From a68a1fd1a0dc6b24af0ff0953c8c72791793e33a Mon Sep 17 00:00:00 2001
From: Logan McInnis <logan.j.mcinnis@wmich.edu>
Date: Wed, 4 Dec 2019 16:27:12 -0500
Subject: [PATCH] rough code

---
 var/www/findFriend.html | 14 -----------
 var/www/findFriend.php  | 55 +++++++++++++++++++++++++++++++++++++++++
 2 files changed, 55 insertions(+), 14 deletions(-)
 delete mode 100644 var/www/findFriend.html
 create mode 100644 var/www/findFriend.php

diff --git a/var/www/findFriend.html b/var/www/findFriend.html
deleted file mode 100644
index 21cb8fb..0000000
--- a/var/www/findFriend.html
+++ /dev/null
@@ -1,14 +0,0 @@
-<!DOCTYPE html>
-<html>
-<body>
-<style>
-body {
-  background-color: #3B5998;
-}
-</style>
-
-<h2><font color="white">Heres Where you find other stupid people</h2>
-
-</body>
-</html>
-
diff --git a/var/www/findFriend.php b/var/www/findFriend.php
new file mode 100644
index 0000000..702754b
--- /dev/null
+++ b/var/www/findFriend.php
@@ -0,0 +1,55 @@
+<?php
+    require 'common.php';
+    require 'loginRequired.php';
+?>
+
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+    <head>
+        <title>friendbook Find Friend</title>
+        <meta http-equiv="content-type" content="text/html; charset=utf-8"/>
+        <link rel="stylesheet" type="text/css" href="styling.css">
+    </head>
+    <body>
+        <!--#include virtual="header.html" -->
+        <!--#include virtual="topNavBar.html" -->
+        <?php
+            try{
+                echo '<pre>';
+                echo "Find Friends:\n\n";
+                $sql_select = "SELECT count(username)";
+                $sql_from = "FROM contacts";
+                $sql_where = "WHERE username = input";
+                $sql_statement = $sql_select." ".$sql_from." ".$sql_where.;
+                if(($db_connection->query($sql_statement) as $row) == 0)
+                    //username doesn't exist
+                    
+                $sql_select = "SELECT count(username)";
+                $sql_from = "FROM friendList";
+                $sql_where = "WHERE username = input and friend = ".$_SESSION["loggedInUser"].;
+                $sql_statement = $sql_select." ".$sql_from." ".$sql_where.;
+                if(($db_connection->query($sql_statement) as $row) == 0)
+                {
+                    $sql_statement = "UPDATE friendList SET confirm = true WHERE username = input and friend = ".$_SESSION["loggedInUser"].;
+                    $db_connection->query($sql_statement);
+                    $sql_statement = "INSERT INTO friendList VALUES (".$_SESSION["loggedInUser"].", input, true)";
+                    $db_connection->query($sql_statement);
+                }
+                else
+                {
+                    $sql_statement = "INSERT INTO friendList VALUES (".$_SESSION["loggedInUser"].", input, false)";
+                    $db_connection->query($sql_statement);
+                }
+
+                echo '</pre>';
+            }catch(PDOException $e){
+                echo "PDOException: ".$e->getMessage().PHP_EOL;
+            }catch(Exception $e){
+                echo "Exception: ".$e->getMessage().PHP_EOL;
+            }
+        ?>
+    </body>
+</html>
+<?php
+    $db_connection = null;
+?>