From b134b8d8aaa193c6097f034e08fe8d54e51eabab Mon Sep 17 00:00:00 2001 From: h5p9sl <21267024+h5p9sl@users.noreply.github.com> Date: Sun, 24 Jan 2021 10:52:26 -0700 Subject: Add basic user page --- header.php | 4 ++-- thread.php | 6 +++--- user.php | 42 ++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 47 insertions(+), 5 deletions(-) create mode 100644 user.php diff --git a/header.php b/header.php index 6e13d14..675476b 100644 --- a/header.php +++ b/header.php @@ -19,10 +19,10 @@ session_start();
' . $_SESSION['user_name'] . '. Log out'; + echo 'Signed in as ' . $_SESSION['user_name'] . ' Log out'; } else { echo 'Sign in or Register an account'; } ?>
- \ No newline at end of file + diff --git a/thread.php b/thread.php index 52ad8b3..ce39d2f 100644 --- a/thread.php +++ b/thread.php @@ -15,7 +15,7 @@ if (mysqli_num_rows($result) == 0) { } else { while ($row = mysqli_fetch_assoc($result)) { echo '

' . $row['thread_subject'] . '

'; - echo 'Created by ' . $row['user_name'] . ' on ' . date('M d, Y', strtotime($row['thread_date'])) . '
'; + echo 'Created by ' . $row['user_name'] . ' on ' . date('M d, Y', strtotime($row['thread_date'])) . ''; $thread_id = $row['thread_id']; } } @@ -36,7 +36,7 @@ if (mysqli_num_rows($result) == 0) { } else { echo ''; while ($row = mysqli_fetch_assoc($result)) { - echo ''; + echo ''; echo ''; } echo '
Posted by ' . $row['user_name'] . '
' . date('m/d/Y g:ia', strtotime($row['post_date'])) . '
Posted by ' . $row['user_name'] . '
' . date('m/d/Y g:ia', strtotime($row['post_date'])) . '		' . $row['post_content'] . '
'; @@ -64,4 +64,4 @@ if (isset($_SESSION['signed_in'])) { } include_once 'footer.php'; -?> \ No newline at end of file +?> diff --git a/user.php b/user.php new file mode 100644 index 0000000..d424c59 --- /dev/null +++ b/user.php @@ -0,0 +1,42 @@ + + +Go home.'; +} + +if (!isset($_GET['id'])) { + nobody_is_here(); +} else { + // If this is the user's own page, show the 'options' bar + if ($_SESSION['user_id'] == $_GET['id']) { + echo ''; + } + echo '
'; + + $sql = 'SELECT user_id, user_name, user_date FROM users WHERE user_id=?'; + $stmt = mysqli_stmt_init($dbc); + + if (!mysqli_stmt_prepare($stmt, $sql)) { + die('Could not create thread due to internal error: ' . mysqli_error($dbc)); + } + mysqli_stmt_bind_param($stmt, 'i', $_GET['id']); + mysqli_stmt_execute($stmt); + $res = mysqli_stmt_get_result($stmt); + $user = mysqli_fetch_assoc($res); + + if (!$user) { + nobody_is_here(); + } else { + echo '

User: '. $user['user_name'] .'ID#'. $user['user_id'] .'

'; + echo 'Registered since '. date('M d, Y', strtotime($user['user_date'])); + } +} +?> +
+ + -- cgit v1.2.3 From d10e573e3e1b4806f9da22aae584a6d75efeb5f2 Mon Sep 17 00:00:00 2001 From: h5p9sl <21267024+h5p9sl@users.noreply.github.com> Date: Sun, 24 Jan 2021 10:54:25 -0700 Subject: Add basic password changing functionality --- change_passw.php | 71 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 71 insertions(+) create mode 100644 change_passw.php diff --git a/change_passw.php b/change_passw.php new file mode 100644 index 0000000..aa8de88 --- /dev/null +++ b/change_passw.php @@ -0,0 +1,71 @@ + + +
+You must be logged in to change your password.'; + } else { + echo ' +

Change your password

+
+
+
+
+
+ +
+
'; + } +?> + +'; + foreach ($errors as $err) { + echo '
  • ' . $err . '
    • '; + } + echo ''; + } else { + $sql = "UPDATE users SET user_pass = ? WHERE user_id = ?;"; + $stmt = mysqli_stmt_init($dbc); + + if (!mysqli_stmt_prepare($stmt, $sql)) { + die('Could not create account due to internal error: ' . mysqli_error($dbc)); + } + + $pass_hash = password_hash($user_pass, PASSWORD_DEFAULT); + + mysqli_stmt_bind_param($stmt, "ss", $pass_hash, $_SESSION['user_id']); + mysqli_stmt_execute($stmt); + mysqli_stmt_close($stmt); + + echo 'Password successfully changed!'; + } +} +?> + +
    + + -- cgit v1.2.3