function create_poll() { if (check_poll($_POST['name'])) { if (empty($_FILES['fileToUpload']['name'])) { $image = "default.jpg"; } else { include_once "upload.php"; $image = $_FILES["fileToUpload"]["name"]; } if (isset($_SESSION['Msg'])) { echo $_SESSION['Msg']; } else { global $db; if (isset($_POST['private'])) { if (!isset($_SESSION['username'])) { $_SESSION['Msg'] = "Must login first to create a private poll"; header('Location: login_body.php'); die("Must login first to create a poll"); } $private = 1; } else { $private = 0; } $chk = $db->prepare('SELECT * FROM User WHERE user = ?'); $chk->execute(array($_SESSION['username'])); if (!($row = $chk->fetch())) { $idUser = 0; } else { $idUser = $row['idUser']; } $questions = add_question(); $ins = $db->prepare('INSERT INTO Poll (idUser,name,image,private) Values (?, ?, ?, ?)'); $name = $_POST['name']; $ins->execute(array($idUser, $name, $image, $private)); echo $image; $chk = $db->prepare('SELECT * FROM Poll WHERE name = ?'); $chk->execute(array($name)); $row = $chk->fetch(); echo $row['idPoll']; foreach ($questions as $question) { insert($row['idPoll'], $question); } } } else { $_SESSION['Msg'] = "That Poll already exists, please choose another name"; } }
function change_name($idPoll) { if (empty($_POST['name'])) { //Doesen't want to change Poll Name return; } else { if (!check_poll($name)) { //'Name already used' return false; } else { $name = $_POST['name']; } } global $db; $upd = $db->prepare('UPDATE Poll SET name=? WHERE idPoll=?'); $upd->execute(array($name, $idPoll)); }