William/WMU-CS4430-Project
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

final

Browse Source
This commit is contained in:
Logan McInnis
2019-12-04 20:56:23 -05:00
parent 4e1ecb506f
commit 05bc90753f
1 changed files with 15 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
var/www/findFriend.php
View File

@@ -23,9 +23,10 @@
$sql_from = "FROM contacts"; $sql_from = "FROM contacts";
$sql_where = "WHERE username = '".$_POST['friend']."'"; $sql_where = "WHERE username = '".$_POST['friend']."'";
$sql_statement = $sql_select." ".$sql_from." ".$sql_where.""; $sql_statement = $sql_select." ".$sql_from." ".$sql_where."";
$result2 = $db_connection->query($sql_statement); $num = 0;
$result = $result2->fetchAll(); foreach($db_connection->query($sql_statement) as $row)
if(mysqli_num_rows($result) == 0) $num = 1;
if($num == 0)
echo "username doesn't exist"; echo "username doesn't exist";
else else
{ {
@@ -33,9 +34,10 @@
$sql_from = "FROM friendList"; $sql_from = "FROM friendList";
$sql_where = "WHERE username = '".$_SESSION["loggedInUser"]."' and friend = '".$_POST['friend']."'"; $sql_where = "WHERE username = '".$_SESSION["loggedInUser"]."' and friend = '".$_POST['friend']."'";
$sql_statement = $sql_select." ".$sql_from." ".$sql_where.""; $sql_statement = $sql_select." ".$sql_from." ".$sql_where."";
$result2 = $db_connection->query($sql_statement); $num = 0;
$result = $result2->fetchAll(); foreach($db_connection->query($sql_statement) as $row)
if(mysqli_num_rows($result) == 1) $num = 1;
if($num == 1)
echo "you already sent a request"; echo "you already sent a request";
else else
{ {
@@ -43,18 +45,19 @@
$sql_from = "FROM friendList"; $sql_from = "FROM friendList";
$sql_where = "WHERE username = '".$_POST['friend']."' and friend = '".$_SESSION["loggedInUser"]."'"; $sql_where = "WHERE username = '".$_POST['friend']."' and friend = '".$_SESSION["loggedInUser"]."'";
$sql_statement = $sql_select." ".$sql_from." ".$sql_where.""; $sql_statement = $sql_select." ".$sql_from." ".$sql_where."";
$result2 = $db_connection->query($sql_statement); $num = 0;
$result = $result2->fetchAll(); foreach($db_connection->query($sql_statement) as $row)
if(mysqli_num_rows($result) == 1) $num = 1;
if($num == 1)
{ {
$sql_statement = "UPDATE friendList SET confirm = 'true' WHERE username = '".$_POST['friend']."' and friend = '".$_SESSION["loggedInUser"]."'"; $sql_statement = "UPDATE friendList SET confirm = true WHERE username = '".$_POST['friend']."' and friend = '".$_SESSION["loggedInUser"]."'";
$db_connection->query($sql_statement); $db_connection->query($sql_statement);
$sql_statement = "INSERT INTO friendList VALUES ('".$_SESSION["loggedInUser"]."', '".$_POST['friend']."', 'true')"; $sql_statement = "INSERT INTO friendList VALUES ('".$_SESSION["loggedInUser"]."', '".$_POST['friend']."', true)";
$db_connection->query($sql_statement); $db_connection->query($sql_statement);
} }
else else
{ {
$sql_statement = "INSERT INTO friendList VALUES ('".$_SESSION["loggedInUser"]."', '".$_POST['friend']."', 'false')"; $sql_statement = "INSERT INTO friendList VALUES ('".$_SESSION["loggedInUser"]."', '".$_POST['friend']."', false)";
$db_connection->query($sql_statement); $db_connection->query($sql_statement);
} }
} }