diff --git a/var/www/findFriend.html b/var/www/findFriend.html deleted file mode 100644 index 21cb8fb..0000000 --- a/var/www/findFriend.html +++ /dev/null @@ -1,14 +0,0 @@ - - - - - -

Heres Where you find other stupid people

- - - - diff --git a/var/www/findFriend.php b/var/www/findFriend.php new file mode 100644 index 0000000..702754b --- /dev/null +++ b/var/www/findFriend.php @@ -0,0 +1,55 @@ + + + + + + friendbook Find Friend + + + + + + + '; + echo "Find Friends:\n\n"; + $sql_select = "SELECT count(username)"; + $sql_from = "FROM contacts"; + $sql_where = "WHERE username = input"; + $sql_statement = $sql_select." ".$sql_from." ".$sql_where.; + if(($db_connection->query($sql_statement) as $row) == 0) + //username doesn't exist + + $sql_select = "SELECT count(username)"; + $sql_from = "FROM friendList"; + $sql_where = "WHERE username = input and friend = ".$_SESSION["loggedInUser"].; + $sql_statement = $sql_select." ".$sql_from." ".$sql_where.; + if(($db_connection->query($sql_statement) as $row) == 0) + { + $sql_statement = "UPDATE friendList SET confirm = true WHERE username = input and friend = ".$_SESSION["loggedInUser"].; + $db_connection->query($sql_statement); + $sql_statement = "INSERT INTO friendList VALUES (".$_SESSION["loggedInUser"].", input, true)"; + $db_connection->query($sql_statement); + } + else + { + $sql_statement = "INSERT INTO friendList VALUES (".$_SESSION["loggedInUser"].", input, false)"; + $db_connection->query($sql_statement); + } + + echo ''; + }catch(PDOException $e){ + echo "PDOException: ".$e->getMessage().PHP_EOL; + }catch(Exception $e){ + echo "Exception: ".$e->getMessage().PHP_EOL; + } + ?> + + +