<?php $path2root = "../.."; require_once "{$path2root}/assets/inc/session_timeout.inc.php"; require_once "{$path2root}/assets/inc/user_funcs.inc.php"; if (isset($_SESSION['username']) && queryUserName($_GET['username'])) { $loggedin = true; $username = $_SESSION['username']; $user_id = queryUserId($username); $conn = dbConnect('read'); $sql = "SELECT * FROM users WHERE user_id = '" . $user_id . "'"; $result = $conn->query($sql) or die(mysqli_error($conn)); $row = $result->fetch_assoc(); try { include "{$path2root}/assets/inc/title.inc.php"; //Update General Info if (isset($_REQUEST['update_info'])) { $email = trim($_REQUEST['email']); $website = trim($_REQUEST['website']); $about = trim($_REQUEST['about']); $user = trim($_REQUEST['user']); $twitter = trim($_REQUEST['twitter']); include "{$path2root}/assets/inc/update_user.inc.php"; } // Update Password if (isset($_POST['update_pass'])) { $password = trim($_POST['pwd']); $retyped = trim($_POST['conf_pwd']); include "{$path2root}/assets/inc/update_password.inc.php"; } // Update Privacy
<?php // Page Variables $username = queryUserName($_GET['username']); $user_id = queryUserId($username); // create database connection $conn = dbConnect('read'); $sql = "SELECT * FROM users WHERE username = '******'"; $result = $conn->query($sql) or die(mysqli_error($conn)); $row = $result->fetch_assoc(); function queryUserId($username) { require_once "connection.inc.php"; $conn = dbConnect('read'); $sql = "SELECT * FROM users WHERE username = '******'"; $result = $conn->query($sql) or die(mysqli_error($conn)); $row = $result->fetch_assoc(); return $row['user_id']; } function queryUserName($username) { require_once "connection.inc.php"; $conn = dbConnect('read'); $sql = "SELECT * FROM users WHERE username = '******'"; $result = $conn->query($sql) or die(mysqli_error($conn)); $row = $result->fetch_assoc(); return $row['username']; } function queryUser($user_id) { require_once "connection.inc.php";