_match('/^[0-9\-\+() ]*$/', $phone)) {

$errors['phone'] = 'Please enter a valid phone number';

}

if (!count($errors)) {

$campus_id = $_REQUEST['campus'];

// Look up the college

$stmt = $db->prepare("SELECT id FROM colleges WHERE id = ?");

$stmt->execute(array($_REQUEST['collegeselect']));

$row = $stmt->fetch();

if ($row === false) {

die("invalid college");

}

$college_id = $row[0];

$stmt = $db->prepare("

UPDATE users SET

name = :name,

phone = :phone,

college_id = :college_id,

campus_id = :campus_id

WHERE id=:user_id");

$stmt->bindValue("name", $name);

$stmt->bindValue("phone", $phone);

$stmt->bindValue("college_id", $college_id);

$stmt->bindValue("campus_id", $campus_id);

$stmt->bindValue("user_id", $user['id']);

$stmt->execute();

header('Location: profile.php?id='.$user['id']);

exit(0);

}

}

function has_error($name) {

}

function show_error($name) {

}

?>

<!DOCTYPE html>

<html>

<head>

<title>Profile Edit | Study Group Finder</title>

<?php include 'includes/_head.html' ?>

<script src="js/jquery-1.12.1.min.js"></script>

<script src="js/collapse.js"></script>

</head>

<body>

<?php include 'includes/_nav.php' ?>

<?php

if(isset($_SESSION["flash_success"])) {

foreach ($_SESSION['flash_success'] as $msg) {

echo '<div class="alert alert-success">'.htmlspecialchars($msg).'</div>';

}

unset($_SESSION["flash_success"]);

}

if(isset($_SESSION["flash_errors"])){

foreach ($_SESSION['flash_errors'] as $msg) {

echo '<div class="alert alert-warning">'.htmlspecialchars($msg).'</div>';

}

unset($_SESSION["flash_errors"]);

}

?>

<div class="breadcrumbs">

<a href="index.php">Home</a>

» <a href="profile.php?id=<?= $user['id'] ?>">Your Profile</a>

» Edit

</div>

<h1> Your Profile </h1>

<p> Please fill out this information </p>

<div class="row">

<div class="col-md-6">

<form action="" method="POST">

<div class="row">

<div class="form-group col-md-6">

<label for="input-name">Name</label>

<input id="input-name" type='text' name='name' class='form-control' value="<?= htmlspecialchars($name) ?>">

</div>

<div class="form-group col-md-6 <?= has_error('phone') ?>">

<label for="input-phone">Phone</label>

<input id="input-name" type='text' name='phone' class='form-control' value="<?= htmlspecialchars($phone) ?>">

<?php show_error('phone') ?>

</div>

</div>

<div class='row'>

<div class='form-group col-md-6 <?= has_error('college') ?>'>

<label>College</label>

<select name='collegeselect' class='form-control'>

<?php

echo "<option value=''> Select College </option>";

$q = $db->query("SELECT id, name FROM colleges ORDER BY name");

foreach ($q as $college) {

echo '<option value="'.htmlspecialchars($college['id']).'" ';

if ($user['college_id'] === $college['id']) {

echo "selected";

}

echo ">".htmlspecialchars($college['name'])."</option>\n";

}

?>

</select>

<?php show_error('college') ?>

</div>

<div class='form-group col-md-6 <?= has_error('campus') ?>'>

<label>Campus</label>

<select name='campus' class='form-control'>

<option value=""> Select Campus </option>

<?php

echo "<option value='1' ";

if ($user['campus_id'] == 1) {

echo "selected='selected'";

}

echo "> Corvallis (Main)</option>";

echo "<option value='2' ";

if ($user['campus_id'] == 2) {

echo "selected='selected'";

}

echo "> Cascades </option>";

echo "<option value='3' ";

if ($user['campus_id'] == 3) {

echo "selected='selected'";

}

echo "> Online </option>";

?>

</select>

<?php show_error('campus') ?>

</div>

</div>

<div class="row">

<div class="col-md-12">

<input type='submit' class="btn btn-success" value="Save">

<a class="btn btn-danger" href="profile.php?id=<?= $user['id'] ?>">Cancel</a>

</div>

</div>

</form>

</div>

<div class="col-md-6">

<h2>Your Profile Picture</h2>

<?php

if ($user['pic_id']) {

echo '<img src="pic_display.php?id='.$user['id'].'" height="250px" width="250px" class="img-rounded">';

} else {

echo "<p>You haven't uploaded a picture yet</p>";

}

?>

<form action='upload.php' name='flpd' role='form' method=post enctype=multipart/form-data>

<div class='form-group'>

<input type='file' name='fileupload'>

<p class='help-block'>Supported File Types: JPEG, JPG, GIF, PNG, less than 1 MB </p>

</div>

<div class="form-group">

<input type='submit' class='btn btn-primary' name='filesub' value='UPLOAD'>

</div>

</form>

</div>

<div class="col-md-6">

<p>

<h3>Password Change</h3>

<button data-toggle="collapse" data-target="#password" class="btn btn-primary">Change Password</button>

<div id="password" class="collapse">

<form action="passchange.php" name="passwordChange" role="form" method=post>

<input type="password" id="oldPassword" name="oldPassword" class="form-control" placeholder="Old Password" required onchange="form.passwordConfirm.pattern = this.value.replace(/[\-\[\]\/\{\}\(\)\*\+\?\.\\\^\$\|]/g, &quot;\\$&&quot;);">

<input type="password" id="newPassword" name="newPassword" class="form-control" placeholder="New Password" required onchange="form.passwordConfirm.pattern = this.value.replace(/[\-\[\]\/\{\}\(\)\*\+\?\.\\\^\$\|]/g, &quot;\\$&&quot;);">

<button type="submit">Go</button>

</form>

</div>

</p>

</div>

</div>

<?php include 'includes/_footer.php';?>

</body>

</html>