<?php
session_start();
if (isset($_SESSION['userID'])) {
if ($_SERVER['REQUEST_METHOD'] == "POST") {
include 'class.php';
$user = new User($_SESSION['userID']);
$albumNo = $user->addAlbum($_POST['albumTitle'], $_POST['albumDesc']);
$albumInfo = $user->getAlbum($albumNo);
if (!file_exists('photo/' . $_SESSION['userID'] . '/' . $albumInfo['albumID'])) {
mkdir('photo/' . $_SESSION['userID'] . '/' . $albumInfo['albumID'], 0777, true);
//Create Directory
}
$mysqli = new mysqli('localhost', 'root', '', 'PixAlbums4U');
if ($mysqli->connect_error) {
die('Connect Error (' . $mysqli->connect_errno . ') ' . $mysqli->connect_error);
}
$sql = <<<SQL
INSERT INTO photo (UserID, AlbumID, PhotoName, Description, PhotoSize, PhotoDate, SourcePath) VALUES
(?,?,?,?,?,?,?)
SQL;
$stmt = $mysqli->prepare($sql);
$stmt->bind_param('ddssdss', $_SESSION['userID'], $albumInfo['albumID'], $photoName, $description, $photoSize, $photoDate, $sourcePath);
$mysqli->query("START TRANSACTION");
$j = 0;
for ($i = 0; $i < count($_POST['validPhoto']); $i++) {
if ($_POST['validPhoto'][$i]) {
$photoName = $_FILES['file']['name'][$i];
$description = $_POST['photoDesc'][$j];
$photoSize = $_FILES['file']['size'][$i];
if ($_POST['date'][$j] != "") {
$this->description = $description;
$this->photoDate = $photoDate;
}
}
if (isset($_POST['getUser'])) {
$user = new User($_POST['getUser']);
$statement = $user;
//$statement = $user->getUser();
} else {
if (isset($_POST['editUser'])) {
$user = new User($_POST['editUser']);
$statement = $user->editUser($_POST['username'], $_POST['fname'], $_POST['email'], $_POST['password']);
} else {
if (isset($_POST['getAlbum'])) {
$user = new User($_POST['getAlbum']);
$statement = $user->getAlbum($_POST['i']);
} else {
if (isset($_POST['editAlbum'])) {
$user = new User($_POST['editAlbum']);
$user->editAlbum($_POST['i'], $_POST['albumName'], $_POST['description']);
$statement = true;
} else {
if (isset($_POST['addAlbum'])) {
$user = new User($_POST['addAlbum']);
$statement = $user->addAlbum($_POST['albumName'], $_POST['description']);
} else {
if (isset($_POST['getPhoto'])) {
$user = new User($_POST['getPhoto']);
$statement = $user->getPhoto($_POST['i'], $_POST['j']);
} else {
if (isset($_POST['editPhoto'])) {
<?php
session_start();
if (isset($_SESSION['userID'])) {
$userInfo = json_decode(file_get_contents('photo/' . $_SESSION['userID'] . '/userInfo.json'), true);
$maxPhoto = 0;
for ($i = 0; $i < count($userInfo['album']); $i++) {
if ($maxPhoto < count($userInfo['album'][$i]['photo'])) {
$maxPhoto = count($userInfo['album'][$i]['photo']);
}
}
if ($_SERVER['REQUEST_METHOD'] == "POST") {
include 'class.php';
$user = new User($_SESSION['userID']);
$userInfo = $user->getUser();
$albumInfo = $user->getAlbum($_POST['editAlbumNo']);
for ($j = count($albumInfo['photo']) - 1; $j >= 0; $j--) {
if ($_POST['validPhoto'][$j] > 0) {
if ($_POST['photoDesc'][$j] != $albumInfo['photo'][$j]['description'] || $_POST['date'][$j] != str_ireplace(" ", "T", $albumInfo['photo'][$j]['photoDate'])) {
$user->editPhoto($_POST['editAlbumNo'], $j, $_POST['photoDesc'][$j], $_POST['date'][$j]);
}
} else {
if ($_POST['validPhoto'][$j] == 0) {
unlink($albumInfo['photo'][$j]['sourcePath']);
unlink('photo/' . $_SESSION['userID'] . '/' . $albumInfo['albumID'] . '/thumbnail/' . $albumInfo['photo'][$j]['photoName']);
$user->deletePhoto($_POST['editAlbumNo'], $j);
}
}
}
if ($albumInfo['albumName'] != $_POST['albumTitle'] || $albumInfo['description'] != $_POST['albumDesc']) {
$user->editAlbum($_POST['editAlbumNo'], $_POST['albumTitle'], $_POST['albumDesc']);
