Nettoyage du code, fix de petits bugs.
Co-authored-by: Charpentier Juliette <juliette.charpentier1@etu.u-pec.fr
This commit is contained in:
@@ -1,10 +1,9 @@
|
||||
<?php
|
||||
require_once $_SERVER['DOCUMENT_ROOT'] . '/tools/dbConnect.php';
|
||||
session_start();
|
||||
|
||||
if (isset($_COOKIE['userData'])) {
|
||||
$userDataEncoded = $_COOKIE['userData'];
|
||||
$userData = json_decode($userDataEncoded, true); // 'true' pour obtenir un tableau associatif
|
||||
$userData = json_decode($userDataEncoded, true);
|
||||
|
||||
$email = $userData['email'];
|
||||
$name = $userData['name'];
|
||||
@@ -16,45 +15,34 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
|
||||
$userName = htmlspecialchars($_POST["name"]);
|
||||
$userFamilyName = htmlspecialchars($_POST["family_name"]);
|
||||
$userEmail = htmlspecialchars($_POST["email"]);
|
||||
$userPassword = isset($_POST["password"]) ? htmlspecialchars($_POST["password"]) : "";
|
||||
$userUserRole = htmlspecialchars($_POST["role"]);
|
||||
$hashedPassword = sha1($userPassword);
|
||||
|
||||
$query = "SELECT mail FROM user WHERE mail = '$userEmail'";
|
||||
$result = mysqli_query($db, $query);
|
||||
|
||||
$row = mysqli_fetch_assoc($result);
|
||||
|
||||
if ($row) {
|
||||
die("<p>Un utilisateur avec cette adresse mail existe déjà.</p>");
|
||||
}
|
||||
}
|
||||
|
||||
if (!$result) {
|
||||
die("Erreur lors de l'exécution de la requête.");
|
||||
}
|
||||
|
||||
$editUser = "UPDATE `user` SET `mail`='$userEmail', `name`='$userName', `family_name`='$userFamilyName', `role`='$userUserRole' WHERE `mail`='$userEmail'";
|
||||
$stmt = $db->prepare("UPDATE `user` SET `name`=?, `family_name`=?, `role`=? WHERE `mail`=?");
|
||||
$stmt->bind_param("ssss", $userName, $userFamilyName, $userUserRole, $userEmail);
|
||||
$resultEditUser = $stmt->execute();
|
||||
|
||||
$resultEditUser = mysqli_query($db, $editUser);
|
||||
if (!$resultEditUser) {
|
||||
echo "<p class='text'>Erreur lors de l'exécution de la requête.</p>";
|
||||
} else {
|
||||
if (mysqli_affected_rows($db) > 0) {
|
||||
echo "<p class='text'>Utilisateur créé avec succès. </p>";
|
||||
if ($stmt->affected_rows > 0) {
|
||||
echo "<p class='text'>L'utilisateur a bien été modifié.</p>";
|
||||
|
||||
echo "<p class='text'>Prénom : " . $userName . "</p>";
|
||||
echo "<p class='text'>Nom : " . $userFamilyName . "</p>";
|
||||
echo "<p class='text'>Adresse mail : " . $userEmail . "</p>";
|
||||
echo "<p class='text'>Mot de passe : " . $userPassword . "</p>";
|
||||
echo "<p class='text'>Mot de passe hashé : " . $hashedPassword . "</p>";
|
||||
echo "<p class='text'>Rôle : " . $userUserRole . "</p>";
|
||||
include ($_SERVER['DOCUMENT_ROOT'] . '/tools/discordWebhookRegister.php');
|
||||
header("Location: /admin/users/edit?usermail=$userEmail");
|
||||
$stmt->close();
|
||||
header("Location: /admin/users/edit?usermail=$userEmail&success=true");
|
||||
die();
|
||||
} else {
|
||||
echo "<p class='text'>Aucun utilisateur n\'a été ajouté.</p>";
|
||||
echo "<p class='text'>Aucune modification n'a été effectuée.</p>";
|
||||
$stmt->close();
|
||||
header("Location: /admin/users/edit?usermail=$userEmail&success=false");
|
||||
die();
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
?>
|
||||
Reference in New Issue
Block a user