$country = isset($_POST['n_caver_country']) ? $_POST['n_caver_country'] : ''; $contact = isset($_POST['n_caver_contact']) ? $_POST['n_caver_contact'] : ''; $register_language = isset($_POST['n_caver_language']) ? $_POST['n_caver_language'] : ''; if ($register_language == "" || $register_language == Select_default) { $register_language = $_SESSION['language']; } $alert_for_news = isset($_POST['n_caver_news']) ? $_POST['n_caver_news'] : ''; $latitude = isset($_POST['n_caver_latitude']) ? $_POST['n_caver_latitude'] : ''; $longitude = isset($_POST['n_caver_longitude']) ? $_POST['n_caver_longitude'] : ''; $default_lat = isset($_POST['n_caver_default_lat']) ? $_POST['n_caver_default_lat'] : ''; $default_lng = isset($_POST['n_caver_default_lng']) ? $_POST['n_caver_default_lng'] : ''; $default_zoom = isset($_POST['n_caver_default_zoom']) ? $_POST['n_caver_default_zoom'] : ''; //If it's not a reload if (!$reload) { //If the form is correctly filled if (formIsValid()) { $sql = "SELECT * FROM T_caver WHERE Login = "******"INSERT INTO `" . $_SESSION['Application_host'] . "`.`T_caver` "; $sql .= "(`Name`, `Surname`, `Login`, `Nickname`, `Password`, `Country`, `Contact`, `Date_inscription`, `Language`, `Contact_is_public`, `Alert_for_news`, `Latitude`, `Longitude`, `Default_latitude`, `Default_longitude`, `Default_zoom`, `Activation_code`)"; $sql .= " VALUES ("; $sql .= returnDefault($name, 'Name') . ", "; $sql .= returnDefault($surname, 'text') . ", "; $sql .= returnDefault($login, 'text') . ", "; if ($surname != "" && $name != "") { $sql .= returnDefault($surname . " " . $name, 'Name') . ", "; } else { $sql .= returnDefault($login, 'Name') . ", "; }
<?php include_once __DIR__ . '/pay_form.php'; include_once SRC_DIR . '/forms.php'; include_once SRC_DIR . '/database.php'; function addCash($connection, $userId, $sum) { $sql = 'UPDATE users SET cash = cash + ' . $sum . ' WHERE id = ' . $userId . ';'; mysqli_query($connection, $sql); return (bool) mysqli_affected_rows($connection); } return function (array $request) { $form = createPayForm(); formHandleRequest($form, $request); if (formIsValid($form)) { $vars = extractValues($form); $sum = (int) ((double) $vars['pay'] * 100); $user = currentUser(); $userId = (int) $user['id']; $connection = mappedConnection('users'); addCash($connection, $userId, $sum); return createResponse(); } return createResponse('', 400); };