From 9dace110aca713f4cfe9f129bb04ed8bd099bf28 Mon Sep 17 00:00:00 2001 From: Logan McInnis Date: Wed, 4 Dec 2019 16:42:08 -0500 Subject: [PATCH] rough code --- var/www/findFriend.php | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/var/www/findFriend.php b/var/www/findFriend.php index 702754b..a4e26f9 100644 --- a/var/www/findFriend.php +++ b/var/www/findFriend.php @@ -20,17 +20,17 @@ $sql_select = "SELECT count(username)"; $sql_from = "FROM contacts"; $sql_where = "WHERE username = input"; - $sql_statement = $sql_select." ".$sql_from." ".$sql_where.; - if(($db_connection->query($sql_statement) as $row) == 0) - //username doesn't exist + $sql_statement = $sql_select." ".$sql_from." ".$sql_where.""; + if(($db_connection->query($sql_statement)) == 0) + echo "username doesn't exist"; $sql_select = "SELECT count(username)"; $sql_from = "FROM friendList"; - $sql_where = "WHERE username = input and friend = ".$_SESSION["loggedInUser"].; - $sql_statement = $sql_select." ".$sql_from." ".$sql_where.; - if(($db_connection->query($sql_statement) as $row) == 0) + $sql_where = "WHERE username = input and friend = ".$_SESSION["loggedInUser"].""; + $sql_statement = $sql_select." ".$sql_from." ".$sql_where.""; + if(($db_connection->query($sql_statement)) == 0) { - $sql_statement = "UPDATE friendList SET confirm = true WHERE username = input and friend = ".$_SESSION["loggedInUser"].; + $sql_statement = "UPDATE friendList SET confirm = true WHERE username = input and friend = ".$_SESSION["loggedInUser"].""; $db_connection->query($sql_statement); $sql_statement = "INSERT INTO friendList VALUES (".$_SESSION["loggedInUser"].", input, true)"; $db_connection->query($sql_statement);