private function isMaintenanceNeeded() { global $config; global $db; // TODO: remove this loading after legacy maintenance code has been deleted if (!isset($db)) { require_once dirname(dirname(dirname(__FILE__))) . '/classes/config.php'; $config = new config(); require_once dirname(dirname(dirname(__FILE__))) . '/classes/db.php'; $db = new database(); } $this->lockTable('misc_data'); $today = date('Y-m-d'); $last_maintenance = '0000-00-0000'; // check last time where maintenance was performed $query = $db->SQL('SELECT `last_maintenance` FROM `misc_data` LIMIT 1'); $lastMaintenanceSaved = false; while ($row = $db->fetchRow($query)) { $lastMaintenanceSaved = true; if (isset($row['last_maintenance'])) { $last_maintenance = $row['last_maintenance']; } } $db->free($query); // save new maintenance timestamp if ($lastMaintenanceSaved) { $query = $db->prepare('UPDATE `misc_data` SET `last_maintenance`=?'); $db->execute($query, $today); $db->free($query); } else { $query = $db->prepare('INSERT INTO `misc_data` (`last_maintenance`) VALUES (?)'); $db->execute($query, $today); $db->free($query); } $this->unlockTables(); // daily maintenance return strcasecmp($today, $last_maintenance) !== 0; }
function getUserIdFromUsername($username) { $db = new database(); $db->pick_db("workoutlog"); if ($stmt = $db->prepare("SELECT UserId FROM tbl_workoutlog_users WHERE UserName = ?")) { $stmt->bind_param('s', $username); $stmt->execute(); $stmt->bind_result($userId); $stmt->fetch(); $result = $userId; } $db->disconnect(); return isset($result) ? $result : null; }
function getLastExamDateForAllContacts($UserEmail) { //Returns an array of email -> last date //First is the user, then all contacts $db = new database(); $db->pick_db("codersvscancer"); if ($stmt = $db->prepare("SELECT ContactEmail FROM tbl_contacts WHERE UserEmail = ?")) { $stmt->bind_param('s', $UserEmail); $stmt->execute(); $stmt->bind_result($row); $contacts = array(); while ($stmt->fetch()) { array_push($contacts, $row); } } $result[$UserEmail] = getLastExamDateForSingleUser($UserEmail, $db); foreach ($contacts as $contact) { $result[$contact] = getLastExamDateForSingleUser($contact, $db); } $db->disconnect(); return json_encode($result, JSON_PRETTY_PRINT); }
<?php include "Includes/databaseClassMySQLi.php"; if (isset($_POST["email"]) && isset($_POST["password"])) { $db = new database(); $db->pick_db("codersvscancer"); $stmt = $db->prepare("SELECT Password FROM tbl_users WHERE UserEmail = ?"); $stmt->bind_param('s', $_POST["email"]); $stmt->execute(); $stmt->bind_result($passHash); $stmt->fetch(); if (password_verify($_POST["password"], $passHash)) { //User/Pass combo valid session_start(); $_SESSION["UserEmail"] = $_POST["email"]; $result = true; } } echo isset($result) ? $result : false;
<?php include "Includes/databaseClassMySQLi.php"; if (isset($_POST["username"]) && isset($_POST["password"])) { $encryptedPass = password_hash($_POST["password"], PASSWORD_DEFAULT); $db = new database(); $db->pick_db("workoutlog"); if ($stmt = $db->prepare("INSERT INTO tbl_workoutlog_users (UserName, Password) VALUES (?,?)")) { $stmt->bind_param('ss', $_POST["username"], $encryptedPass); $stmt->execute(); if ($stmt->affected_rows == 1) { //Account successfully created, now log the person in session_start(); $_SESSION["username"] = $_POST["username"]; echo true; } } }
<?php include "Includes/databaseClassMySQLi.php"; if (isset($_POST["username"]) && isset($_POST["password"])) { $db = new database(); $db->pick_db("workoutlog"); $query = "SELECT Password FROM tbl_workoutlog_users WHERE UserName = '******'"; $res = $db->send_sql($query); $stmt = $db->prepare("SELECT Password FROM tbl_workoutlog_users WHERE UserName = ?"); $stmt->bind_param('s', $_POST["username"]); $stmt->execute(); $stmt->bind_result($passHash); $stmt->fetch(); if (password_verify($_POST["password"], $passHash)) { //User/Pass combo valid session_start(); $_SESSION["username"] = $_POST["username"]; $result = true; } } echo isset($result) ? $result : false;
<?php include "Includes/databaseClassMySQLi.php"; if (isset($_POST["displayName"]) && isset($_POST["email"]) && isset($_POST["password"])) { $encryptedPass = password_hash($_POST["password"], PASSWORD_DEFAULT); $db = new database(); $db->pick_db("codersvscancer"); if ($stmt = $db->prepare("INSERT INTO tbl_users (DisplayName, UserEmail, Password) VALUES (?,?,?)")) { $stmt->bind_param('sss', $_POST["displayName"], $_POST["email"], $encryptedPass); $stmt->execute(); if ($stmt->affected_rows == 1) { //Account successfully created, now log the person in session_start(); $_SESSION["UserEmail"] = $_POST["email"]; echo true; } } }
<?php include "Includes/databaseClassMySQLi.php"; session_start(); if (isset($_POST["email"]) && isset($_SESSION["UserEmail"])) { $db = new database(); $db->pick_db("codersvscancer"); if ($stmt = $db->prepare("INSERT INTO tbl_contacts (ContactEmail, UserEmail) VALUES (?,?)")) { $stmt->bind_param('ss', $_POST["email"], $_SESSION["UserEmail"]); $stmt->execute(); if ($stmt->affected_rows == 1) { //Contact successfully created echo true; } } }
<?php session_start(); include "Includes/databaseClassMySQLi.php"; include "Includes/commonFuncs.php"; if (isset($_POST["exercises"]) && isset($_POST["date"]) && isset($_SESSION["username"])) { $exercises = $_POST["exercises"]; $date = $_POST["date"]; $username = $_SESSION["username"]; $db = new database(); $db->pick_db("workoutlog"); $userId = getUserIdFromUsername($username); if ($userId != null) { //Add workout to tbl_workoutlog_workout, get workoutId $stmt = $db->prepare("INSERT INTO tbl_workoutlog_workout (UserId, WorkoutDate) VALUES (?, STR_TO_DATE(?, '%Y-%m-%d'))"); $stmt->bind_param('is', $userId, $date); $stmt->execute(); if ($stmt->affected_rows == 1) { $stmt->free_result(); $res = $db->send_sql("SELECT LAST_INSERT_ID() AS Id"); if ($res->num_rows > 0) { $row = $res->fetch_assoc(); $workoutId = $row['Id']; foreach ($exercises as $exercise) { //Add each exercise to tbl_WorkoutLog_Exercise linking to the workoutId $stmt = $db->prepare("SELECT ExerciseNameId FROM tbl_workoutlog_exercisename WHERE ExerciseName = ?"); $stmt->bind_param('s', $exercise['name']); $stmt->execute(); $stmt->bind_result($exerciseNameId); $stmt->fetch(); $stmt->free_result();
/** * Delete entry. * *This function place the url into a delete query. * * @param database $db * @param string $url * @return mixed */ function deleteEntry($db, $url) { $sql = "DELETE FROM entries WHERE url=? LIMIT 1"; $stmt = $db->prepare($sql); return $stmt->execute(array($url)); }